SB2025032753 - Infinite loop in Linux kernel sched
Published: March 27, 2025 Updated: May 11, 2025
Security Bulletin ID
SB2025032753
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Local access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Infinite loop (CVE-ID: CVE-2024-58090)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to infinite loop within the !defined() function in kernel/sched/core.c. A local user can perform a denial of service (DoS) attack.
Remediation
Install update from vendor's website.
References
- https://git.kernel.org/stable/c/0362847c520747b44b574d363705d8af0621727a
- https://git.kernel.org/stable/c/1651f5731b378616565534eb9cda30e258cebebc
- https://git.kernel.org/stable/c/288fdb8dcb71ec77b76ab8b8a06bc10f595ea504
- https://git.kernel.org/stable/c/321794b75ac968f0bb6b9c913581949452a8d992
- https://git.kernel.org/stable/c/68786ab0935ccd5721283b7eb7f4d2f2942c7a52
- https://git.kernel.org/stable/c/82c387ef7568c0d96a918a5a78d9cad6256cfa15
- https://git.kernel.org/stable/c/84586322e010164eedddfcd0a0894206ae7d9317
- https://git.kernel.org/stable/c/b927c8539f692fb1f9c2f42e6c8ea2d94956f921
- https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.13.6