{"id":"CVE-2024-26840","summary":"cachefiles: fix memory leak in cachefiles_add_cache()","details":"In the Linux kernel, the following vulnerability has been resolved:\n\ncachefiles: fix memory leak in cachefiles_add_cache()\n\nThe following memory leak was reported after unbinding /dev/cachefiles:\n\n==================================================================\nunreferenced object 0xffff9b674176e3c0 (size 192):\n  comm \"cachefilesd2\", pid 680, jiffies 4294881224\n  hex dump (first 32 bytes):\n    01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................\n    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................\n  backtrace (crc ea38a44b):\n    [\u003cffffffff8eb8a1a5\u003e] kmem_cache_alloc+0x2d5/0x370\n    [\u003cffffffff8e917f86\u003e] prepare_creds+0x26/0x2e0\n    [\u003cffffffffc002eeef\u003e] cachefiles_determine_cache_security+0x1f/0x120\n    [\u003cffffffffc00243ec\u003e] cachefiles_add_cache+0x13c/0x3a0\n    [\u003cffffffffc0025216\u003e] cachefiles_daemon_write+0x146/0x1c0\n    [\u003cffffffff8ebc4a3b\u003e] vfs_write+0xcb/0x520\n    [\u003cffffffff8ebc5069\u003e] ksys_write+0x69/0xf0\n    [\u003cffffffff8f6d4662\u003e] do_syscall_64+0x72/0x140\n    [\u003cffffffff8f8000aa\u003e] entry_SYSCALL_64_after_hwframe+0x6e/0x76\n==================================================================\n\nPut the reference count of cache_cred in cachefiles_daemon_unbind() to\nfix the problem. And also put cache_cred in cachefiles_add_cache() error\nbranch to avoid memory leaks.","modified":"2026-03-20T12:35:15.393768Z","published":"2024-04-17T10:10:06.180Z","related":["SUSE-SU-2024:1642-1","SUSE-SU-2024:1643-1","SUSE-SU-2024:1644-1","SUSE-SU-2024:1645-1","SUSE-SU-2024:1646-1","SUSE-SU-2024:1650-1","SUSE-SU-2024:1870-1","SUSE-SU-2024:2008-1","SUSE-SU-2024:2011-1","SUSE-SU-2024:2189-1","SUSE-SU-2024:2190-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/26xxx/CVE-2024-26840.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/037d5a949b0455540ef9aab34c10ddf54b65d285"},{"type":"WEB","url":"https://git.kernel.org/stable/c/38e921616320d159336b0ffadb09e9fb4945c7c3"},{"type":"WEB","url":"https://git.kernel.org/stable/c/43eccc5823732ba6daab2511ed32dfc545a666d8"},{"type":"WEB","url":"https://git.kernel.org/stable/c/8b218e2f0a27a9f09428b1847b4580640b9d1e58"},{"type":"WEB","url":"https://git.kernel.org/stable/c/94965be37add0983672e48ecb33cdbda92b62579"},{"type":"WEB","url":"https://git.kernel.org/stable/c/9cac69912052a4def571fedf1cb9bb4ec590e25a"},{"type":"WEB","url":"https://git.kernel.org/stable/c/cb5466783793e66272624cf71925ae1d1ba32083"},{"type":"WEB","url":"https://git.kernel.org/stable/c/e21a2f17566cbd64926fb8f16323972f7a064444"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/26xxx/CVE-2024-26840.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-26840"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"9ae326a69004dea8af2dae4fde58de27db700a8d"},{"fixed":"cb5466783793e66272624cf71925ae1d1ba32083"},{"fixed":"037d5a949b0455540ef9aab34c10ddf54b65d285"},{"fixed":"43eccc5823732ba6daab2511ed32dfc545a666d8"},{"fixed":"94965be37add0983672e48ecb33cdbda92b62579"},{"fixed":"8b218e2f0a27a9f09428b1847b4580640b9d1e58"},{"fixed":"38e921616320d159336b0ffadb09e9fb4945c7c3"},{"fixed":"9cac69912052a4def571fedf1cb9bb4ec590e25a"},{"fixed":"e21a2f17566cbd64926fb8f16323972f7a064444"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-26840.json"}}],"schema_version":"1.7.5"}