CVE-2026-52905

medium Red Hat
Published: June 9, 2026 (30 days ago)
Last Modified: June 9, 2026
Vendor: Red Hat
Source: REDHAT

Description

A flaw was found in the Linux kernel's Data Access MONitor (DAMON) core. The `damon_start()` function, when used via the DAMON sysfs interface, failed to properly validate the `min_region_sz` parameter. This allowed non-power of two values, which could lead to unaligned DAMON region address ranges and potentially result in a Denial of Service (DoS) due to system instability.

CWE

CWE-1284

Affected Products

Red Hat Enterprise Linux 10Red Hat Enterprise Linux 6Red Hat Enterprise Linux 7Red Hat Enterprise Linux 8Red Hat Enterprise Linux 9

References