Mondoo

Vulnerability Management
Technology
Services

Solutions

Financial Services
Manufacturing
Healthcare

Resources

Blog
Vulnerability Database
Documentation
GitHub

Company

About
Careers
Partners
Contact

Legal

Privacy
Terms
Imprint

CVE-2025-71287 | Mondoo Vulnerability Intelligence

Vulnerability IntelligenceCVE-2025-71287

CVE-2025-71287

MEDIUM5.5

memory: mtk-smi: fix device leak on larb probe

Published May 6, 2026

Modified 1 weeks ago

Details

In the Linux kernel, the following vulnerability has been resolved:

memory: mtk-smi: fix device leak on larb probe

Make sure to drop the reference taken when looking up the SMI device during larb probe on late probe failure (e.g. probe deferral) and on driver unbind.

References

WEB

https://git.kernel.org/stable/c/04057b86fdac3d4847913a97dc6552c0bff9b85e

WEB

https://git.kernel.org/stable/c/1288bb394d464975cea18f69940f206e235e0fe7

WEB

https://git.kernel.org/stable/c/1f23a48ff2b8ab47e514f7c84a4b1dbf9b848168

WEB

https://git.kernel.org/stable/c/357e16a7fc9c1fef2ea37dce9bb6b9bcb1d1687d

WEB

https://git.kernel.org/stable/c/9dae65913b32d05dbc8ff4b8a6bf04a0e49a8eb6

WEB

https://git.kernel.org/stable/c/b9eccd59697f7e1cb9a714501d9af826e7f7e073

WEB

https://git.kernel.org/stable/c/f69535b77fa0518ad39870c00dd2995439ed5c34

ADVISORY

https://www.cve.org/CVERecord?id=CVE-2025-71287

CVSS Analysis

CVSS v3.1

5.5

Exploitability

Attack Vector

LocalAV:L

Attack Complexity

LowAC:L

Privileges Required

LowPR:L

User Interaction

NoneUI:N

Scope

UnchangedS:U

Impact

Confidentiality

NoneC:N

Integrity

NoneI:N

Availability

HighA:H

5.5/CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Ecosystems

Timeline

PublishedMay 6, 2026

ModifiedMay 11, 2026