CVE-2025-71287

MEDIUM

memory: mtk-smi: fix device leak on larb probe

Title source: cna

Description

In the Linux kernel, the following vulnerability has been resolved: memory: mtk-smi: fix device leak on larb probe Make sure to drop the reference taken when looking up the SMI device during larb probe on late probe failure (e.g. probe deferral) and on driver unbind.

References (7)

Core 7

Core References

https://git.kernel.org/stable/c/1288bb394d464975cea18f69940f206e235e0fe7

https://git.kernel.org/stable/c/9dae65913b32d05dbc8ff4b8a6bf04a0e49a8eb6

https://git.kernel.org/stable/c/04057b86fdac3d4847913a97dc6552c0bff9b85e

https://git.kernel.org/stable/c/357e16a7fc9c1fef2ea37dce9bb6b9bcb1d1687d

https://git.kernel.org/stable/c/b9eccd59697f7e1cb9a714501d9af826e7f7e073

https://git.kernel.org/stable/c/1f23a48ff2b8ab47e514f7c84a4b1dbf9b848168

https://git.kernel.org/stable/c/f69535b77fa0518ad39870c00dd2995439ed5c34

Scores

CVSS v3 5.5

EPSS 0.0001

EPSS Percentile 2.4%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-401

Status published

Products (17)

Linux/Linux < 4.6

Linux/Linux 4.6

Linux/Linux 5.15.203 - 5.15.*

Linux/Linux 6.1.167 - 6.1.*

Linux/Linux 6.12.77 - 6.12.*

Linux/Linux 6.18.17 - 6.18.*

Linux/Linux 6.19.6 - 6.19.*

Linux/Linux 6.6.130 - 6.6.*

Linux/Linux 7.0

Linux/Linux cc8bbe1a83128ad06457e4dc69907c4f9a6fc1a7 - 04057b86fdac3d4847913a97dc6552c0bff9b85e

... and 7 more

Published May 06, 2026

Tracked Since May 06, 2026