Description

In the Linux kernel, the following vulnerability has been resolved:

mm/damon/vaddr-test: fix memory leak in damon_do_test_apply_three_regions()

When CONFIG_DAMON_VADDR_KUNIT_TEST=y and making CONFIG_DEBUG_KMEMLEAK=y
and CONFIG_DEBUG_KMEMLEAK_AUTO_SCAN=y, the below memory leak is detected.

Since commit 9f86d624292c ("mm/damon/vaddr-test: remove unnecessary
variables"), the damon_destroy_ctx() is removed, but still call
damon_new_target() and damon_new_region(), the damon_region which is
allocated by kmem_cache_alloc() in damon_new_region() and the damon_target
which is allocated by kmalloc in damon_new_target() are not freed. And
the damon_region which is allocated in damon_new_region() in
damon_set_regions() is also not freed.

So use damon_destroy_target to free all the damon_regions and damon_target.

unreferenced object 0xffff888107c9a940 (size 64):
comm "kunit_try_catch", pid 1069, jiffies 4294670592 (age 732.761s)
hex dump (first 32 bytes):
00 00 00 00 00 00 00 00 06 00 00 00 6b 6b 6b 6b ............kkkk
60 c7 9c 07 81 88 ff ff f8 cb 9c 07 81 88 ff ff `...............
backtrace:
[] kmalloc_trace+0x27/0xa0
[] damon_new_target+0x3f/0x1b0
[] damon_do_test_apply_three_regions.constprop.0+0x95/0x3e0
[] damon_test_apply_three_regions1+0x21e/0x260
[] kunit_generic_run_threadfn_adapter+0x4a/0x90
[] kthread+0x2b6/0x380
[] ret_from_fork+0x2d/0x70
[] ret_from_fork_asm+0x11...

Classification

CVE ID: CVE-2023-52560

Affected Products

Vendor: Linux

Product: Linux

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.04% (probability of being exploited)

EPSS Percentile: 5.08% (scored less or equal to compared to others)

EPSS Date: 2025-02-04 (when was this score calculated)

References

https://git.kernel.org/stable/c/9a4fe81a8644b717d57d81ce5849e16583b13fe8
https://git.kernel.org/stable/c/6b522001693aa113d97a985abc5f6932972e8e86
https://git.kernel.org/stable/c/45120b15743fa7c0aa53d5db6dfb4c8f87be4abd

Timeline