vulnerability

Debian: CVE-2023-52560: linux -- security update

Severity
5
CVSS
(AV:L/AC:L/Au:S/C:N/I:N/A:C)
Published
03/02/2024
Added
07/30/2024
Modified
01/30/2025

Description

In the Linux kernel, the following vulnerability has been resolved:

mm/damon/vaddr-test: fix memory leak in damon_do_test_apply_three_regions()

When CONFIG_DAMON_VADDR_KUNIT_TEST=y and making CONFIG_DEBUG_KMEMLEAK=y
and CONFIG_DEBUG_KMEMLEAK_AUTO_SCAN=y, the below memory leak is detected.

Since commit 9f86d624292c ("mm/damon/vaddr-test: remove unnecessary
variables"), the damon_destroy_ctx() is removed, but still call
damon_new_target() and damon_new_region(), the damon_region which is
allocated by kmem_cache_alloc() in damon_new_region() and the damon_target
which is allocated by kmalloc in damon_new_target() are not freed. And
the damon_region which is allocated in damon_new_region() in
damon_set_regions() is also not freed.

So use damon_destroy_target to free all the damon_regions and damon_target.

unreferenced object 0xffff888107c9a940 (size 64):
comm "kunit_try_catch", pid 1069, jiffies 4294670592 (age 732.761s)
hex dump (first 32 bytes):
00 00 00 00 00 00 00 00 06 00 00 00 6b 6b 6b 6b ............kkkk
60 c7 9c 07 81 88 ff ff f8 cb 9c 07 81 88 ff ff `...............
backtrace:
[] kmalloc_trace+0x27/0xa0
[] damon_new_target+0x3f/0x1b0
[] damon_do_test_apply_three_regions.constprop.0+0x95/0x3e0
[] damon_test_apply_three_regions1+0x21e/0x260
[] kunit_generic_run_threadfn_adapter+0x4a/0x90
[] kthread+0x2b6/0x380
[] ret_from_fork+0x2d/0x70
[] ret_from_fork_asm+0x11/0x20
unreferenced object 0xffff8881079cc740 (size 56):
comm "kunit_try_catch", pid 1069, jiffies 4294670592 (age 732.761s)
hex dump (first 32 bytes):
05 00 00 00 00 00 00 00 14 00 00 00 00 00 00 00 ................
6b 6b 6b 6b 6b 6b 6b 6b 00 00 00 00 6b 6b 6b 6b kkkkkkkk....kkkk
backtrace:
[] damon_new_region+0x22/0x1c0
[] damon_do_test_apply_three_regions.constprop.0+0xd1/0x3e0
[] damon_test_apply_three_regions1+0x21e/0x260
[] kunit_generic_run_threadfn_adapter+0x4a/0x90
[] kthread+0x2b6/0x380
[] ret_from_fork+0x2d/0x70
[] ret_from_fork_asm+0x11/0x20
unreferenced object 0xffff888107c9ac40 (size 64):
comm "kunit_try_catch", pid 1071, jiffies 4294670595 (age 732.843s)
hex dump (first 32 bytes):
00 00 00 00 00 00 00 00 06 00 00 00 6b 6b 6b 6b ............kkkk
a0 cc 9c 07 81 88 ff ff 78 a1 76 07 81 88 ff ff ........x.v.....
backtrace:
[] kmalloc_trace+0x27/0xa0
[] damon_new_target+0x3f/0x1b0
[] damon_do_test_apply_three_regions.constprop.0+0x95/0x3e0
[] damon_test_apply_three_regions2+0x21e/0x260
[] kunit_generic_run_threadfn_adapter+0x4a/0x90
[] kthread+0x2b6/0x380
[] ret_from_fork+0x2d/0x70
[] ret_from_fork_asm+0x11/0x20
unreferenced object 0xffff8881079ccc80 (size 56):
comm "kunit_try_catch", pid 1071, jiffies 4294670595 (age 732.843s)
hex dump (first 32 bytes):
05 00 00 00 00 00 00 00 14 00 00 00 00 00 00 00 ................
6b 6b 6b 6b 6b 6b 6b 6b 00 00 00 00 6b 6b 6b 6b kkkkkkkk....kkkk
backtrace:
[] damon_new_region+0x22/0x1c0
[] damon_do_test_apply_three_regions.constprop.0+0xd1/0x3e0
[] damon_test_apply_three_regions2+0x21e/0x260
[] kunit_generic_run_threadfn_adapter+0x4a/0x90
[] kthread+0x2b6/0x380
[] ret_from_fork+0x2d/0x70
[---truncated---

Solution

debian-upgrade-linux
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.