Description

In the Linux kernel, the following vulnerability has been resolved: net/handshake: restore destructor on submit failure handshake_req_submit() replaces sk->sk_destruct but never restores it when submission fails before the request is hashed. handshake_sk_destruct() then returns early and the original destructor never runs, leaking the socket. Restore sk_destruct on the error path.

INFO

Published Date :

2026-01-23T14:15:14.963Z

Last Modified :

2026-02-09T08:35:45.279Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-71148 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-71148.

URL Resource
https://git.kernel.org/stable/c/6af2a01d65f89e73c1cbb9267f8880d83a88cee4 cve-icon cve-icon
https://git.kernel.org/stable/c/7b82a1d6ae869533d8bdb0282a3a78faed8e63dd cve-icon cve-icon
https://git.kernel.org/stable/c/b225325be7b247c7268e65eea6090db1fc786d1f cve-icon cve-icon
https://git.kernel.org/stable/c/cd8cf2be3717137554744233fda051ffc09d1d44 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2026012327-CVE-2025-71148-78e6@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-71148 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-71148 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact