How to fix CVE-2025-71157?

Within 24 hours: Identify all systems running affected Linux kernel versions with RDMA support enabled and assess patch availability for your distribution. Within 7 days: Deploy kernel patches to test and development environments, validate functionality, and plan production rollout. Within 30 days: Complete patching of all production systems and verify through kernel version audits.

Is Linux Kernel affected by CVE-2025-71157?

A reference counting vulnerability in Linux kernel RDMA subsystem could lead to denial of service or privilege escalation on systems using InfiniBand/RDMA networking.

CVE-2025-71157

HIGH

2026-01-23 416baaa9-dc9f-4396-8d5f-8c081fb06d67

7.8

CVSS 3.1

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Generated

Mar 12, 2026 - 21:54 vuln.today

Patch Released

Feb 26, 2026 - 20:22 nvd

Patch available

CVE Published

Jan 23, 2026 - 15:16 nvd

HIGH 7.8

Description

In the Linux kernel, the following vulnerability has been resolved: RDMA/core: always drop device refcount in ib_del_sub_device_and_put() Since nldev_deldev() (introduced by commit 060c642b2ab8 ("RDMA/nldev: Add support to add/delete a sub IB device through netlink") grabs a reference using ib_device_get_by_index() before calling ib_del_sub_device_and_put(), we need to drop that reference before returning -EOPNOTSUPP error.

Analysis

In the Linux kernel, the following vulnerability has been resolved:

RDMA/core: always drop device refcount in ib_del_sub_device_and_put()

Since nldev_deldev() (introduced by commit 060c642b2ab8 ("RDMA/nldev: Add support to add/delete a sub IB device through netlink") grabs a reference using ib_device_get_by_index() before calling ib_del_sub_device_and_put(), we need to drop that reference before returning -EOPNOTSUPP error. [CVSS 7.8 HIGH]

Technical Context

Affects Linux Kernel. In the Linux kernel, the following vulnerability has been resolved:

RDMA/core: always drop device refcount in ib_del_sub_device_and_put()

Since nldev_deldev() (introduced by commit 060c642b2ab8 ("RDMA/nldev: Add

support to add/delete a sub IB device through netlink") grabs a reference

using ib_device_get_by_index() before calling ib_del_sub_device_and_put(),

we need to drop that reference before returning -EOPNOTSUPP error.

Affected Products

Vendor: Linux. Product: Linux Kernel.

Remediation

A vendor patch is available — apply it immediately.

Priority Score

Low Medium High Critical

KEV: 0

EPSS: +0.0

CVSS: +39

POC: 0

Vendor Status

CVE-2025-71157 vulnerability details – vuln.today

Back

CVE-2025-71157

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Remediation

Priority Score

Vendor Status

Share

CVE-2025-71157

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Remediation

Priority Score

Vendor Status

Share

External POC / Exploit Code