CVE-2025-71191

Summary

In the Linux kernel, the following vulnerability has been resolved:

dmaengine: at_hdmac: fix device leak on of_dma_xlate()

Make sure to drop the reference taken when looking up the DMA platform device during of_dma_xlate() when releasing channel resources.

Note that commit 3832b78b3ec2 ("dmaengine: at_hdmac: add missing put_device() call in at_dma_xlate()") fixed the leak in a couple of error paths but the reference is still leaking on successful allocation.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxbbe89c8e3d598129b728d1388c3ad9abe4e8e261 < 49d964cde422dc66fea514b7ab24aa729df7081daffected
LinuxLinuxbbe89c8e3d598129b728d1388c3ad9abe4e8e261 < 4c67b4f45c8540ee4e62e24ca4608c6a9a81ee0faffected
LinuxLinuxbbe89c8e3d598129b728d1388c3ad9abe4e8e261 < 48b2d7f530b83cb149dbf0e48f95ccadb2d90da9affected
LinuxLinuxbbe89c8e3d598129b728d1388c3ad9abe4e8e261 < 987c71671367f42460689b78244d7b894c50999aaffected
LinuxLinuxbbe89c8e3d598129b728d1388c3ad9abe4e8e261 < 6a86cf2c09e149d5718a5b7090545f7566da9334affected
LinuxLinuxbbe89c8e3d598129b728d1388c3ad9abe4e8e261 < f3c23b7e941349505c3d40de2cc0acd93d9ac057affected
LinuxLinuxbbe89c8e3d598129b728d1388c3ad9abe4e8e261 < b9074b2d7a230b6e28caa23165e9d8bc0677d333affected
LinuxLinux3.10affected
LinuxLinux0 < 3.10unaffected
LinuxLinux5.10.249 <= 5.10.*unaffected
LinuxLinux5.15.199 <= 5.15.*unaffected
LinuxLinux6.1.162 <= 6.1.*unaffected
LinuxLinux6.6.122 <= 6.6.*unaffected
LinuxLinux6.12.67 <= 6.12.*unaffected
LinuxLinux6.18.7 <= 6.18.*unaffected
LinuxLinux6.19 <= *unaffected

Weaknesses

ADP Enrichment

Additional References

References