CVE-2026-23142
Unknown Unknown - Not Provided

Memory Leak in Linux Kernel DAMON sysfs on Setup Failure

Vulnerability report for CVE-2026-23142, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-02-14

Last updated on: 2026-03-17

Assigner: kernel.org

Description

In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs-scheme: cleanup access_pattern subdirs on scheme dir setup failure When a DAMOS-scheme DAMON sysfs directory setup fails after setup of access_pattern/ directory, subdirectories of access_pattern/ directory are not cleaned up. As a result, DAMON sysfs interface is nearly broken until the system reboots, and the memory for the unremoved directory is leaked. Cleanup the directories under such failures.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-02-14
Last Modified
2026-03-17
Generated
2026-07-06
AI Q&A
2026-02-14
EPSS Evaluated
2026-07-05
NVD
EUVD

Affected Vendors & Products

Showing 9 associated CPEs
Vendor Product Version / Range
linux linux_kernel From 6.13 (inc) to 6.18.7 (exc)
linux linux_kernel 6.19
linux linux_kernel 6.19
linux linux_kernel 6.19
linux linux_kernel 6.19
linux linux_kernel 6.19
linux linux_kernel From 6.2 (inc) to 6.6.122 (exc)
linux linux_kernel From 6.7 (inc) to 6.12.67 (exc)
linux linux_kernel From 5.18 (inc) to 6.1.162 (exc)

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

This vulnerability occurs in the Linux kernel's DAMON sysfs interface, specifically related to the setup of the access_pattern subdirectories under the DAMOS-scheme directory.

If the setup of the DAMOS-scheme DAMON sysfs directory fails after creating the access_pattern/ directory, the subdirectories inside access_pattern/ are not properly cleaned up.

This failure to clean up leaves leftover directories that cause the DAMON sysfs interface to become nearly broken until the system is rebooted, and it also results in a memory leak due to the unremoved directories.

Impact Analysis

The impact of this vulnerability is that the DAMON sysfs interface in the Linux kernel can become nearly unusable until the system is rebooted.

Additionally, the failure to clean up the access_pattern subdirectories causes a memory leak, which could degrade system performance or stability over time.

Compliance Impact

I don't know

Detection Guidance

I don't know

Mitigation Strategies

I don't know

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-23142. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart