retired/CVE-2022-48630


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17

Description: crypto: qcom-rng - fix infinite loop on requests not multiple of WORD_SZ
References:
Notes:
 carnil> Introduced in a680b1832ced ("crypto: qcom-rng - ensure buffer for generate is
 carnil> completely filled"). Vulnerable versions: 4.19.236 5.4.187 5.10.108 5.15.31
 carnil> 5.16.17 5.17.
Bugs:
upstream: released (5.18) [16287397ec5c08aa58db6acf7dbc55470d78087d]
6.7-upstream-stable: N/A "Fixed before branching point"
6.6-upstream-stable: N/A "Fixed before branching point"
6.1-upstream-stable: N/A "Fixed before branching point"
5.10-upstream-stable: released (5.10.118) [233a3cc60e7a8fe0be8cf9934ae7b67ba25a866c]
4.19-upstream-stable: released (4.19.245) [71a89789552b7faf3ef27969b9bc783fa0df3550]
sid: released (5.17.11-1)
6.1-bookworm-security: N/A "Fixed before branching point"
5.10-bullseye-security: released (5.10.120-1)
4.19-buster-security: released (4.19.249-1)