CVE-2025-71084

MEDIUM EPSS 1.8%
Published Jan 13, 20265mo ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Jan 13, 2026 5mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: RDMA/cm: Fix leaking the multicast GID table reference If the CM ID is destroyed while the CM event for multicast creating is still queued the cancel_work_sync() will prevent the work from running which also prevents destroying the ah_attr. This leaks a refcount and triggers a WARN: GID entry ref leak for dev syz1 index 2 ref=573 WARNING: CPU: 1 PID: 655 at drivers/infiniband/core/cache.c:809 release_gid_table drivers/infiniband/core/cache.c:806 [inline] WARNING: CPU: 1 PID: 655 at drivers/infiniband/core/cache.c:809 gid_table_release_one+0x284/0x3cc drivers/infiniband/core/cache.c:886 Destroy the ah_attr after canceling the work, it is safe to call this twice.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
1.8% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 16

VendorProductVersionRange
linuxlinux_kernel*≥5.10.20  –  <5.10.248
linuxlinux_kernel*≥5.11.3  –  <5.12
linuxlinux_kernel*≥5.12.1  –  <5.15.198
linuxlinux_kernel*≥5.16  –  <6.1.160
linuxlinux_kernel*≥6.2  –  <6.6.120
linuxlinux_kernel*≥6.7  –  <6.12.64
linuxlinux_kernel*≥6.13  –  <6.18.4
linuxlinux_kernel5.12any
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any

References 7

  • git.kernel.org https://git.kernel.org/stable/c/3ba6d01c4b3c584264dc733c6a2ecc5bbc8e0bb5
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/57f3cb6c84159d12ba343574df2115fb18dd83ca
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5cb34bb5fd726491b809efbeb5cfd63ae5bf9cf3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ab668a58c4a2ccb6d54add7a76f2f955d15d0196
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/abf38398724ecc888f62c678d288da40d11878af
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c0acdee513239e1d6e1b490f56be0e6837dfd162
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d5ce588a9552878859a4d44b70b724216c188a5f
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/3ba6d01c4b3c584264dc733c6a2ecc5bbc8e0bb5
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/57f3cb6c84159d12ba343574df2115fb18dd83ca
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5cb34bb5fd726491b809efbeb5cfd63ae5bf9cf3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ab668a58c4a2ccb6d54add7a76f2f955d15d0196
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/abf38398724ecc888f62c678d288da40d11878af
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c0acdee513239e1d6e1b490f56be0e6837dfd162
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d5ce588a9552878859a4d44b70b724216c188a5f
    Patch