CVE-2026-46087 Linux CVE debrief

Who should care

Linux kernel administrators and developers utilizing DAMON (Data Access MONitor) for memory access pattern monitoring; organizations running memory-constrained systems where kernel memory leaks could contribute to resource exhaustion; security teams tracking kernel memory integrity issues.

Technical summary

The vulnerability occurs in mm/damon/stat.c where damon_stat_start() allocates a DAMON context via damon_stat_build_ctx() but fails to clean up when damon_start() subsequently fails. The missing cleanup leaves the allocated context leaked and the global damon_stat_context pointer stale. On the next enable attempt, this stale pointer is overwritten without freeing the original allocation, causing permanent memory leakage. The fix implements proper destruction of the DAMON context and resets the global pointer when damon_start() returns an error, ensuring consistent memory management state.

Defensive priority

medium

Recommended defensive actions

• Apply kernel patches from the referenced stable tree commits to affected systems
• Monitor kernel memory usage on systems utilizing DAMON statistics features
• Review system logs for damon_start() failures that may indicate trigger conditions
• Validate kernel version against patched releases in stable trees

Evidence notes

The vulnerability description indicates a memory leak in mm/damon/stat when damon_start() fails, with the fix ensuring proper context destruction and pointer reset. Three kernel.org stable tree commits are referenced as resolution sources.

Official resources