Memory Leak Vulnerability in Linux Kernel Affects Resource Management
CVE-2026-31653

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 24 April 2026

What is CVE-2026-31653?

A memory leak vulnerability has been identified in the Linux kernel's management of DAMON_SYSFS. If the damon_call() function fails due to the premature termination of the kdamond process, the dynamically allocated repeat_call_control may not be deallocated, leading to resource leakage. This can occur when the monitoring context is created for a virtual address process that is killed immediately before the damon_call invocation. To address this issue, a fix has been implemented to ensure that repeat_call_control is properly deallocated if damon_call() encounters an error.

Affected Version(s)

Linux 04a06b139ec08aa63d7377f6d3e5218f8ddb1c5d

Linux 04a06b139ec08aa63d7377f6d3e5218f8ddb1c5d < 0655f5cf1735508394ef8af98ddcfab3ac1c1cc5

Linux 04a06b139ec08aa63d7377f6d3e5218f8ddb1c5d < 0199390a6b92fc21860e1b858abf525c7e73b956

References

https://git.kernel.org/stable/c/b9dadf026a9fb681ed32a0646...

https://git.kernel.org/stable/c/0655f5cf1735508394ef8af98...

https://git.kernel.org/stable/c/0199390a6b92fc21860e1b858...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 24, 2026
Vulnerability Reserved
Mar 9, 2026

CVE-2026-31653 Data

JSON