Impact
A null pointer dereference occurs in the Linux kernel’s DAMON LRU SORT component when the allocation of the damon_ctx object fails during initialization. The code incorrectly assumes success and later dereferences a NULL pointer, causing a kernel panic. This flaw results in a loss of availability as the entire system can be forced to reboot, representing a denial‑of‑service impact for any affected machine.
Affected Systems
The vulnerability resides in the mainline Linux kernel and therefore affects all distributions that run an unpatched kernel. No specific kernel release is listed in the advisory, meaning any version that contains the unpatched DAMON LRU SORT code is potentially impacted.
Risk and Exploitability
No CVSS score is provided. The EPSS score is < 1%, indicating a very low exploitation probability. The issue is not listed in CISA’s KEV catalog. Based on the description, it is inferred that an attacker who can trigger the DAMON LRU sort code path—such as a local or privileged process—could exploit this flaw to cause a kernel panic, resulting in denial of service.
OpenCVE Enrichment