18 matches found
CVE-2026-45949
A flaw was found in the Linux kernel's hardware random number generator hwrng core. A race condition exists where concurrent or rapid calls to the hwrngunregister function can lead to a use-after-free vulnerability. This issue allows the system to attempt to access freed memory, potentially causi...
EUVD-2026-32457
In the Linux kernel, the following vulnerability has been resolved: crypto: atmel-sha204a - Fix potential UAF and memory leak in remove path Unregister the hwrng to prevent new -read calls and flush the Atmel I2C workqueue before teardown to prevent a potential UAF if a queued callback runs while...
PT-2026-43816
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A race condition exists in the hardware random number generator hwrng core. The hwrng fill pointer is not cleared until the hwrng fillfn thread exits. Because hwrng unregister reads hwrn...
CVE-2026-45949
hwrng: core - use RCU and workstruct to fix race condition...
CVE-2026-3290
Timing limitations of the HRNG in RS9116 when power save mode is enabled results in predictable values...
CVE-2026-3290 Timing limitations of the HRNG in RS9116 when power save mode is enabled results in predictable values
Timing limitations of the HRNG in RS9116 when power save mode is enabled results in predictable values...
CVE-2026-3290 Timing limitations of the HRNG in RS9116 when power save mode is enabled results in predictable values
Timing limitations of the HRNG in RS9116 when power save mode is enabled results in predictable values...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013795)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013795 advisory. In the Linux kernel, the following vulnerability has been resolved: hwrng: geode - Fix PCI device refcount leak foreachpcidev is implemented by pcigetdevice. The...
UBUNTU-CVE-2022-50868
In the Linux kernel, the following vulnerability has been resolved: hwrng: amd - Fix PCI device refcount leak foreachpcidev is implemented by pcigetdevice. The comment of pcigetdevice says that it will increase the reference count for the returned pcidev and also decrease the reference count for...
CVE-2022-50868
The CVE-2022-50868 issue is in the Linux kernel hwrng: amd driver, where for_each_pci_dev() (implemented via pci_get_device()) can leak PCI device references. The root cause is a missing pci_dev_put() on the normal and error paths when breaking out of for_each_pci_dev() with a non-NULL pdev, lead...
CVE-2022-50868
In the Linux kernel, the following vulnerability has been resolved: hwrng: amd - Fix PCI device refcount leak foreachpcidev is implemented by pcigetdevice. The comment of pcigetdevice says that it will increase the reference count for the returned pcidev and also decrease the reference count for...
PT-2025-53986
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A reference count leak exists in the Linux kernel’s hardware random number generator hwrng AMD driver. The issue stems from the for each pci dev loop, implemented by pci get device, whic...
CVE-2023-54073 tpm: Add !tpm_amd_is_rng_defective() to the hwrng_unregister() call site
In the Linux kernel, the following vulnerability has been resolved: tpm: Add !tpmamdisrngdefective to the hwrngunregister call site The following crash was reported: 1950.279393 listdel corruption, ffff99560d485790-next is NULL 1950.279400 ------------ cut here ------------ 1950.279401 kernel BUG...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the hardware random number generator logging out without checking that the AMD RNG is OK, which could lead t...
PT-2025-53071
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.2.8 1 Description The Linux kernel contained an issue within the TPM Trusted Platform Module subsystem. A crash could occur due to a missing invariant check during the unregistration of the hardware random numb...
hwrng: cavium - fix NULL but dereferenced coccicheck error
...
DEBIAN-CVE-2022-49177
In the Linux kernel, the following vulnerability has been resolved: hwrng: cavium - fix NULL but dereferenced coccicheck error Fix following coccicheck warning: ./drivers/char/hwrandom/cavium-rng-vf.c:182:17-20: ERROR: pdev is NULL but dereferenced...
SUSE CVE-2024-53085
In the Linux kernel, the following vulnerability has been resolved: tpm: Lock TPM chip in tpmpmsuspend first Setting TPMCHIPFLAGSUSPENDED in the end of tpmpmsuspend can be racy according, as this leaves window for tpmhwrngread to be called while the operation is in progress. The recent bug report...