CVE-2025-71148

Summary

In the Linux kernel, the following vulnerability has been resolved:

net/handshake: restore destructor on submit failure

handshake_req_submit() replaces sk->sk_destruct but never restores it when submission fails before the request is hashed. handshake_sk_destruct() then returns early and the original destructor never runs, leaking the socket. Restore sk_destruct on the error path.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux3b3009ea8abb713b022d94fba95ec270cf6e7eae < cd8cf2be3717137554744233fda051ffc09d1d44affected
LinuxLinux3b3009ea8abb713b022d94fba95ec270cf6e7eae < 7b82a1d6ae869533d8bdb0282a3a78faed8e63ddaffected
LinuxLinux3b3009ea8abb713b022d94fba95ec270cf6e7eae < b225325be7b247c7268e65eea6090db1fc786d1faffected
LinuxLinux3b3009ea8abb713b022d94fba95ec270cf6e7eae < 6af2a01d65f89e73c1cbb9267f8880d83a88cee4affected
LinuxLinux6.4affected
LinuxLinux0 < 6.4unaffected
LinuxLinux6.6.120 <= 6.6.*unaffected
LinuxLinux6.12.64 <= 6.12.*unaffected
LinuxLinux6.18.3 <= 6.18.*unaffected
LinuxLinux6.19 <= *unaffected

Weaknesses

References