IM
IronMonkey Threat Research

CVE-2025-71114 MEDIUM

Published: 2026-01-14 | Last Modified: 2026-07-14 | Status: Modified

Description

In the Linux kernel, the following vulnerability has been resolved: via_wdt: fix critical boot hang due to unnamed resource allocation The VIA watchdog driver uses allocate_resource() to reserve a MMIO region for the watchdog control register. However, the allocated resource was not given a name, which causes the kernel resource tree to contain an entry marked as "<BAD>" under /proc/iomem on x86 platforms. During boot, this unnamed resource can lead to a critical hang because subsequent resource lookups and conflict checks fail to handle the invalid entry properly.

Additional Descriptions (1)

En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta: via_wdt: corrige un cuelgue crítico de arranque debido a la asignación de recursos sin nombre El controlador de watchdog de VIA utiliza allocate_resource() para reservar una región MMIO para el registro de control del watchdog. Sin embargo, al recurso asignado no se le dio un nombre, lo que provoca que el árbol de recursos del kernel contenga una entrada marcada como '' bajo /proc/iomem en plataformas x86. Durante el arranque, este recurso sin nombre puede provocar un cuelgue crítico porque las búsquedas de recursos y las comprobaciones de conflictos posteriores no logran manejar la entrada inválida correctamente.

CVSS Metrics

Base Score: 5.5 (MEDIUM)

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Attack VectorLOCAL
Attack ComplexityLOW
Privileges RequiredLOW
User InteractionNONE
ScopeUNCHANGED
Confidentiality ImpactNONE
Integrity ImpactNONE
Availability ImpactHIGH

Source: [email protected]

Type: Primary

Exploitability Score: 1.8

Impact Score: 3.6

Weaknesses

Source Type Description
[email protected] Primary
en CWE-401

Affected Products

Vendor Product Version Update Type
linux linux_kernel * <built-in method update of dict object at 0x702ba6a6d680> Operating System
linux linux_kernel * <built-in method update of dict object at 0x702ba6a6d840> Operating System
linux linux_kernel * <built-in method update of dict object at 0x702bdc50f040> Operating System
linux linux_kernel * <built-in method update of dict object at 0x702bfc412e80> Operating System
linux linux_kernel * <built-in method update of dict object at 0x702ba6a6d100> Operating System
linux linux_kernel * <built-in method update of dict object at 0x702ba6a6c500> Operating System
linux linux_kernel 3.3 <built-in method update of dict object at 0x702bdc50f740> Operating System
linux linux_kernel 6.19 <built-in method update of dict object at 0x702bddf523c0> Operating System
linux linux_kernel 6.19 <built-in method update of dict object at 0x702bdc50eb80> Operating System
linux linux_kernel 6.19 <built-in method update of dict object at 0x702ba6a6e600> Operating System
linux linux_kernel 6.19 <built-in method update of dict object at 0x702bdc50c200> Operating System
linux linux_kernel 6.19 <built-in method update of dict object at 0x702ba6a6e340> Operating System
linux linux_kernel 6.19 <built-in method update of dict object at 0x702bddf52780> Operating System
linux linux_kernel 6.19 <built-in method update of dict object at 0x702bdc50e340> Operating System
linux linux_kernel 6.19 <built-in method update of dict object at 0x702bddf528c0> Operating System

Affected Configurations

Operator: OR

Vulnerable CPE
Yes cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:3.3:-:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:6.19:rc1:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:6.19:rc2:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:6.19:rc3:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:6.19:rc4:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:6.19:rc5:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:6.19:rc6:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:6.19:rc7:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:6.19:rc8:*:*:*:*:*:*

References

Notification
Message here