CVE-2025-71163
Published: February 1, 2026Last modified: February 20, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: fix device leaks on compat bind and unbind Make sure to drop the reference taken when looking up the idxd device as part of the compat bind and unbind sysfs interface.
Severity score breakdown
| Parameter | Value |
|---|---|
| Base score | 5.5 |
| Attack Vector | LOCAL |
| Attack complexity | LOW |
| Privileges required | LOW |
| User interaction | NONE |
| Scope | UNCHANGED |
| Confidentiality | NONE |
| Integrity impact | NONE |
| Availability impact | HIGH |
| Vector | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Status
| Product | Release | Package | Status |
|---|---|---|---|
| Alpaquita Linux | 23 LTS | linux-lts | Fixed (6.1.163-r0) |
| 25 LTS | linux-lts | Fixed (6.12.73-r0) | |
| Stream | linux-lts | Fixed (6.12.67-r0) |
References
- https://git.kernel.org/stable/c/0c97ff108f825a70c3bb29d65ddf0a013d231bb9
- https://git.kernel.org/stable/c/799900f01792cf8b525a44764f065f83fcafd468
- https://git.kernel.org/stable/c/a7226fd61def74b60dd8e47ec84cabafc39d575b
- https://git.kernel.org/stable/c/b2d077180a56e3b7c97b7517d0465b584adc693b
- https://git.kernel.org/stable/c/b7bd948f89271c92d9ca9b2b682bfba56896e959
- https://git.kernel.org/stable/c/c81ea0222eaaafdd77348e27d1e84a1b8cfc0c99