CVE-2024-57886
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-57886
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-57886.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2024-57886
- Downstream
- Related
- Published
- 2025-01-15T13:05:39Z
- Modified
- 2025-10-17T20:06:21.774077Z
- Summary
- mm/damon/core: fix new damon_target objects leaks on damon_commit_targets()
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
mm/damon/core: fix new damontarget objects leaks on damoncommit_targets()
Patch series "mm/damon/core: fix memory leaks and ignored inputs from damoncommitctx()".
Due to two bugs in damoncommittargets() and damoncommitschemes(), which are called from damoncommitctx(), some user inputs can be ignored, and some mmeory objects can be leaked. Fix those.
Note that only DAMON sysfs interface users are affected. Other DAMON core API user modules that more focused more on simple and dedicated production usages, including DAMONRECLAIM and DAMONLRU_SORT are not using the buggy function in the way, so not affected.
This patch (of 2):
When new DAMON targets are added via damoncommittargets(), the newly created targets are not deallocated when updating the internal data (damoncommittarget()) is failed. Worse yet, even if the setup is successfully done, the new target is not linked to the context. Hence, the new targets are always leaked regardless of the internal data setup failure. Fix the leaks.
- References
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced9cb3d0b9dfce6a3258d91e6d69e418d0b4cce46aFixed3647932d0b3e609c762c55e8f9fe10a09776e0a7
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced9cb3d0b9dfce6a3258d91e6d69e418d0b4cce46aFixed8debfc5b1aa569d3d2ac836af2553da037611c61