CVE-2025-71271

Published: May 6, 2026

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: hfsplus: ensure sb->s_fs_info is always cleaned up When hfsplus was converted to the new mount api a bug was introduced by changing the allocation pattern of sb->s_fs_info. If setup_bdev_super() fails after a new superblock has been allocated by sget_fc(), but before hfsplus_fill_super() takes ownership of the filesystem-specific s_fs_info data it was leaked. Fix this by freeing sb->s_fs_info in hfsplus_kill_super().

Vendor	Product	Versions
Linux	Linux	affected `432f7c78cb000a3151fa0d39585b000312f50d7e - < 0bcfebb83b5460d5be4e5c9dfb19cdaf3d4cb1db` affected `432f7c78cb000a3151fa0d39585b000312f50d7e - < 1e38d32bb04d85a2c81204a85a34878a497128c8` affected `432f7c78cb000a3151fa0d39585b000312f50d7e - < 126fb0ce99431126b44a6c360192668c818f641f`
Linux	Linux	affected `6.13` unaffected `0 - < 6.13` unaffected `6.18.16 - <= 6.18.` unaffected `6.19.6 - <= 6.19.` unaffected `7.0 - <= *`

References

https://git.kernel.org/stable/c/0bcfebb83b5460d5be4e5c9dfb19cdaf3d4cb1db

https://git.kernel.org/stable/c/1e38d32bb04d85a2c81204a85a34878a497128c8

https://git.kernel.org/stable/c/126fb0ce99431126b44a6c360192668c818f641f

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-71271

Description

Affected Products

References