Tony Zhu

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 6.8.0-rc2+ **Description** The issue arises because the event log cache is created using kmem cache create(), which is not suitable for user copy. When CONFIG HARDENED USERCOPY is enabled, copying the completion record from the event log cache to the user triggers a kernel bug. This can lead to a kernel memory exposure attempt, causing the kernel to crash. The fix involves creating the event log cache with kmem cache create usercopy(), ensuring safe user copy. **Recommendations** To resolve the issue, create the event log cache with kmem cache create usercopy() instead of kmem cache create(), ensuring safe user copy. This change will prevent the kernel bug from occurring when CONFIG HARDENED USERCOPY is enabled.