CVE-2025-71190

In the Linux kernel, the following vulnerability has been resolved: dmaengine: bcm-sba-raid: fix device leak on probe Make sure to drop the reference taken when looking up the mailbox device during probe on probe failures and on driver unbind.

CVSS v3 5.5 MEDIUM

5.5^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://git.kernel.org/stable/c/2ed1a9de1f2d727ccae5bc9cc7c63ee3519c0c8b	Patch
https://git.kernel.org/stable/c/4316e4c4fd2c09f68a262365f21847cafa8fe9dd	Patch
https://git.kernel.org/stable/c/4730f12a192d7314119b3d8331611ab151b87bdf	Patch
https://git.kernel.org/stable/c/7c3a46ebf15a9796b763a54272407fdbf945bed8	Patch
https://git.kernel.org/stable/c/bc98e68adfef3b25c06ff08f0808bb59f787420c	Patch
https://git.kernel.org/stable/c/c80ca7bdff158401440741bdcf9175bd8608580b	Patch
https://git.kernel.org/stable/c/db6f1d6d31711e73e6a214c73e6a8fb4cda0483d	Patch
https://cert-portal.siemens.com/productcert/html/ssa-253495.html

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel:4.13:-::::::
	cpe:2.3:o:linux:linux_kernel:6.19:rc1::::::
	cpe:2.3:o:linux:linux_kernel:6.19:rc2::::::
	cpe:2.3:o:linux:linux_kernel:6.19:rc3::::::
	cpe:2.3:o:linux:linux_kernel:6.19:rc4::::::
	cpe:2.3:o:linux:linux_kernel:6.19:rc5::::::
	cpe:2.3:o:linux:linux_kernel:6.19:rc6::::::
	cpe:2.3:o:linux:linux_kernel:6.19:rc7::::::
	cpe:2.3:o:linux:linux_kernel:6.19:rc8::::::

History

02 Jun 2026, 14:16

Type	Values Removed	Values Added
References		() https://cert-portal.siemens.com/productcert/html/ssa-253495.html -

25 Mar 2026, 18:21

Type	Values Removed	Values Added
First Time		Linux Linux linux Kernel
CPE		cpe:2.3:o:linux:linux_kernel:6.19:rc1:::::: cpe:2.3:o:linux:linux_kernel:::::::: cpe:2.3:o:linux:linux_kernel:6.19:rc8:::::: cpe:2.3:o:linux:linux_kernel:6.19:rc3:::::: cpe:2.3:o:linux:linux_kernel:4.13:-:::::: cpe:2.3:o:linux:linux_kernel:6.19:rc4:::::: cpe:2.3:o:linux:linux_kernel:6.19:rc2:::::: cpe:2.3:o:linux:linux_kernel:6.19:rc6:::::: cpe:2.3:o:linux:linux_kernel:6.19:rc5:::::: cpe:2.3:o:linux:linux_kernel:6.19:rc7::::::
References	~~() https://git.kernel.org/stable/c/2ed1a9de1f2d727ccae5bc9cc7c63ee3519c0c8b -~~	() https://git.kernel.org/stable/c/2ed1a9de1f2d727ccae5bc9cc7c63ee3519c0c8b - Patch
References	~~() https://git.kernel.org/stable/c/4316e4c4fd2c09f68a262365f21847cafa8fe9dd -~~	() https://git.kernel.org/stable/c/4316e4c4fd2c09f68a262365f21847cafa8fe9dd - Patch
References	~~() https://git.kernel.org/stable/c/4730f12a192d7314119b3d8331611ab151b87bdf -~~	() https://git.kernel.org/stable/c/4730f12a192d7314119b3d8331611ab151b87bdf - Patch
References	~~() https://git.kernel.org/stable/c/7c3a46ebf15a9796b763a54272407fdbf945bed8 -~~	() https://git.kernel.org/stable/c/7c3a46ebf15a9796b763a54272407fdbf945bed8 - Patch
References	~~() https://git.kernel.org/stable/c/bc98e68adfef3b25c06ff08f0808bb59f787420c -~~	() https://git.kernel.org/stable/c/bc98e68adfef3b25c06ff08f0808bb59f787420c - Patch
References	~~() https://git.kernel.org/stable/c/c80ca7bdff158401440741bdcf9175bd8608580b -~~	() https://git.kernel.org/stable/c/c80ca7bdff158401440741bdcf9175bd8608580b - Patch
References	~~() https://git.kernel.org/stable/c/db6f1d6d31711e73e6a214c73e6a8fb4cda0483d -~~	() https://git.kernel.org/stable/c/db6f1d6d31711e73e6a214c73e6a8fb4cda0483d - Patch
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 5.5
Summary		(es) En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta: dmaengine: bcm-sba-raid: corregir fuga de dispositivo en la sonda Asegúrese de liberar la referencia tomada al buscar el dispositivo de buzón durante la sonda en fallos de la sonda y al desvincular el controlador.
CWE		NVD-CWE-noinfo

06 Feb 2026, 17:16

Type	Values Removed	Values Added
References		() https://git.kernel.org/stable/c/4316e4c4fd2c09f68a262365f21847cafa8fe9dd - () https://git.kernel.org/stable/c/4730f12a192d7314119b3d8331611ab151b87bdf - () https://git.kernel.org/stable/c/bc98e68adfef3b25c06ff08f0808bb59f787420c -

31 Jan 2026, 12:16

Type	Values Removed	Values Added
New CVE

Information

Published : 2026-01-31 12:16

Updated : 2026-06-02 14:16

NVD link : CVE-2025-71190

Mitre link : CVE-2025-71190

CVE.ORG link : CVE-2025-71190

JSON object : View

Products Affected

linux

linux_kernel

CWE

NVD-CWE-noinfo

5.5 /10