CVE-2025-71230

Summary

In the Linux kernel, the following vulnerability has been resolved:

hfs: ensure sb->s_fs_info is always cleaned up

When hfs was converted to the new mount api a bug was introduced by changing the allocation pattern of sb->s_fs_info. If setup_bdev_super() fails after a new superblock has been allocated by sget_fc(), but before hfs_fill_super() takes ownership of the filesystem-specific s_fs_info data it was leaked.

Fix this by freeing sb->s_fs_info in hfs_kill_super().

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxffcd06b6d13b72823aba0d7c871f7e4876e7916b < 46c1d56ad321fb024761abd9af61a0cb616cf2f6affected
LinuxLinuxffcd06b6d13b72823aba0d7c871f7e4876e7916b < 399219831514126bc9541e8eadefe02c6fbd9166affected
LinuxLinuxffcd06b6d13b72823aba0d7c871f7e4876e7916b < 05ce49a902be15dc93854cbfc20161205a9ee446affected
LinuxLinux6.13affected
LinuxLinux0 < 6.13unaffected
LinuxLinux6.18.11 <= 6.18.*unaffected
LinuxLinux6.19.1 <= 6.19.*unaffected
LinuxLinux7.0 <= *unaffected

Weaknesses

References