dmaengine: ti: dma-crossbar: fix device leak on am335x route allocation

CVE	CVE-2025-71185
State	PUBLISHED
Assigner	Linux
Source Priority	CVE Program / NVD first with legacy fallback
Published	2026-01-31 12:16:03 UTC
Updated	2026-06-02 14:16:38 UTC
Description	In the Linux kernel, the following vulnerability has been resolved: dmaengine: ti: dma-crossbar: fix device leak on am335x route allocation Make sure to drop the reference taken when looking up the crossbar platform device during am335x route allocation.

Primary CVSS: v3.1 5.5 MEDIUM from [email protected]

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Problem Types: CWE-401

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Type	Vendor	Product	Version	Update	Edition	Language
Operating System	Linux	Linux Kernel	All	All	All	All

Source	Vendor	Product	Version	Platforms
CNA	Linux	Linux	affected 42dbdcc6bf965997c088caff2a8be7f9bf44f701 1befa553f1ecc045dc9ff56107ff50162f63f3c0 git	Not specified
CNA	Linux	Linux	affected 42dbdcc6bf965997c088caff2a8be7f9bf44f701 c933aa74d9f8d35e6cda322c38c4a907d37a9a2b git	Not specified
CNA	Linux	Linux	affected 42dbdcc6bf965997c088caff2a8be7f9bf44f701 43725bd47d984937c429919ae291896d982d1f17 git	Not specified
CNA	Linux	Linux	affected 42dbdcc6bf965997c088caff2a8be7f9bf44f701 6fdf168f57e331e148a1177a9b590a845c21b315 git	Not specified
CNA	Linux	Linux	affected 42dbdcc6bf965997c088caff2a8be7f9bf44f701 f810132e825588fbad3cba940458c58bb7ec4d84 git	Not specified
CNA	Linux	Linux	affected 42dbdcc6bf965997c088caff2a8be7f9bf44f701 30352277d8e09c972436f883a5efd1f1b763ac14 git	Not specified
CNA	Linux	Linux	affected 42dbdcc6bf965997c088caff2a8be7f9bf44f701 4fc17b1c6d2e04ad13fd6c21cfbac68043ec03f9 git	Not specified
CNA	Linux	Linux	affected 4.4	Not specified
CNA	Linux	Linux	unaffected 4.4 semver	Not specified
CNA	Linux	Linux	unaffected 5.10.249 5.10.* semver	Not specified
CNA	Linux	Linux	unaffected 5.15.199 5.15.* semver	Not specified
CNA	Linux	Linux	unaffected 6.1.162 6.1.* semver	Not specified
CNA	Linux	Linux	unaffected 6.6.122 6.6.* semver	Not specified
CNA	Linux	Linux	unaffected 6.12.67 6.12.* semver	Not specified
CNA	Linux	Linux	unaffected 6.18.7 6.18.* semver	Not specified
CNA	Linux	Linux	unaffected 6.19 * original_commit_for_fix	Not specified
ADP	Siemens	RUGGEDCOM RST2428P	affected V4.0 custom	Not specified

Reference	Source	Link	Tags
git.kernel.org/stable/c/c933aa74d9f8d35e6cda322c38c4a907d37a9a2b	416baaa9-dc9f-4396-8d5f-8c081fb06d67	git.kernel.org	Patch
git.kernel.org/stable/c/f810132e825588fbad3cba940458c58bb7ec4d84	416baaa9-dc9f-4396-8d5f-8c081fb06d67	git.kernel.org	Patch
git.kernel.org/stable/c/43725bd47d984937c429919ae291896d982d1f17	416baaa9-dc9f-4396-8d5f-8c081fb06d67	git.kernel.org	Patch
git.kernel.org/stable/c/30352277d8e09c972436f883a5efd1f1b763ac14	416baaa9-dc9f-4396-8d5f-8c081fb06d67	git.kernel.org	Patch
git.kernel.org/stable/c/6fdf168f57e331e148a1177a9b590a845c21b315	416baaa9-dc9f-4396-8d5f-8c081fb06d67	git.kernel.org	Patch
git.kernel.org/stable/c/1befa553f1ecc045dc9ff56107ff50162f63f3c0	416baaa9-dc9f-4396-8d5f-8c081fb06d67	git.kernel.org	Patch
cert-portal.siemens.com/productcert/html/ssa-253495.html	0b142b55-0307-4c5a-b3c9-f314f3fb7c5e	cert-portal.siemens.com
git.kernel.org/stable/c/4fc17b1c6d2e04ad13fd6c21cfbac68043ec03f9	416baaa9-dc9f-4396-8d5f-8c081fb06d67	git.kernel.org	Patch
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

There are currently no legacy QID mappings associated with this CVE.