CVE-2025-71230

Public on 2026-02-18

Modified on 2026-03-07

Description

In the Linux kernel, the following vulnerability has been resolved: hfs: ensure sb->s_fs_info is always cleaned up When hfs was converted to the new mount api a bug was introduced by changing the allocation pattern of sb->s_fs_info. If setup_bdev_super() fails after a new superblock has been allocated by sget_fc(), but before hfs_fill_super() takes ownership of the filesystem-specific s_fs_info data it was leaked. Fix this by freeing sb->s_fs_info in hfs_kill_super().

Severity

Low

See what this means

CVSS v3 Base Score

2.5

See breakdown

Affected Packages

Platform	Package	Status
Amazon Linux 2 - Core	kernel	Not Affected
Amazon Linux 2 - Kernel-5.10 Extra	kernel	Not Affected
Amazon Linux 2 - Kernel-5.15 Extra	kernel	Not Affected
Amazon Linux 2 - Kernel-5.4 Extra	kernel	Not Affected
Amazon Linux 2023	kernel	Not Affected
Amazon Linux 2023	kernel6.12	Not Affected

CVSS Scores

	Score Type	Score	Vector
Amazon Linux	CVSSv3	2.5	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L

References

FAQs regarding Amazon Linux ALAS/CVE Severity Red Hat: CVE-2025-71230 Mitre: CVE-2025-71230