CVE-2026-31653

Source
https://cve.org/CVERecord?id=CVE-2026-31653
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-31653.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-31653
Downstream
Published
2026-04-24T14:45:05.689Z
Modified
2026-07-15T01:49:08.238431018Z
Summary
mm/damon/sysfs: dealloc repeat_call_control if damon_call() fails
Details

In the Linux kernel, the following vulnerability has been resolved:

mm/damon/sysfs: dealloc repeatcallcontrol if damon_call() fails

damoncall() for repeatcallcontrol of DAMONSYSFS could fail if somehow the kdamond is stopped before the damoncall(). It could happen, for example, when te damon context was made for monitroing of a virtual address processes, and the process is terminated immediately, before the damoncall() invocation. In the case, the dyanmically allocated repeatcallcontrol is not deallocated and leaked.

Fix the leak by deallocating the repeatcallcontrol under the damon_call() failure.

This issue is discovered by sashiko [1].

Database specific
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/31xxx/CVE-2026-31653.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
04a06b139ec08aa63d7377f6d3e5218f8ddb1c5d
Fixed
b9dadf026a9fb681ed32a0646adc10ab485bf3b1
Fixed
0655f5cf1735508394ef8af98ddcfab3ac1c1cc5
Fixed
0199390a6b92fc21860e1b858abf525c7e73b956

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-31653.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.17.0
Fixed
6.18.23
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
6.19.13

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-31653.json"