CVE-2025-71163

medium

Description

In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: fix device leaks on compat bind and unbind Make sure to drop the reference taken when looking up the idxd device as part of the compat bind and unbind sysfs interface.

References

https://git.kernel.org/stable/c/c81ea0222eaaafdd77348e27d1e84a1b8cfc0c99

https://git.kernel.org/stable/c/b7bd948f89271c92d9ca9b2b682bfba56896e959

https://git.kernel.org/stable/c/b2d077180a56e3b7c97b7517d0465b584adc693b

https://git.kernel.org/stable/c/a7226fd61def74b60dd8e47ec84cabafc39d575b

https://git.kernel.org/stable/c/799900f01792cf8b525a44764f065f83fcafd468

https://git.kernel.org/stable/c/0c97ff108f825a70c3bb29d65ddf0a013d231bb9

Details

Source: Mitre, NVD

Published: 2026-01-25

Updated: 2026-02-06

Risk Information

CVSS v2

Base Score: 4.6

Vector: CVSS2#AV:L/AC:L/Au:S/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium

EPSS

EPSS: 0.00017