Copyright © 2012 Red Hat, Inc. All rights reserved. 2026-05-27T00:00:00 kernel: smack: /smack/doi: accept previously used values CWE-372

A flaw was found in the Linux kernel's Smack module. A local user with privileges to modify Smack's Domain of Interpretation (DOI) values could cause a denial of service. By writing a previously used DOI value to `/smack/doi`, networking for non-ambient labels becomes disabled. This prevents network communication for processes operating under specific security contexts, leading to a denial of service for affected applications.

Red Hat Enterprise Linux 10 Not affected kernel Red Hat Enterprise Linux 6 Not affected kernel Red Hat Enterprise Linux 7 Not affected kernel Red Hat Enterprise Linux 7 Not affected kernel-rt Red Hat Enterprise Linux 8 Not affected kernel Red Hat Enterprise Linux 8 Not affected kernel-rt Red Hat Enterprise Linux 9 Not affected kernel Red Hat Enterprise Linux 9 Not affected kernel-rt https://www.cve.org/CVERecord?id=CVE-2025-71304 https://nvd.nist.gov/vuln/detail/CVE-2025-71304 https://lore.kernel.org/linux-cve-announce/2026052705-CVE-2025-71304-4972@gregkh/T