CVE-2025-71288

MEDIUM

memory: mtk-smi: fix device leaks on common probe

Title source: cna

Description

In the Linux kernel, the following vulnerability has been resolved: memory: mtk-smi: fix device leaks on common probe Make sure to drop the reference taken when looking up the SMI device during common probe on late probe failure (e.g. probe deferral) and on driver unbind.

References (6)

Core 6

Core References

https://git.kernel.org/stable/c/b8b2cf42b94c0a8efe43279643935256a6f58b9f

https://git.kernel.org/stable/c/b16599fedf49fd42d174fba342a0b56103df3169

https://git.kernel.org/stable/c/984992f31cfb71b25cd0a72ef51ceb5dd6f187e8

https://git.kernel.org/stable/c/b44d090d6ca159d94b59ad4cc44ffdaca094df82

https://git.kernel.org/stable/c/9704564a70399c2787f5a7c5d347add721056e9d

https://git.kernel.org/stable/c/6cfa038bddd710f544076ea2ef7792fc82fbedd6

Scores

CVSS v3 5.5

EPSS 0.0001

EPSS Percentile 2.4%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-401

Status published

Products (15)

Linux/Linux < 5.16

Linux/Linux 47404757702ec8aa5c8310cdf58a267081f0ce6c - 6cfa038bddd710f544076ea2ef7792fc82fbedd6

Linux/Linux 47404757702ec8aa5c8310cdf58a267081f0ce6c - 9704564a70399c2787f5a7c5d347add721056e9d

Linux/Linux 47404757702ec8aa5c8310cdf58a267081f0ce6c - 984992f31cfb71b25cd0a72ef51ceb5dd6f187e8

Linux/Linux 47404757702ec8aa5c8310cdf58a267081f0ce6c - b16599fedf49fd42d174fba342a0b56103df3169

Linux/Linux 47404757702ec8aa5c8310cdf58a267081f0ce6c - b44d090d6ca159d94b59ad4cc44ffdaca094df82

Linux/Linux 47404757702ec8aa5c8310cdf58a267081f0ce6c - b8b2cf42b94c0a8efe43279643935256a6f58b9f

Linux/Linux 5.16

Linux/Linux 6.1.167 - 6.1.*

Linux/Linux 6.12.77 - 6.12.*

... and 5 more

Published May 06, 2026

Tracked Since May 06, 2026