Memory Management Issue in Linux Kernel Affects Various Implementations
CVE-2025-71287

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 6 May 2026

What is CVE-2025-71287?

A vulnerability in the Linux kernel's memory management system was identified that pertains to the MediaTek SMI driver during the larb probe process. The issue arises from improper handling of device references, leading to device leaks. Specifically, this occurs when the SMI device reference is not dropped during late probe failures, such as probe deferrals and driver unbinding. Addressing this vulnerability is crucial to ensure optimal memory management and resource allocation within the kernel.

Affected Version(s)

Linux cc8bbe1a83128ad06457e4dc69907c4f9a6fc1a7 < 04057b86fdac3d4847913a97dc6552c0bff9b85e

Linux cc8bbe1a83128ad06457e4dc69907c4f9a6fc1a7 < 357e16a7fc9c1fef2ea37dce9bb6b9bcb1d1687d

Linux cc8bbe1a83128ad06457e4dc69907c4f9a6fc1a7

References

https://git.kernel.org/stable/c/04057b86fdac3d4847913a97d...

https://git.kernel.org/stable/c/357e16a7fc9c1fef2ea37dce9...

https://git.kernel.org/stable/c/b9eccd59697f7e1cb9a714501...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 6, 2026
Vulnerability Reserved
May 6, 2026

CVE-2025-71287 Data

JSON