CVE-2025-71288

memory: mtk-smi: fix device leaks on common probe

Severity Score

5.5

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved: memory: mtk-smi: fix device leaks on common probe Make sure to drop the reference taken when looking up the SMI device
during common probe on late probe failure (e.g. probe deferral) and on
driver unbind.

*Credits: N/A

CVSS Scores

NISTv3.1 5.5

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2026-05-06 CVE Reserved
2026-05-06 CVE Published
2026-05-13 CVE Updated
2026-05-14 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-401: Missing Release of Memory after Effective Lifetime

CAPEC

References (7)

URL	Tag	Source
https://git.kernel.org/stable/c/47404757702ec8aa5c8310cdf58a267081f0ce6c	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/b8b2cf42b94c0a8efe43279643935256a6f58b9f	2026-03-25
https://git.kernel.org/stable/c/b16599fedf49fd42d174fba342a0b56103df3169	2026-03-25
https://git.kernel.org/stable/c/984992f31cfb71b25cd0a72ef51ceb5dd6f187e8	2026-03-13
https://git.kernel.org/stable/c/b44d090d6ca159d94b59ad4cc44ffdaca094df82	2026-03-12
https://git.kernel.org/stable/c/9704564a70399c2787f5a7c5d347add721056e9d	2026-03-04
https://git.kernel.org/stable/c/6cfa038bddd710f544076ea2ef7792fc82fbedd6	2025-12-16

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.16 < 6.1.167 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.16 < 6.1.167"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.16 < 6.6.130 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.16 < 6.6.130"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.16 < 6.12.77 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.16 < 6.12.77"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.16 < 6.18.17 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.16 < 6.18.17"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.16 < 6.19.6 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.16 < 6.19.6"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.16 < 7.0 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.16 < 7.0"		en		Affected