Bug 2477079 (CVE-2026-43482) - CVE-2026-43482 kernel: sched_ext: Disable preemption between scx_claim_exit() and kicking helper work
Summary: CVE-2026-43482 kernel: sched_ext: Disable preemption between scx_claim_exit()...
Keywords:
Status: NEW
Alias: CVE-2026-43482
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
unspecified
unspecified
Target Milestone: ---
Assignee: Product Security
QA Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2026-05-13 16:02 UTC by OSIDB Bzimport
Modified: 2026-05-13 17:21 UTC (History)
2 users (show)

Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments (Terms of Use)

Description OSIDB Bzimport 2026-05-13 16:02:58 UTC 
In the Linux kernel, the following vulnerability has been resolved:

sched_ext: Disable preemption between scx_claim_exit() and kicking helper work

scx_claim_exit() atomically sets exit_kind, which prevents scx_error() from
triggering further error handling. After claiming exit, the caller must kick
the helper kthread work which initiates bypass mode and teardown.

If the calling task gets preempted between claiming exit and kicking the
helper work, and the BPF scheduler fails to schedule it back (since error
handling is now disabled), the helper work is never queued, bypass mode
never activates, tasks stop being dispatched, and the system wedges.

Disable preemption across scx_claim_exit() and the subsequent work kicking
in all callers - scx_disable() and scx_vexit(). Add
lockdep_assert_preemption_disabled() to scx_claim_exit() to enforce the
requirement.
Comment 1 Keith Grant 2026-05-13 17:19:27 UTC 
Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2026051348-CVE-2026-43482-8a3e@gregkh/T
Note You need to log in before you can comment on or make changes to this bug.