CVE-2025-71188

5.5 MEDIUM

Published: January 31, 2026 Modified: March 25, 2026

Description

In the Linux kernel, the following vulnerability has been resolved: dmaengine: lpc18xx-dmamux: fix device leak on route allocation Make sure to drop the reference taken when looking up the DMA mux platform device during route allocation. Note that holding a reference to a device does not prevent its driver data from going away so there is no point in keeping the reference.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

CVSS v3.x Details

0.0 Low Medium High Critical 10.0

Vector String

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

https://git.kernel.org/stable/c/1e47d80f6720f0224efd19bcf081d39637569c10

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/3d396ebfb3049a2b5fac51d2c967db5114b685e8

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/499ddae78c4baa9b94df76b2d2eb6b150d15377f

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/992eb8055a6e5dbb808672d20d68e60d5a89b12b

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/9fba97baa520c9446df51a64708daf27c5a7ed32

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/adef147a8d8c3d767abf88ad2c381ffab2993086

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/d4d63059dee7e7cae0c4d9a532ed558bc90efb55

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

7 reference(s) from NVD

Quick Stats

CVSS v3 Score

5.5 / 10.0

EPSS (Exploit Probability)

0.0%

1th percentile

Exploitation Status

Not in CISA KEV

Weaknesses (CWE)

CWE-401

Affected Vendors

linux

Related CVEs

CVE-2026-34005 8.8

CVE-2026-5046 8.8

CVE-2026-5045 8.8

CVE-2026-5044 8.8

CVE-2026-33575 7.5