CVE-2024-26686
Published: Apr 3, 2024
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: fs/proc: do_task_stat: use sig->stats_lock to gather the threads/children stats lock_task_sighand() can trigger a hard lockup. If NR_CPUS threads call do_task_stat() at the same time and the process has NR_THREADS, it will spin with irqs disabled O(NR_CPUS * NR_THREADS) time. Change do_task_stat() to use sig->stats_lock to gather the statistics outside of ->siglock protected section, in the likely case this code will run lockless.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 4fe85bdaabd63f8f8579b24a10ed597c9c482164affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 0c35d1914353799c54fa1843fe7dea6fcbcdbac5affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < cf4b8c39b9a0bd81c47afc7ef62914a62dd5ec4daffected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 3820b0fac7732a653bcc6f6ac20c1d72e697f8f6affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 27978243f165b44e342f28f449b91327944ea071+1 more versions |
Linux | Linux | affected 2.6.12unaffected 0 - < 2.6.12unaffected 5.10.237 - <= 5.10.*unaffected 5.15.181 - <= 5.15.*unaffected 6.1.82 - <= 6.1.*+3 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now