CVE-2021-46937

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to the DAMON debugfs interface in the Linux kernel, which increases the reference counts of struct pids for targets from the 'target ids' file write callback (dbgfs target ids write()), but decreases the counts only in DAMON monitoring termination callback (dbgfs before terminate()). When the 'target ids' file is repeatedly written without DAMON monitoring start/termination, the reference count is not decreased, and therefore, memory for the struct pid cannot be freed. This can lead to a memory leak. The vulnerability may allow an attacker to disclose protected information.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.