Impact
The vulnerability is a race condition (CWE‑362, CWE‑366) that can cause damon_call() to wait indefinitely or to leak memory when kdamond is terminating. The bug arises because damon_call() registers a request while a separate mutex updates the damon_ctx->kdamond flag, allowing damon_call() to believe the kdamond thread is still running and to wait for its handling, even though the thread is already on the path to exit. This mismatch can lead to a deadlock or memory exhaustion in the kernel.
Affected Systems
Linux kernel images that have not incorporated the patches referenced (commits 2691332, 55da816, e6a053a6) are vulnerable. All distributions shipping kernels prior to those commits may be at risk, as the CNA currently lists Linux as the affected vendor with no specific version range provided.
Risk and Exploitability
The CVSS score of 4.7 indicates moderate severity, while the EPSS score of less than 1% suggests a very low likelihood of exploitation. The vulnerability is not listed in the CISA KEV catalog. Exploitation would require privileged kernel access and a scenario in which damon_call() is invoked concurrently with kdamond termination, such as during system shutdown or composite device operations. If triggered, the kernel could become unresponsive or lose memory resources, effectively causing a denial of service.
OpenCVE Enrichment
Ubuntu USN