Acknowledged
Created: Oct 26, 2025
Updated: Oct 28, 2025
Found In Version: 10.24.33.1
Severity: Standard
Applicable for: Wind River Linux LTS 24
Component/s: Kernel
In the Linux kernel, the following vulnerability has been resolved:[EOL][EOL]vhost: Take a reference on the task in struct vhost_task.[EOL][EOL]vhost_task_create() creates a task and keeps a reference to its[EOL]task_struct. That task may exit early via a signal and its task_struct[EOL]will be released.[EOL]A pending vhost_task_wake() will then attempt to wake the task and[EOL]access a task_struct which is no longer there.[EOL][EOL]Acquire a reference on the task_struct while creating the thread and[EOL]release the reference while the struct vhost_task itself is removed.[EOL]If the task exits early due to a signal, then the vhost_task_wake() will[EOL]still access a valid task_struct. The wake is safe and will be skipped[EOL]in this case.
