CVE-2024-57885: 
Linux Kernel vulnerability analysis and mitigation

CVE-2024-57885 addresses a bug in the Linux kernel that triggers a 'sleeping function called from invalid context' warning when /sys/kernel/debug/kmemleak is printed under specific conditions. The vulnerability was discovered in December 2024 and officially published on January 15, 2025. The issue affects Linux kernel systems with specific configurations including CONFIGPREEMPTRT=y, SELinux as the LSM, and kptr_restrict set to 1 (Kernel Git).

The vulnerability occurs when printing kernel memory leak debugging information under specific conditions. The issue arises from redundant pointer format specifiers (%pS and %pK) in the same backtrace line, where %pK requires a privilege check through the Linux Security Module (LSM). This check can trigger the warning under RT_PREEMPT kernels when occurring in an atomic context. The bug manifests specifically when the kmemleak buffer contains at least one item and the system meets the required configuration conditions (Kernel Git).

The vulnerability affects system stability and debugging capabilities when using the kernel memory leak debugging feature. While primarily impacting debugging functionality, it can cause system warnings and potential instability in specific kernel configurations (NVD).

The issue has been fixed by removing the redundant %pK format specifier and using only %pS, which provides the necessary information while avoiding the problematic privilege check. The fix was implemented through a patch that modifies the mm/kmemleak.c file (Kernel Git).