Description
In the Linux kernel, the following vulnerability has been resolved: crypto: jitterentropy - replace long-held spinlock with mutex jent_kcapi_random() serializes the shared jitterentropy state, but it currently holds a spinlock across the jent_read_entropy() call. That path performs expensive jitter collection and SHA3 conditioning, so parallel readers can trigger stalls as contending waiters spin for the same lock. To prevent non-preemptible lock hold, replace rng->jent_lock with a mutex so contended readers sleep instead of spinning on a shared lock held across expensive entropy generation.
Product status
bb5530e4082446aac3a3d69780cd4dbfa4520013 (git) before 18216b8ab6904753eaf31baf453cb02ecd202ba4
bb5530e4082446aac3a3d69780cd4dbfa4520013 (git) before 4c03e6eb98443dc4d6d422a9780034a5b75376b4
bb5530e4082446aac3a3d69780cd4dbfa4520013 (git) before ff734dbd9e2432601a6dcd167cfb0bf8a36d1880
bb5530e4082446aac3a3d69780cd4dbfa4520013 (git) before ec427dc5286da1ed08f2d510e2147a7581b0cb02
bb5530e4082446aac3a3d69780cd4dbfa4520013 (git) before 01d798e9feb30212952d4e992801ba6bd6a82351
4.2
Any version before 4.2
6.6.141 (semver)
6.12.91 (semver)
6.18.33 (semver)
7.0.10 (semver)
7.1 (original_commit_for_fix)
References
git.kernel.org/...c/18216b8ab6904753eaf31baf453cb02ecd202ba4
git.kernel.org/...c/4c03e6eb98443dc4d6d422a9780034a5b75376b4
git.kernel.org/...c/ff734dbd9e2432601a6dcd167cfb0bf8a36d1880
git.kernel.org/...c/ec427dc5286da1ed08f2d510e2147a7581b0cb02
git.kernel.org/...c/01d798e9feb30212952d4e992801ba6bd6a82351