CVE Catalog

CVE-2026-53335

Unknown
Published: Translated: NVD NIST

Summary

In the Linux kernel, the DAMON_LRU_SORT module has a vulnerability due to missing error handling for damon_ctx allocation. The damon_lru_sort_enabled_store() function assumes allocation always succeeds, leading to a NULL pointer dereference when allocation fails.

Risk Assessment

The risk is a potential NULL pointer dereference causing a kernel panic, which can crash the system and disrupt services.

Recommendation

Apply the kernel patch that adds a check for allocation failure and returns -ENOMEM. Update to a kernel version containing the fix.

Original NVD description (English source)

In the Linux kernel, the following vulnerability has been resolved: mm/damon/lru_sort: handle ctx allocation failure DAMON_LRU_SORT allocates the damon_ctx object for its kdamond in its init function. damon_lru_sort_enabled_store() wrongly assumes the allocation will always succeed once tried. If the damon_ctx allocation was failed, therefore, code execution reaches to damon_commit_ctx() while 'ctx' is NULL. As a result, it dereferences the NULL 'ctx' pointer. Avoid the NULL dereference by returning -ENOMEM if 'ctx' is NULL.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS