Description
In the Linux kernel, the following vulnerability has been resolved:

mm/damon/lru_sort: handle ctx allocation failure

DAMON_LRU_SORT allocates the damon_ctx object for its kdamond in its init
function. damon_lru_sort_enabled_store() wrongly assumes the allocation
will always succeed once tried. If the damon_ctx allocation was failed,
therefore, code execution reaches to damon_commit_ctx() while 'ctx' is
NULL. As a result, it dereferences the NULL 'ctx' pointer. Avoid the
NULL dereference by returning -ENOMEM if 'ctx' is NULL.
Published: 2026-07-01
Score: n/a
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A null pointer dereference occurs in the Linux kernel’s DAMON LRU SORT component when the allocation of the damon_ctx object fails during initialization. The code incorrectly assumes success and later dereferences a NULL pointer, causing a kernel panic. This flaw results in a loss of availability as the entire system can be forced to reboot, representing a denial‑of‑service impact for any affected machine.

Affected Systems

The vulnerability resides in the mainline Linux kernel and therefore affects all distributions that run an unpatched kernel. No specific kernel release is listed in the advisory, meaning any version that contains the unpatched DAMON LRU SORT code is potentially impacted.

Risk and Exploitability

No CVSS score is provided. The EPSS score is < 1%, indicating a very low exploitation probability. The issue is not listed in CISA’s KEV catalog. Based on the description, it is inferred that an attacker who can trigger the DAMON LRU sort code path—such as a local or privileged process—could exploit this flaw to cause a kernel panic, resulting in denial of service.

Generated by OpenCVE AI on July 2, 2026 at 18:59 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest kernel patch that addresses the DAMON LRU_SORT allocation failure.
  • Reboot the system to ensure the kernel is running the patched state and that the vulnerability is no longer active.
  • If a patch is not yet available for your distribution, contact the distribution maintainers to request a backport or update to a newer kernel release that contains the fix.

Generated by OpenCVE AI on July 2, 2026 at 18:59 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 02 Jul 2026 00:15:00 +0000


Wed, 01 Jul 2026 13:45:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: mm/damon/lru_sort: handle ctx allocation failure DAMON_LRU_SORT allocates the damon_ctx object for its kdamond in its init function. damon_lru_sort_enabled_store() wrongly assumes the allocation will always succeed once tried. If the damon_ctx allocation was failed, therefore, code execution reaches to damon_commit_ctx() while 'ctx' is NULL. As a result, it dereferences the NULL 'ctx' pointer. Avoid the NULL dereference by returning -ENOMEM if 'ctx' is NULL.
Title mm/damon/lru_sort: handle ctx allocation failure
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Subscriptions

Linux Linux Kernel
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-07-01T13:32:17.953Z

Reserved: 2026-06-09T07:44:35.399Z

Link: CVE-2026-53335

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

Severity :

Publid Date: 2026-07-01T00:00:00Z

Links: CVE-2026-53335 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-07-02T19:00:11Z

Weaknesses