Description

In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs: catch commit test ctx alloc failure Patch series "mm/damon/sysfs: fix commit test damon_ctx [de]allocation". DAMON sysfs interface dynamically allocates and uses a damon_ctx object for testing if given inputs for online DAMON parameters update is valid. The object is being used without an allocation failure check, and leaked when the test succeeds. Fix the two bugs. This patch (of 2): The damon_ctx for testing online DAMON parameters commit inputs is used without its allocation failure check. This could result in an invalid memory access. Fix it by directly returning an error when the allocation failed.

INFO

Published Date :

2025-12-04T15:31:19.668Z

Last Modified :

2025-12-04T15:31:19.668Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-40228 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-40228.

URL Resource
https://git.kernel.org/stable/c/5b3609d9b9650bdea0bfdf643e0ce57e1aed67fc cve-icon cve-icon
https://git.kernel.org/stable/c/f0c5118ebb0eb7e4fd6f0d2ace3315ca141b317f cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025120459-CVE-2025-40228-f581@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-40228 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-40228 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact