CVEFinder.io

CVE-2025-71300

🔶 medium
🔍 Scan for this CVE
Summary

In the Linux kernel, the following vulnerability has been resolved: Revert "arm64: zynqmp: Add an OP-TEE node to the device tree" This reverts commit 06d22ed6b6635b17551f386b50bb5aaff9b75fbe. OP-TEE logic in U-Boot automatically injects a reserved-memory node along with optee firmware node to kernel device tree. The injection logic is dependent on that there is no manually defined optee node. Having the node in zynqmp.dtsi effectively breaks OP-TEE's insertion of the reserved-memory node, cau

Description

In the Linux kernel, the following vulnerability has been resolved:

Revert "arm64: zynqmp: Add an OP-TEE node to the device tree"

This reverts commit 06d22ed6b6635b17551f386b50bb5aaff9b75fbe.

OP-TEE logic in U-Boot automatically injects a reserved-memory
node along with optee firmware node to kernel device tree.
The injection logic is dependent on that there is no manually
defined optee node. Having the node in zynqmp.dtsi effectively
breaks OP-TEE's insertion of the reserved-memory node, causing
memory access violations during runtime.

CVSS Score
5.5
Medium
EPSS Score
0.0
Exploit Probability
Published Date
2026-05-08
First Seen: 2026-05-10
📊 Relative Risk Intelligence

This CVE is Lower Risk - more severe than 32.6% of all 321,566 vulnerabilities in our database.

#216,619
Below average severity
Severity Percentile
Last Modified 2026-05-14
Source NVD 🔗
CVSS Vector 3.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

📦 Affected Products 3

Vendor Product Status Affected Versions
linux linux_kernel Affected
> 6.9 < 6.12.75
linux linux_kernel Affected
> 6.13 < 6.18.16
linux linux_kernel Affected
> 6.19 < 6.19.6

🔗 References 4

https://git.kernel.org/stable/c/2a833c730d4e8d1cc109...
Patch
https://git.kernel.org/stable/c/3983ef126e439900bbf4...
Patch
https://git.kernel.org/stable/c/c197179990124f991fca...
Patch
https://git.kernel.org/stable/c/eece81eeda10eb42c687...
Patch

🔗 Related CVEs 6

CVE ID Severity CVSS EPSS Summary Published
CVE-2026-43500 ⚠️ high 7.8 0.0 In the Linux kernel, the following vulnerability has been resolved: rxrpc: Also unshare DATA/RESPONSE packets when page... 2026-05-11
CVE-2026-43284 ⚠️ high 8.8 0.0 In the Linux kernel, the following vulnerability has been resolved: xfrm: esp: avoid in-place decrypt on shared skb fra... 2026-05-08
CVE-2025-71296 🔶 medium 5.5 0.0 In the Linux kernel, the following vulnerability has been resolved: drm/tests: shmem: Hold reservation lock around purg... 2026-05-08
CVE-2025-71297 🔶 medium 5.5 0.0 In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: 8822b: Avoid WARNING in rtw8822b_confi... 2026-05-08
CVE-2025-71298 🔶 medium 5.5 0.0 In the Linux kernel, the following vulnerability has been resolved: drm/tests: shmem: Hold reservation lock around madv... 2026-05-08
CVE-2025-71299 🔶 medium 5.5 0.0 In the Linux kernel, the following vulnerability has been resolved: spi: cadence-quadspi: Parse DT for flashes with the... 2026-05-08
These CVEs affect the same products