Hi,
please consider commit aa9f7d5172fa ("mm: mempolicy: require at least one nodeid
for MPOL_PREFERRED") for stable releases. It does fix a real problem, even though
the CVE assigned to it (CVE-2020-11565) may be a bit bogus.
I verified that the patch applies cleanly all the way to v4.4.y.
Thanks,
Guenter
