SUSE CVE-2023-53998

In the Linux kernel, the following vulnerability has been resolved: hwrng: virtio - Fix race on dataavail and actual data The virtio rng device kicks off a new entropy request whenever the data available reaches zero. When a new request occurs at the end of a read operation, that is, when the...

CVE-2023-53998

CVE-2023-53998: Linux kernel virtio RNG (hwrng) data_race between writer and reader in data_avail; fix uses smp_store_release on data_avail and smp_load_acquire on first read, with safe subsequent reads. Also removes redundant zeroing of data_idx in random_recv_done and data_avail in request_entr...

SUSE CVE-2016-2858

QEMU, when built with the Pseudo Random Number Generator PRNG back-end support, allows local guest OS users to cause a denial of service process crash via an entropy request, which triggers arbitrary stack based allocation and memory corruption...

CVE-2016-2858

CVE-2016-2858 – QEMU PRNG back-end: Local guest OS users can trigger a denial of service by requesting entropy, causing arbitrary stack-based allocations and memory corruption. The issue is specific to builds with PRNG back-end support and results in a QEMU process crash. Connected documents conf...

CVE-2016-2858

QEMU, when built with the Pseudo Random Number Generator PRNG back-end support, allows local guest OS users to cause a denial of service process crash via an entropy request, which triggers arbitrary stack based allocation and memory corruption...