CVE-2026-52905 – mm/damon/core: disallow non-power of two min_region_sz on damon_start()

CVE ID :CVE-2026-52905

Published : June 9, 2026, 2:16 p.m. | 19 minutes ago

Description :In the Linux kernel, the following vulnerability has been resolved:

mm/damon/core: disallow non-power of two min_region_sz on damon_start()

Commit d8f867fa0825 (“mm/damon: add damon_ctx->min_sz_region”) introduced
a bug that allows unaligned DAMON region address ranges. Commit
c80f46ac228b (“mm/damon/core: disallow non-power of two min_region_sz”)
fixed it, but only for damon_commit_ctx() use case. Still, DAMON sysfs
interface can emit non-power of two min_region_sz via damon_start(). Fix
the path by adding the is_power_of_2() check on damon_start().

The issue was discovered by sashiko [1].

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2026-8045 – Schneider Electric Data Center Expert XXE Information Disclosure

CVE-2026-8025 – SQLi in MOSK Informatics’ CBS Platform

CVE-2026-49948 – Mem0 0.2.8 Missing Authorization via POST /configure Endpoint

CVE-2026-49938 – Fortinet FortiPortal Improper Access Control