{ "threat_severity" : "Moderate", "public_date" : "2024-10-21T00:00:00Z", "bugzilla" : { "description" : "kernel: kthread: unpark only parked kthread", "id" : "2320625", "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=2320625" }, "cvss3" : { "cvss3_base_score" : "5.5", "cvss3_scoring_vector" : "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "status" : "verified" }, "cwe" : "CWE-99", "details" : [ "In the Linux kernel, the following vulnerability has been resolved:\nkthread: unpark only parked kthread\nCalling into kthread unparking unconditionally is mostly harmless when\nthe kthread is already unparked. The wake up is then simply ignored\nbecause the target is not in TASK_PARKED state.\nHowever if the kthread is per CPU, the wake up is preceded by a call\nto kthread_bind() which expects the task to be inactive and in\nTASK_PARKED state, which obviously isn't the case if it is unparked.\nAs a result, calling kthread_stop() on an unparked per-cpu kthread\ntriggers such a warning:\nWARNING: CPU: 0 PID: 11 at kernel/kthread.c:525 __kthread_bind_mask kernel/kthread.c:525\n\nkthread_stop+0x17a/0x630 kernel/kthread.c:707\ndestroy_workqueue+0x136/0xc40 kernel/workqueue.c:5810\nwg_destruct+0x1e2/0x2e0 drivers/net/wireguard/device.c:257\nnetdev_run_todo+0xe1a/0x1000 net/core/dev.c:10693\ndefault_device_exit_batch+0xa14/0xa90 net/core/dev.c:11769\nops_exit_list net/core/net_namespace.c:178 [inline]\ncleanup_net+0x89d/0xcc0 net/core/net_namespace.c:640\nprocess_one_work kernel/workqueue.c:3231 [inline]\nprocess_scheduled_works+0xa2c/0x1830 kernel/workqueue.c:3312\nworker_thread+0x86d/0xd70 kernel/workqueue.c:3393\nkthread+0x2f0/0x390 kernel/kthread.c:389\nret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\nret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n\nFix this with skipping unecessary unparking while stopping a kthread." ], "affected_release" : [ { "product_name" : "Red Hat Enterprise Linux 9", "release_date" : "2025-05-13T00:00:00Z", "advisory" : "RHSA-2025:6966", "cpe" : "cpe:/a:redhat:enterprise_linux:9", "package" : "kernel-0:5.14.0-570.12.1.el9_6" }, { "product_name" : "Red Hat Enterprise Linux 9", "release_date" : "2025-05-13T00:00:00Z", "advisory" : "RHSA-2025:6966", "cpe" : "cpe:/o:redhat:enterprise_linux:9", "package" : "kernel-0:5.14.0-570.12.1.el9_6" } ], "package_state" : [ { "product_name" : "Red Hat Enterprise Linux 6", "fix_state" : "Out of support scope", "package_name" : "kernel", "cpe" : "cpe:/o:redhat:enterprise_linux:6" }, { "product_name" : "Red Hat Enterprise Linux 7", "fix_state" : "Out of support scope", "package_name" : "kernel", "cpe" : "cpe:/o:redhat:enterprise_linux:7" }, { "product_name" : "Red Hat Enterprise Linux 7", "fix_state" : "Out of support scope", "package_name" : "kernel-rt", "cpe" : "cpe:/o:redhat:enterprise_linux:7" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Will not fix", "package_name" : "kernel", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Will not fix", "package_name" : "kernel-rt", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 9", "fix_state" : "Will not fix", "package_name" : "kernel-rt", "cpe" : "cpe:/o:redhat:enterprise_linux:9" } ], "references" : [ "https://www.cve.org/CVERecord?id=CVE-2024-50019\nhttps://nvd.nist.gov/vuln/detail/CVE-2024-50019\nhttps://lore.kernel.org/linux-cve-announce/2024102126-CVE-2024-50019-5896@gregkh/T" ], "name" : "CVE-2024-50019", "csaw" : false }