CVE-2025-71188

EUVD-2025-206587
In the Linux kernel, the following vulnerability has been resolved:

dmaengine: lpc18xx-dmamux: fix device leak on route allocation

Make sure to drop the reference taken when looking up the DMA mux
platform device during route allocation.

Note that holding a reference to a device does not prevent its driver
data from going away so there is no point in keeping the reference.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
UNKNOWN
---
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 9%
Debian logo
Debian Releases
Debian Product
Codename
linux
bookworm
ignored
bookworm (security)
vulnerable
bullseye
ignored
bullseye (security)
vulnerable
forky
6.18.9-1
fixed
sid
6.18.12-1
fixed
trixie
ignored
trixie (security)
vulnerable
Vulnerability Media Exposure
References
https://git.kernel.org/stable/c/1e47d80f6720f0224efd19bcf081d39637569c10
https://git.kernel.org/stable/c/3d396ebfb3049a2b5fac51d2c967db5114b685e8
https://git.kernel.org/stable/c/499ddae78c4baa9b94df76b2d2eb6b150d15377f
https://git.kernel.org/stable/c/992eb8055a6e5dbb808672d20d68e60d5a89b12b
https://git.kernel.org/stable/c/9fba97baa520c9446df51a64708daf27c5a7ed32
https://git.kernel.org/stable/c/adef147a8d8c3d767abf88ad2c381ffab2993086
https://git.kernel.org/stable/c/d4d63059dee7e7cae0c4d9a532ed558bc90efb55