{"id":"CVE-2026-31653","summary":"mm/damon/sysfs: dealloc repeat_call_control if damon_call() fails","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nmm/damon/sysfs: dealloc repeat_call_control if damon_call() fails\n\ndamon_call() for repeat_call_control of DAMON_SYSFS could fail if somehow\nthe kdamond is stopped before the damon_call().  It could happen, for\nexample, when te damon context was made for monitroing of a virtual\naddress processes, and the process is terminated immediately, before the\ndamon_call() invocation.  In the case, the dyanmically allocated\nrepeat_call_control is not deallocated and leaked.\n\nFix the leak by deallocating the repeat_call_control under the\ndamon_call() failure.\n\nThis issue is discovered by sashiko [1].","modified":"2026-07-15T01:49:08.238431018Z","published":"2026-04-24T14:45:05.689Z","database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/31xxx/CVE-2026-31653.json"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/0199390a6b92fc21860e1b858abf525c7e73b956"},{"type":"WEB","url":"https://git.kernel.org/stable/c/0655f5cf1735508394ef8af98ddcfab3ac1c1cc5"},{"type":"WEB","url":"https://git.kernel.org/stable/c/b9dadf026a9fb681ed32a0646adc10ab485bf3b1"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/31xxx/CVE-2026-31653.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-31653"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"04a06b139ec08aa63d7377f6d3e5218f8ddb1c5d"},{"fixed":"b9dadf026a9fb681ed32a0646adc10ab485bf3b1"},{"fixed":"0655f5cf1735508394ef8af98ddcfab3ac1c1cc5"},{"fixed":"0199390a6b92fc21860e1b858abf525c7e73b956"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-31653.json"}},{"package":{"name":"Kernel","ecosystem":"Linux"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"6.17.0"},{"fixed":"6.18.23"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.19.0"},{"fixed":"6.19.13"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-31653.json"}}],"schema_version":"1.7.5"}