Home

Description

In the Linux kernel, the following vulnerability has been resolved: crypto: jitterentropy - replace long-held spinlock with mutex jent_kcapi_random() serializes the shared jitterentropy state, but it currently holds a spinlock across the jent_read_entropy() call. That path performs expensive jitter collection and SHA3 conditioning, so parallel readers can trigger stalls as contending waiters spin for the same lock. To prevent non-preemptible lock hold, replace rng->jent_lock with a mutex so contended readers sleep instead of spinning on a shared lock held across expensive entropy generation.

PUBLISHED Reserved 2026-06-09 | Published 2026-06-24 | Updated 2026-06-24 | Assigner Linux

Product status

Default status
unaffected

bb5530e4082446aac3a3d69780cd4dbfa4520013 (git) before 18216b8ab6904753eaf31baf453cb02ecd202ba4
affected

bb5530e4082446aac3a3d69780cd4dbfa4520013 (git) before 4c03e6eb98443dc4d6d422a9780034a5b75376b4
affected

bb5530e4082446aac3a3d69780cd4dbfa4520013 (git) before ff734dbd9e2432601a6dcd167cfb0bf8a36d1880
affected

bb5530e4082446aac3a3d69780cd4dbfa4520013 (git) before ec427dc5286da1ed08f2d510e2147a7581b0cb02
affected

bb5530e4082446aac3a3d69780cd4dbfa4520013 (git) before 01d798e9feb30212952d4e992801ba6bd6a82351
affected

Default status
affected

4.2
affected

Any version before 4.2
unaffected

6.6.141 (semver)
unaffected

6.12.91 (semver)
unaffected

6.18.33 (semver)
unaffected

7.0.10 (semver)
unaffected

7.1 (original_commit_for_fix)
unaffected

References

git.kernel.org/...c/18216b8ab6904753eaf31baf453cb02ecd202ba4

git.kernel.org/...c/4c03e6eb98443dc4d6d422a9780034a5b75376b4

git.kernel.org/...c/ff734dbd9e2432601a6dcd167cfb0bf8a36d1880

git.kernel.org/...c/ec427dc5286da1ed08f2d510e2147a7581b0cb02

git.kernel.org/...c/01d798e9feb30212952d4e992801ba6bd6a82351

cve.org (CVE-2026-52936)

nvd.nist.gov (CVE-2026-52936)

Download JSON