Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Fedora 40: 2025-e717eae403 high: stalld denial of service

fedora
Calendar Grey February 9, 2025
Dist Fedora Esm H88
To tackle CVE-2024-54159 in Fedora 40's stalld, focus on enhancing resource allocation for starving tasks via improved scheduling algorithms and task queue management
Add code to deal with sched_setattr() not being exported in glibc 2.41 Address CVE-2024-54159 denial of services via symlink attack

Summary

The stalld program monitors the set of system threads,

looking for threads that are ready-to-run but have not

been given processor time for some threshold period.

When a starving thread is found, it is given a temporary

boost using the SCHED_DEADLINE policy. The default is to

allow 10 microseconds of runtime for 1 second of clock time.

Update Information:

Add code to deal with sched_setattr() not being exported in glibc 2.41 Address CVE-2024-54159 denial of services via symlink attack

Topics%20covered

Topics Covered

security advisory denial of service security issue Fedora update information glibc stalld

Change Log

* Tue Jan 28 2025 Clark Williams - 1.19.8 - Added glibc41 fix to source tree, removed patch - stalld.h: fix prototype mis-match with cleanup_regex() * Tue Jan 21 2025 Clark Williams - 1.19.7 - stalld.c: use a more reasonable size for reading /proc/stat - systemd/Makefile: remove typo in uninstall line - Makefile: change modes on throttled and stalld - throttlectl: clean up throttling script due to reported CVE-2024-54159 * Sun Jan 19 2025 Fedora Release Engineering - 1.19.6-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild

References


[ 1 ] Bug #2329809 - CVE-2024-54159 stalld: denial of service [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2329809

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-e717eae403' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
important
Lowest
Low
Medium
High
Critical

Name: stalld
Product: Fedora 40
Version: 1.19.8
Release: 1.fc40
URL:
Summary: Daemon that finds starving tasks and gives them a temporary boost

Topics%20covered

Topics Covered

security advisory denial of service security issue Fedora update information glibc stalld

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here