CVE-2025-71271 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: hfsplus: ensure sb->s_fs_info is always cleaned up When hfsplus was converted to the new mount api a bug was introduced by changing the allocation pattern of sb->s_fs_info. If setup_bdev_super() fails after a new superblock has been allocated by sget_fc(), but before hfsplus_fill_super() takes ownership of the filesystem-specific s_fs_info data it was leaked. Fix this by freeing sb->s_fs_info in hfsplus_kill_super().

PUBLISHED Reserved 2026-03-17 | Published 2026-05-06 | Updated 2026-05-06 | Assigner Linux

Product status

Default status

unaffected

432f7c78cb000a3151fa0d39585b000312f50d7e (git) before 0bcfebb83b5460d5be4e5c9dfb19cdaf3d4cb1db

affected

432f7c78cb000a3151fa0d39585b000312f50d7e (git) before 1e38d32bb04d85a2c81204a85a34878a497128c8

affected

432f7c78cb000a3151fa0d39585b000312f50d7e (git) before 126fb0ce99431126b44a6c360192668c818f641f

affected

Default status

affected

6.13

affected

Any version before 6.13

unaffected

6.18.16 (semver)

unaffected

6.19.6 (semver)

unaffected

7.0 (original_commit_for_fix)

unaffected

References

git.kernel.org/...c/0bcfebb83b5460d5be4e5c9dfb19cdaf3d4cb1db

git.kernel.org/...c/1e38d32bb04d85a2c81204a85a34878a497128c8

git.kernel.org/...c/126fb0ce99431126b44a6c360192668c818f641f

cve.org (CVE-2025-71271)

nvd.nist.gov (CVE-2025-71271)

Download JSON

help @ threatint.eu