Lucene search
K

16 matches found

NVD
NVD
added 2026/06/24 8:16 a.m.8 views

CVE-2026-52936

In the Linux kernel, the following vulnerability has been resolved: crypto: jitterentropy - replace long-held spinlock with mutex jentkcapirandom serializes the shared jitterentropy state, but it currently holds a spinlock across the jentreadentropy call. That path performs expensive jitter...

5.5CVSS0.00114EPSS
Exploits0References5
OSV
OSV
added 2026/06/24 8:16 a.m.3 views

UBUNTU-CVE-2026-52936

In the Linux kernel, the following vulnerability has been resolved: crypto: jitterentropy - replace long-held spinlock with mutex jentkcapirandom serializes the shared jitterentropy state, but it currently holds a spinlock across the jentreadentropy call. That path performs expensive jitter...

5.5CVSS5.6AI score0.00114EPSS
Exploits0References8
OSV
OSV
added 2026/06/24 7:14 a.m.4 views

CVE-2026-52936 crypto: jitterentropy - replace long-held spinlock with mutex

In the Linux kernel, the following vulnerability has been resolved: crypto: jitterentropy - replace long-held spinlock with mutex jentkcapirandom serializes the shared jitterentropy state, but it currently holds a spinlock across the jentreadentropy call. That path performs expensive jitter...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2026/06/24 7:14 a.m.8 views

CVE-2026-52936

In the Linux kernel, the following vulnerability has been resolved: crypto: jitterentropy - replace long-held spinlock with mutex jentkcapirandom serializes the shared jitterentropy state, but it currently holds a spinlock across the jentreadentropy call. That path performs expensive jitter...

5.7AI score0.00114EPSS
Exploits0References6Affected Software1
EUVD
EUVD
added 2026/06/24 7:14 a.m.10 views

EUVD-2026-38706

In the Linux kernel, the following vulnerability has been resolved: crypto: jitterentropy - replace long-held spinlock with mutex jentkcapirandom serializes the shared jitterentropy state, but it currently holds a spinlock across the jentreadentropy call. That path performs expensive jitter...

5.8AI score0.00114EPSS
Exploits0References5
CVE
CVE
added 2026/06/24 7:14 a.m.17 views

CVE-2026-52936

The CVE-2026-52936 vulnerability affects the Linux kernel’s jitterentropy path. Specifically, jent_kcapi_random() serialized the shared jitterentropy state while holding a spinlock during jent_read_entropy(), causing contention and stalls due to expensive entropy collection and SHA3 conditioning....

5.5CVSS5.8AI score0.00114EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.9 views

PT-2026-51729

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The jent kcapi random function serializes the shared jitterentropy state by holding a spinlock during the jent read entropy call. Because this process involves expensive jitter collectio...

5.5CVSS6AI score0.00114EPSS
Exploits0References20
Tenable Nessus
Tenable Nessus
added 2026/06/24 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-52936

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - crypto: jitterentropy - replace long-held spinlock with mutex jentkcapirandom serializes the shared jitterentropy state, but it currently holds a spinlock acros...

5.5CVSS6AI score0.00114EPSS
Exploits0References4
Ubuntu
Ubuntu
added 2026/04/06 9:59 p.m.4 views

USN-8152-1: Linux kernel (OEM) vulnerabilities

It was discovered that some AMD Zen 5 processors supporting RDSEED instruction did not properly handle entropy, potentially resulting in the consumption of insufficiently random values. A local attacker could possibly use this issue to influence the values returned by the RDSEED instruction causi...

9.8CVSS6.9AI score0.00378EPSS
Exploits7References1
Github Security Blog
Github Security Blog
added 2025/08/06 5:11 p.m.6 views

The Thinbus Javascript Secure Remote Password (SRP) Client Generates Fewer Bits of Entropy Than Intended

Impact A protocol compliance bug in thinbus-srp-npm versions prior to 2.0.1 causes the client to generate a fixed 252 bits of entropy instead of the intended bit length of the safe prime defaulted to 2048 bits. RFC 5054 states in section 2.5.4 Client Key Exchange The client key exchange message...

9.1CVSS6.3AI score0.0037EPSS
Exploits0References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/05/28 12:0 a.m.23 views

Fedora 37 : c-ares (2023-ae97529c00)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-ae97529c00 advisory. Update to 1.19.1. Fixes CVE-2023-32067, CVE-2023-31130, CVE-2023-31147, CVE-2023-31124 Tenable has extracted the preceding description block directl...

7.5CVSS6.6AI score0.01577EPSS
Exploits0References5
NVD
NVD
added 2020/07/02 5:15 a.m.25 views

CVE-2020-3297

A vulnerability in session management for the web-based interface of Cisco Small Business Smart and Managed Switches could allow an unauthenticated, remote attacker to defeat authentication protections and gain unauthorized access to the management interface. The attacker could obtain the...

10CVSS0.03043EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/07/02 4:20 a.m.32 views

CVE-2020-3297 Cisco Small Business Smart and Managed Switches Session Management Vulnerability

A vulnerability in session management for the web-based interface of Cisco Small Business Smart and Managed Switches could allow an unauthenticated, remote attacker to defeat authentication protections and gain unauthorized access to the management interface. The attacker could obtain the...

8.1CVSS9.8AI score0.03043EPSS
Exploits0References1
OSV
OSV
added 2017/08/25 8:35 p.m.7 views

MGASA-2017-0307 Updated libice packages fix security vulnerability

libICE depends on arc4random to generate the session cookies, thereby using a weak mechanism to generate entropy CVE-2017-2626...

5.5CVSS5.7AI score0.0046EPSS
Exploits2References3
Oracle linux
Oracle linux
added 2008/11/19 12:0 a.m.45 views

kernel security and bug fix update

2.6.9-78.0.8.0.1.EL - fix entropy flag in bnx2 driver to generate entropy pool John Sobecki orabug 5931647 - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - fix percpu api bugon with...

6.6CVSS6.4AI score0.02141EPSS
Exploits10
Oracle linux
Oracle linux
added 2008/06/26 12:0 a.m.74 views

kernel security and bug fix update

2.6.9-67.0.20.0.1.EL - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 - fix entropy flag in bnx2 driver to generate entropy pool John Sobecki orabug 5931647 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - fix percpu api bugon wit...

10CVSS1.4AI score0.07091EPSS
Exploits6
Rows per page
Query Builder