CVE-2026-53334
Gravedad:
Pendiente de análisis
Tipo:
No Disponible / Otro tipo
Fecha de publicación:
01/07/2026
Última modificación:
01/07/2026
Descripción
*** Pendiente de traducción *** In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
mm/damon/reclaim: handle ctx allocation failure<br />
<br />
Patch series "mm/damon/{reclaim,lru_sort}: handle ctx allocation failures".<br />
<br />
DAMON_RECLAIM and DAMON_LRU_SORT could dereference NULL pointers if their<br />
damon_ctx object allocations fail. The bugs are expected to happen<br />
infrequently because the allocations are arguably too small to fail on<br />
common setups. But theoretically they are possible and the consequences<br />
are bad. Fix those.<br />
<br />
The issues were discovered [1] by Sashiko.<br />
<br />
<br />
This patch (of 2):<br />
<br />
DAMON_RECLAIM allocates the damon_ctx object for its kdamond in its init<br />
function. damon_reclaim_enabled_store() wrongly assumes the allocation<br />
will always succeed once tried. If the damon_ctx allocation was failed,<br />
therefore, code execution reaches to damon_commit_ctx() while &#39;ctx&#39; is<br />
NULL. As a result, it dereferences the NULL &#39;ctx&#39; pointer. Avoid the<br />
NULL dereference by returning -ENOMEM if &#39;ctx&#39; is NULL.



