CVE-2025-71114

Summary

In the Linux kernel, the following vulnerability has been resolved:

via_wdt: fix critical boot hang due to unnamed resource allocation

The VIA watchdog driver uses allocate_resource() to reserve a MMIO region for the watchdog control register. However, the allocated resource was not given a name, which causes the kernel resource tree to contain an entry marked as "<BAD>" under /proc/iomem on x86 platforms.

During boot, this unnamed resource can lead to a critical hang because subsequent resource lookups and conflict checks fail to handle the invalid entry properly.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxdc3c56b703dad4aec8a9b3dd86f03a90d0c26a2d < 1d56025a3af50db0f3da2792f41eb9943eee5324affected
LinuxLinuxdc3c56b703dad4aec8a9b3dd86f03a90d0c26a2d < c7b986adc9e9336066350542ac5a2005d305ae78affected
LinuxLinuxdc3c56b703dad4aec8a9b3dd86f03a90d0c26a2d < 47c910965c936724070d2a8094a4c3ed8f452856affected
LinuxLinuxdc3c56b703dad4aec8a9b3dd86f03a90d0c26a2d < d2c7c90aca7b37f60f16b2bedcfeb16204f2f35daffected
LinuxLinuxdc3c56b703dad4aec8a9b3dd86f03a90d0c26a2d < f7b6370d0fbee06a867037d675797a606cb62e57affected
LinuxLinuxdc3c56b703dad4aec8a9b3dd86f03a90d0c26a2d < c6a2dd4f2e4e6cbdfe7a1618160281af897b75dbaffected
LinuxLinuxdc3c56b703dad4aec8a9b3dd86f03a90d0c26a2d < 7aa31ee9ec92915926e74731378c009c9cc04928affected
LinuxLinux3.3affected
LinuxLinux0 < 3.3unaffected
LinuxLinux5.10.248 <= 5.10.*unaffected
LinuxLinux5.15.198 <= 5.15.*unaffected
LinuxLinux6.1.160 <= 6.1.*unaffected
LinuxLinux6.6.120 <= 6.6.*unaffected
LinuxLinux6.12.64 <= 6.12.*unaffected
LinuxLinux6.18.3 <= 6.18.*unaffected
LinuxLinux6.19 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References