CVE-2025-71271

May 6, 2026, 1:07 p.m.

None
No Score

Description

In the Linux kernel, the following vulnerability has been resolved: hfsplus: ensure sb->s_fs_info is always cleaned up When hfsplus was converted to the new mount api a bug was introduced by changing the allocation pattern of sb->s_fs_info. If setup_bdev_super() fails after a new superblock has been allocated by sget_fc(), but before hfsplus_fill_super() takes ownership of the filesystem-specific s_fs_info data it was leaked. Fix this by freeing sb->s_fs_info in hfsplus_kill_super().

Product(s) Impacted

Vendor Product Versions
Linux
  • Linux Kernel
  • Hfsplus
  • *
  • *

Weaknesses

Common security weaknesses mapped to this vulnerability.

*CPE(s)

Affected systems and software identified for this CVE.

Type Vendor Product Version Update Edition Language Software Edition Target Software Target Hardware Other Information
o linux linux_kernel / / / / / / / /
a linux hfsplus / / / / / / / /

References

https://git.kernel.org/stable/c/0bcfebb83b5460d5be4e5c9dfb19cdaf3d4cb1db
https://git.kernel.org/stable/c/126fb0ce99431126b44a6c360192668c818f641f
https://git.kernel.org/stable/c/1e38d32bb04d85a2c81204a85a34878a497128c8

Tags

416baaa9-dc9f-4396-8d5f-8c081fb06d67
2026-05-06
CVE-2025-71271

Timeline

Published: May 6, 2026, 12:16 p.m.
Last Modified: May 6, 2026, 1:07 p.m.

Status : Awaiting Analysis

CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.

More info

Source

416baaa9-dc9f-4396-8d5f-8c081fb06d67

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.