Lucene search
K

21 matches found

RedhatCVE
RedhatCVE
added 2026/05/27 11:52 p.m.12 views

CVE-2026-45949

A flaw was found in the Linux kernel's hardware random number generator hwrng core. A race condition exists where concurrent or rapid calls to the hwrngunregister function can lead to a use-after-free vulnerability. This issue allows the system to attempt to access freed memory, potentially causi...

5.5CVSS6AI score0.00088EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/27 12:58 p.m.10 views

EUVD-2026-32457

In the Linux kernel, the following vulnerability has been resolved: crypto: atmel-sha204a - Fix potential UAF and memory leak in remove path Unregister the hwrng to prevent new -read calls and flush the Atmel I2C workqueue before teardown to prevent a potential UAF if a queued callback runs while...

5.8AI score0.00129EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/05/27 12:0 a.m.12 views

CVE-2026-45949

hwrng: core - use RCU and workstruct to fix race condition...

5.8AI score0.00088EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/27 12:0 a.m.15 views

PT-2026-43816

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A race condition exists in the hardware random number generator hwrng core. The hwrng fill pointer is not cleared until the hwrng fillfn thread exits. Because hwrng unregister reads hwrn...

4.7CVSS5.5AI score0.00088EPSS
Exploits0References14
NVD
NVD
added 2026/05/14 8:17 p.m.11 views

CVE-2026-3290

Timing limitations of the HRNG in RS9116 when power save mode is enabled results in predictable values...

7.4CVSS0.00159EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/14 7:24 p.m.9 views

CVE-2026-3290 Timing limitations of the HRNG in RS9116 when power save mode is enabled results in predictable values

Timing limitations of the HRNG in RS9116 when power save mode is enabled results in predictable values...

7.4CVSS5.8AI score0.00159EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/14 7:24 p.m.32 views

CVE-2026-3290 Timing limitations of the HRNG in RS9116 when power save mode is enabled results in predictable values

Timing limitations of the HRNG in RS9116 when power save mode is enabled results in predictable values...

7.4CVSS0.00159EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.4 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013795)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013795 advisory. In the Linux kernel, the following vulnerability has been resolved: hwrng: geode - Fix PCI device refcount leak foreachpcidev is implemented by pcigetdevice. The...

5.6AI score0.00233EPSS
Exploits0References4
OSV
OSV
added 2026/02/19 2:23 p.m.9 views

USN-8033-8 linux-intel-iotg vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Nios II architecture; - Sun Sparc architecture; - User-Mode Linux UML; - x86 architecture; - Block layer subsystem;...

7.8CVSS6.9AI score0.00248EPSS
Exploits4References115
OSV
OSV
added 2025/12/30 1:16 p.m.5 views

UBUNTU-CVE-2022-50868

In the Linux kernel, the following vulnerability has been resolved: hwrng: amd - Fix PCI device refcount leak foreachpcidev is implemented by pcigetdevice. The comment of pcigetdevice says that it will increase the reference count for the returned pcidev and also decrease the reference count for...

5.7AI score0.00204EPSS
Exploits0References12
CVE
CVE
added 2025/12/30 12:15 p.m.12 views

CVE-2022-50868

The CVE-2022-50868 issue is in the Linux kernel hwrng: amd driver, where for_each_pci_dev() (implemented via pci_get_device()) can leak PCI device references. The root cause is a missing pci_dev_put() on the normal and error paths when breaking out of for_each_pci_dev() with a non-NULL pdev, lead...

6.1AI score0.00204EPSS
Exploits0References9
Debian CVE
Debian CVE
added 2025/12/30 12:15 p.m.3 views

CVE-2022-50868

In the Linux kernel, the following vulnerability has been resolved: hwrng: amd - Fix PCI device refcount leak foreachpcidev is implemented by pcigetdevice. The comment of pcigetdevice says that it will increase the reference count for the returned pcidev and also decrease the reference count for...

5.3AI score0.00204EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/12/30 12:0 a.m.6 views

PT-2025-53986

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A reference count leak exists in the Linux kernel’s hardware random number generator hwrng AMD driver. The issue stems from the for each pci dev loop, implemented by pci get device, whic...

7.8CVSS7.1AI score0.00465EPSS
Exploits2References899
Cvelist
Cvelist
added 2025/12/24 12:23 p.m.24 views

CVE-2023-54073 tpm: Add !tpm_amd_is_rng_defective() to the hwrng_unregister() call site

In the Linux kernel, the following vulnerability has been resolved: tpm: Add !tpmamdisrngdefective to the hwrngunregister call site The following crash was reported: 1950.279393 listdel corruption, ffff99560d485790-next is NULL 1950.279400 ------------ cut here ------------ 1950.279401 kernel BUG...

0.00168EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/12/24 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the hardware random number generator logging out without checking that the AMD RNG is OK, which could lead t...

6.2AI score0.00168EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/12/24 12:0 a.m.3 views

PT-2025-53071

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.2.8 1 Description The Linux kernel contained an issue within the TPM Trusted Platform Module subsystem. A crash could occur due to a missing invariant check during the unregistration of the hardware random numb...

6.5AI score0.00168EPSS
Exploits0References6
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:45 p.m.4 views

hwrng: cavium - fix NULL but dereferenced coccicheck error

...

5.5CVSS7AI score0.00211EPSS
Exploits0
OSV
OSV
added 2025/02/26 7:0 a.m.2 views

DEBIAN-CVE-2022-49177

In the Linux kernel, the following vulnerability has been resolved: hwrng: cavium - fix NULL but dereferenced coccicheck error Fix following coccicheck warning: ./drivers/char/hwrandom/cavium-rng-vf.c:182:17-20: ERROR: pdev is NULL but dereferenced...

5.5CVSS4.8AI score0.00211EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2024/11/20 3:48 a.m.0 views

SUSE CVE-2024-53085

In the Linux kernel, the following vulnerability has been resolved: tpm: Lock TPM chip in tpmpmsuspend first Setting TPMCHIPFLAGSUSPENDED in the end of tpmpmsuspend can be racy according, as this leaves window for tpmhwrngread to be called while the operation is in progress. The recent bug report...

5.5CVSS7.6AI score0.00171EPSS
Exploits0References19
OSV
OSV
added 2024/05/16 2:27 p.m.5 views

USN-6774-1 linux, linux-aws, linux-aws-6.5, linux-azure, linux-azure-6.5, linux-gcp, linux-gcp-6.5, linux-hwe-6.5, linux-laptop, linux-lowlatency, linux-lowlatency-hwe-6.5, linux-nvidia-6.5, linux-oem-6.5, linux-oracle, linux-oracle-6.5, linux-raspi, linux-signed, linux-signed-aws, linux-signed-aws-6.5, linux-starfive, linux-starfive-6.5 vulnerabilities

Zheng Wang discovered that the Broadcom FullMAC WLAN driver in the Linux kernel contained a race condition during device removal, leading to a use- after-free vulnerability. A physically proximate attacker could possibly use this to cause a denial of service system crash. CVE-2023-47233 Sander...

7.8CVSS6.9AI score0.08555EPSS
Exploits0References13
Rows per page
Query Builder