CVE-2025-71121
Last modified
CVE-2025-71121 is a medium-severity vulnerability rated 5.5/10 on the CVSS scale. In the Linux kernel, the following vulnerability has been resolved: parisc: Do not reprogram affinitiy on ASP chip The ASP chip is a very old variant of the GSP chip and is used e.g. in HP 730 workstations. EPSS estimates a 0.12% chance of exploitation in the next 30 days.
Description
In the Linux kernel, the following vulnerability has been resolved: parisc: Do not reprogram affinitiy on ASP chip The ASP chip is a very old variant of the GSP chip and is used e.g. in HP 730 workstations. When trying to reprogram the affinity it will crash with a HPMC as the relevant registers don't seem to be at the usual location. Let's avoid the crash by checking the sversion. Also note, that reprogramming isn't necessary either, as the HP730 is a just a single-CPU machine.
Metrics
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Linux | Linux Kernel | >= 4.14.276, < 4.15 | — |
| Linux | Linux Kernel | >= 4.19.238, < 4.20 | — |
| Linux | Linux Kernel | >= 5.4.189, < 5.5 | — |
| Linux | Linux Kernel | >= 5.10.111, < 5.10.248 | — |
| Linux | Linux Kernel | >= 5.15.34, < 5.15.198 | — |
| Linux | Linux Kernel | >= 5.16.20, < 5.17 | — |
| Linux | Linux Kernel | >= 5.17.3, < 5.18 | — |
| Linux | Linux Kernel | >= 5.18.1, < 6.1.160 | — |
| Linux | Linux Kernel | >= 6.2, < 6.6.120 | — |
| Linux | Linux Kernel | >= 6.7, < 6.12.64 | — |
| Linux | Linux Kernel | >= 6.13, < 6.18.3 | — |
| Linux | Linux Kernel | 5.18 | — |
| Linux | Linux Kernel | 6.19 | Rc1 |
References
Timeline
- Published
- Last Modified
- Status
- Analyzed
Frequently Asked Questions
What is CVE-2025-71121?
How severe is CVE-2025-71121?
How do I fix CVE-2025-71121?
Are you affected by CVE-2025-71121?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST