In the Linux kernel, the following vulnerability has been resolved:
schedext: Don't warn on NULL cgrpmovingfrom in scxcgroupmovetask()
A WARN fires when systemd's user manager writes "+cpu +memory +pids" to its own subtreecontrol while a schedext scheduler is loaded:
WARNING: at kernel/sched/ext.c:3227 scxcgroupmovetask+0xa8/0xb0 scxcgroupmovetask+0xa8/0xb0 schedmovetask+0x134/0x290 cpucgroupattach+0x39/0x70 cgroupmigrateexecute+0x37d/0x450 cgroupupdatedflcsses+0x1e3/0x270 cgroupsubtreecontrolwrite+0x3e7/0x440
scxcgroupcanattach() arms cgrpmovingfrom only when a task's cpu cgroup changes. It can still be NULL when scxcgroupmovetask() runs, through this sequence:
Step Result
The mismatch is that scxcgroupcanattach() keys on cgroup identity while migration drives the move on css identity, so a NULL cgrpmoving_from here is a legitimate css-only migration, not a missing prep.
The call is already gated on cgrpmovingfrom, so just drop the warning. ops.cgroupprepmove() and ops.cgroup_move() stay paired.
{
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/53xxx/CVE-2026-53328.json",
"cna_assigner": "Linux"
}