CVE-2025-71157 - Vulnerability Details - OpenCVE

In the Linux kernel, the following vulnerability has been resolved: RDMA/core: always drop device refcount in ib_del_sub_device_and_put() Since nldev_deldev() (introduced by commit 060c642b2ab8 ("RDMA/nldev: Add support to add/delete a sub IB device through netlink") grabs a reference using ib_device_get_by_index() before calling ib_del_sub_device_and_put(), we need to drop that reference before returning -EOPNOTSUPP error.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

Vendors	Products
Linux	Linux Kernel

No data.

No data.

No data.

References

Link	Providers
https://git.kernel.org/stable/c/20436f2742a92b7afeb2504eb559a98d2196b001
https://git.kernel.org/stable/c/fa3c411d21ebc26ffd175c7256c37cefa35020aa
https://git.kernel.org/stable/c/fe8d456080423b9ed410469fbd1e2098d3acce2b

History

Fri, 23 Jan 2026 14:30:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: RDMA/core: always drop device refcount in ib_del_sub_device_and_put() Since nldev_deldev() (introduced by commit 060c642b2ab8 ("RDMA/nldev: Add support to add/delete a sub IB device through netlink") grabs a reference using ib_device_get_by_index() before calling ib_del_sub_device_and_put(), we need to drop that reference before returning -EOPNOTSUPP error.
Title		RDMA/core: always drop device refcount in ib_del_sub_device_and_put()
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/20436f2742a92b7afeb2504eb559a98d2196b001 https://git.kernel.org/stable/c/fa3c411d21ebc26ffd175c7256c37cefa35020aa https://git.kernel.org/stable/c/fe8d456080423b9ed410469fbd1e2098d3acce2b

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2026-01-23T14:25:56.458Z

Updated: 2026-01-23T14:25:56.458Z

Reserved: 2026-01-13T15:30:19.663Z

Link: CVE-2025-71157

Vulnrichment

No data.

NVD

Status : Received

Published: 2026-01-23T15:16:06.690

Modified: 2026-01-23T15:16:06.690

Link: CVE-2025-71157

Redhat

No data.

OpenCVE Enrichment

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-71157", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2026-01-13T15:30:19.663Z", "datePublished": "2026-01-23T14:25:56.458Z", "dateUpdated": "2026-01-23T14:25:56.458Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2026-01-23T14:25:56.458Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/core: always drop device refcount in ib_del_sub_device_and_put()\n\nSince nldev_deldev() (introduced by commit 060c642b2ab8 (\"RDMA/nldev: Add\nsupport to add/delete a sub IB device through netlink\") grabs a reference\nusing ib_device_get_by_index() before calling ib_del_sub_device_and_put(),\nwe need to drop that reference before returning -EOPNOTSUPP error."}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/infiniband/core/device.c"], "versions": [{"version": "bca51197620a257e2954be99b16f05115c3b2630", "lessThan": "20436f2742a92b7afeb2504eb559a98d2196b001", "status": "affected", "versionType": "git"}, {"version": "bca51197620a257e2954be99b16f05115c3b2630", "lessThan": "fe8d456080423b9ed410469fbd1e2098d3acce2b", "status": "affected", "versionType": "git"}, {"version": "bca51197620a257e2954be99b16f05115c3b2630", "lessThan": "fa3c411d21ebc26ffd175c7256c37cefa35020aa", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/infiniband/core/device.c"], "versions": [{"version": "6.11", "status": "affected"}, {"version": "0", "lessThan": "6.11", "status": "unaffected", "versionType": "semver"}, {"version": "6.12.64", "lessThanOrEqual": "6.12.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.18.4", "lessThanOrEqual": "6.18.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.19-rc4", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "cpeApplicability": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.11", "versionEndExcluding": "6.12.64"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.11", "versionEndExcluding": "6.18.4"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.11", "versionEndExcluding": "6.19-rc4"}]}]}], "references": [{"url": "https://git.kernel.org/stable/c/20436f2742a92b7afeb2504eb559a98d2196b001"}, {"url": "https://git.kernel.org/stable/c/fe8d456080423b9ed410469fbd1e2098d3acce2b"}, {"url": "https://git.kernel.org/stable/c/fa3c411d21ebc26ffd175c7256c37cefa35020aa"}], "title": "RDMA/core: always drop device refcount in ib_del_sub_device_and_put()", "x_generator": {"engine": "bippy-1.2.0"}}}}