PT-2026-54802 · Linux · Linux
Sashiko
·
Published
2026-07-01
·
Updated
2026-07-01
·
CVE-2026-53334
None
No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
In the Linux kernel, the following vulnerability has been resolved:
mm/damon/reclaim: handle ctx allocation failure
Patch series "mm/damon/{reclaim,lru sort}: handle ctx allocation failures".
DAMON RECLAIM and DAMON LRU SORT could dereference NULL pointers if their
damon ctx object allocations fail. The bugs are expected to happen
infrequently because the allocations are arguably too small to fail on
common setups. But theoretically they are possible and the consequences
are bad. Fix those.
The issues were discovered [1] by Sashiko.
This patch (of 2):
DAMON RECLAIM allocates the damon ctx object for its kdamond in its init
function. damon reclaim enabled store() wrongly assumes the allocation
will always succeed once tried. If the damon ctx allocation was failed,
therefore, code execution reaches to damon commit ctx() while 'ctx' is
NULL. As a result, it dereferences the NULL 'ctx' pointer. Avoid the
NULL dereference by returning -ENOMEM if 'ctx' is NULL.
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Linux