Memory Leak in Linux Kernel Affects Online DAMON Parameters Commit
CVE-2025-40227

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 4 December 2025

What is CVE-2025-40227?

A vulnerability has been identified in the Linux kernel concerning the deallocation of memory associated with the damon_ctx used for testing online DAMON parameters. When DAMON parameters are successfully committed, the memory allocated for the testing context is not released, resulting in a memory leak that exacerbates resource consumption on affected systems. This defect can lead to performance degradation over time as system resources are exhausted. A proposed fix addresses this issue by ensuring that memory is appropriately deallocated regardless of the commit outcome, thus preventing memory leaks.

Affected Version(s)

Linux 4c9ea539ad59ec60676930dacee02b7adde2e0c0

Linux 4c9ea539ad59ec60676930dacee02b7adde2e0c0 < 139e7a572af0b45f558b5e502121a768dc328ba8

Linux 6.15

References

https://git.kernel.org/stable/c/ba236520ae53418859f4b7c7d...

https://git.kernel.org/stable/c/139e7a572af0b45f558b5e502...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 4, 2025
Vulnerability Reserved
Apr 16, 2025

JSON