CVE-2026-31653

MEDIUM

mm/damon/sysfs: dealloc repeat_call_control if damon_call() fails

Title source: cna

Description

In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs: dealloc repeat_call_control if damon_call() fails damon_call() for repeat_call_control of DAMON_SYSFS could fail if somehow the kdamond is stopped before the damon_call(). It could happen, for example, when te damon context was made for monitroing of a virtual address processes, and the process is terminated immediately, before the damon_call() invocation. In the case, the dyanmically allocated repeat_call_control is not deallocated and leaked. Fix the leak by deallocating the repeat_call_control under the damon_call() failure. This issue is discovered by sashiko [1].

References (3)

Core 3

Core References

https://git.kernel.org/stable/c/b9dadf026a9fb681ed32a0646adc10ab485bf3b1

https://git.kernel.org/stable/c/0655f5cf1735508394ef8af98ddcfab3ac1c1cc5

https://git.kernel.org/stable/c/0199390a6b92fc21860e1b858abf525c7e73b956

Scores

CVSS v3 5.5

EPSS 0.0001

EPSS Percentile 2.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

Status published

Products (11)

Linux/Linux < 6.17

Linux/Linux 04a06b139ec08aa63d7377f6d3e5218f8ddb1c5d - 0199390a6b92fc21860e1b858abf525c7e73b956

Linux/Linux 04a06b139ec08aa63d7377f6d3e5218f8ddb1c5d - 0655f5cf1735508394ef8af98ddcfab3ac1c1cc5

Linux/Linux 04a06b139ec08aa63d7377f6d3e5218f8ddb1c5d - b9dadf026a9fb681ed32a0646adc10ab485bf3b1

Linux/Linux 6.17

Linux/Linux 6.18.23 - 6.18.*

Linux/Linux 6.19.13 - 6.19.*

Linux/Linux 7.0

linux/linux_kernel 6.17

linux/linux_kernel 7.0 rc1 (7 CPE variants)

... and 1 more

Published Apr 24, 2026

Tracked Since Apr 24, 2026