Description

In the Linux kernel, the following vulnerability has been resolved: KEYS: trusted: Fix a memory leak in tpm2_load_cmd 'tpm2_load_cmd' allocates a tempoary blob indirectly via 'tpm2_key_decode' but it is not freed in the failure paths. Address this by wrapping the blob into with a cleanup helper.

INFO

Published Date :

2026-01-23T14:15:13.945Z

Last Modified :

2026-02-09T08:35:44.178Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-71147 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-71147.

URL Resource
https://git.kernel.org/stable/c/19166de9737218b77122c41a5730ac87025e089f cve-icon cve-icon
https://git.kernel.org/stable/c/3fd7df4636d8fd5e3592371967a5941204368936 cve-icon cve-icon
https://git.kernel.org/stable/c/62cd5d480b9762ce70d720a81fa5b373052ae05f cve-icon cve-icon
https://git.kernel.org/stable/c/9b015f2918b95bdde2ca9cefa10ef02b138aae1e cve-icon cve-icon
https://git.kernel.org/stable/c/9e7c63c69f57b1db1a8a1542359a6167ff8fcef1 cve-icon cve-icon
https://git.kernel.org/stable/c/af0689cafb127a8d1af78cc8b72585c9b2a19ecd cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2026012327-CVE-2025-71147-a296@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-71147 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-71147 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact