Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-38258

In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs-schemes: free old damon_sysfs_scheme_filter->memcg_path on write memcg_path_store() assigns a newly allocated memory buffer to filter->memcg_path, without deallocating the previously allocated and assigned memory buffer. As a result, users can leak kernel memory by continuously writing a data to memcg_path DAMOS sysfs file. Fix the leak by deallocating the previously set memory buffer.

Published

2025-07-09T11:15:28.110

Last Modified

2025-07-10T13:17:30.017

Status

Awaiting Analysis

Source

416baaa9-dc9f-4396-8d5f-8c081fb06d67

Severity

Weaknesses

Affected Vendors & Products

References

https://git.kernel.org/stable/c/490a43d07f1663d827e802720d30cbc0494e4f81 (416baaa9-dc9f-4396-8d5f-8c081fb06d67)
https://git.kernel.org/stable/c/4a158ac0538dd5695eeaa00aa0720d711f3e4ef1 (416baaa9-dc9f-4396-8d5f-8c081fb06d67)
https://git.kernel.org/stable/c/4f489fe6afb395dbc79840efa3c05440b760d883 (416baaa9-dc9f-4396-8d5f-8c081fb06d67)
https://git.kernel.org/stable/c/c5d5b0047b0c0f304608f3824139f7bd34c48413 (416baaa9-dc9f-4396-8d5f-8c081fb06d67)