-

CVE-2025-71149

EPSS 0.02%
Veröffentlicht 23.01.2026 14:15:15
Zuletzt bearbeitet 26.01.2026 15:03:51
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

io_uring/poll: correctly handle io_poll_add() return value on update

When the core of io_uring was updated to handle completions
consistently and with fixed return codes, the POLL_REMOVE opcode
with updates got slightly broken. If a POLL_ADD is pending and
then POLL_REMOVE is used to update the events of that request, if that
update causes the POLL_ADD to now trigger, then that completion is lost
and a CQE is never posted.

Additionally, ensure that if an update does cause an existing POLL_ADD
to complete, that the completion value isn't always overwritten with
-ECANCELED. For that case, whatever io_poll_add() set the value to
should just be retained.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 8

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < 8b777ab48441b153502772ecfc78c107d4353f29

Version 97b388d70b53fd7d286ac1b81e5a88bd6af98209

Status affected

Version < 0126560370ed5217958b85657b590ad25e8b9c00

Version 97b388d70b53fd7d286ac1b81e5a88bd6af98209

Status affected

Version < c1669c03bfbc2a9b5ebff4428eecebe734c646fe

Version 97b388d70b53fd7d286ac1b81e5a88bd6af98209

Status affected

Version < 13a8f7b88c2d40c6b33f6216190478dda95d385f

Version 97b388d70b53fd7d286ac1b81e5a88bd6af98209

Status affected

Version < 84230ad2d2afbf0c44c32967e525c0ad92e26b4e

Version 97b388d70b53fd7d286ac1b81e5a88bd6af98209

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 6.0

Status affected

Version < 6.0

Version 0

Status unaffected

Version <= 6.1.*

Version 6.1.160

Status unaffected

Version <= 6.6.*

Version 6.6.120

Status unaffected

Version <= 6.12.*

Version 6.12.64

Status unaffected

Version <= 6.18.*

Version 6.18.3

Status unaffected

Version <= *

Version 6.19-rc1

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.056

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/8b777ab48441b153502772ecfc78c107d4353f29

https://git.kernel.org/stable/c/0126560370ed5217958b85657b590ad25e8b9c00

https://git.kernel.org/stable/c/c1669c03bfbc2a9b5ebff4428eecebe734c646fe

https://git.kernel.org/stable/c/13a8f7b88c2d40c6b33f6216190478dda95d385f

https://git.kernel.org/stable/c/84230ad2d2afbf0c44c32967e525c0ad92e26b4e

https://nvd.nist.gov/vuln/detail/CVE-2025-71149

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-71149

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-71149

EUVD