Description

In the Linux kernel, the following vulnerability has been resolved: io_uring/poll: correctly handle io_poll_add() return value on update When the core of io_uring was updated to handle completions consistently and with fixed return codes, the POLL_REMOVE opcode with updates got slightly broken. If a POLL_ADD is pending and then POLL_REMOVE is used to update the events of that request, if that update causes the POLL_ADD to now trigger, then that completion is lost and a CQE is never posted. Additionally, ensure that if an update does cause an existing POLL_ADD to complete, that the completion value isn't always overwritten with -ECANCELED. For that case, whatever io_poll_add() set the value to should just be retained.

INFO

Published Date :

2026-01-23T14:15:15.878Z

Last Modified :

2026-02-09T08:35:46.301Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-71149 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-71149.

URL Resource
https://git.kernel.org/stable/c/0126560370ed5217958b85657b590ad25e8b9c00 cve-icon cve-icon
https://git.kernel.org/stable/c/13a8f7b88c2d40c6b33f6216190478dda95d385f cve-icon cve-icon
https://git.kernel.org/stable/c/84230ad2d2afbf0c44c32967e525c0ad92e26b4e cve-icon cve-icon
https://git.kernel.org/stable/c/8b777ab48441b153502772ecfc78c107d4353f29 cve-icon cve-icon
https://git.kernel.org/stable/c/c1669c03bfbc2a9b5ebff4428eecebe734c646fe cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2026012328-CVE-2025-71149-c9ee@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-71149 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-71149 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact