CVE-2021-46937

Published: Feb 27, 2024

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: mm/damon/dbgfs: fix 'struct pid' leaks in 'dbgfs_target_ids_write()' DAMON debugfs interface increases the reference counts of 'struct pid's for targets from the 'target_ids' file write callback ('dbgfs_target_ids_write()'), but decreases the counts only in DAMON monitoring termination callback ('dbgfs_before_terminate()'). Therefore, when 'target_ids' file is repeatedly written without DAMON monitoring start/termination, the reference count is not decreased and therefore memory for the 'struct pid' cannot be freed. This commit fixes this issue by decreasing the reference counts when 'target_ids' is written.

Vendor	Product	Versions
Linux	Linux	affected `4bc05954d0076655cfaf6f0135585bdc20cd6b11 - < ffe4a1ba1a82c416a6b3a09d46594f6a885ae141` affected `4bc05954d0076655cfaf6f0135585bdc20cd6b11 - < ebb3f994dd92f8fb4d70c7541091216c1e10cb71`
Linux	Linux	affected `5.15` unaffected `0 - < 5.15` unaffected `5.15.13 - <= 5.15.` unaffected `5.16 - <= `

References

https://git.kernel.org/stable/c/ffe4a1ba1a82c416a6b3a09d46594f6a885ae141

https://git.kernel.org/stable/c/ebb3f994dd92f8fb4d70c7541091216c1e10cb71

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2021-46937

Description

Affected Products

References