Unrated severityNVD Advisory· Published Jan 23, 2026· Updated Feb 9, 2026

net/handshake: restore destructor on submit failure

CVE-2025-71148

Description

In the Linux kernel, the following vulnerability has been resolved:

handshake_req_submit() replaces sk->sk_destruct but never restores it when submission fails before the request is hashed. handshake_sk_destruct() then returns early and the original destructor never runs, leaking the socket. Restore sk_destruct on the error path.

Affected products

Linux/Kernelllm-fuzzy
Linux/Linuxv5
Range: 6.4

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

git.kernel.org/stable/c/6af2a01d65f89e73c1cbb9267f8880d83a88cee4mitre
git.kernel.org/stable/c/7b82a1d6ae869533d8bdb0282a3a78faed8e63ddmitre
git.kernel.org/stable/c/b225325be7b247c7268e65eea6090db1fc786d1fmitre
git.kernel.org/stable/c/cd8cf2be3717137554744233fda051ffc09d1d44mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000