{"id":"CVE-2020-16166","details":"The Linux kernel through 5.7.11 allows remote attackers to make observations that help to obtain sensitive information about the internal state of the network RNG, aka CID-f227e3ec3b5c. This is related to drivers/char/random.c and kernel/time/timer.c.","modified":"2026-04-02T04:09:58.444702Z","published":"2020-07-30T21:15:11.533Z","related":["SUSE-SU-2020:2485-1","SUSE-SU-2020:2486-1","SUSE-SU-2020:2540-1","SUSE-SU-2020:2541-1","SUSE-SU-2020:2574-1","SUSE-SU-2020:2575-1","SUSE-SU-2020:2576-1","SUSE-SU-2020:2582-1","SUSE-SU-2020:2605-1","SUSE-SU-2020:2610-1","SUSE-SU-2020:2623-1","SUSE-SU-2020:2631-1","openSUSE-SU-2020:1153-1","openSUSE-SU-2020:1236-1","openSUSE-SU-2021:0242-1"],"references":[{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MFBCLQWJI5I4G25TVJNLXLAXJ4MERQNW/"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AAPTLPAEKVAJYJ4LHN7VH4CN2W75R2YW/"},{"type":"ADVISORY","url":"https://lists.debian.org/debian-lts-announce/2020/09/msg00025.html"},{"type":"ADVISORY","url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00009.html"},{"type":"ADVISORY","url":"https://lists.debian.org/debian-lts-announce/2020/10/msg00034.html"},{"type":"ADVISORY","url":"https://security.netapp.com/advisory/ntap-20200814-0004/"},{"type":"ADVISORY","url":"https://usn.ubuntu.com/4525-1/"},{"type":"ADVISORY","url":"http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00047.html"},{"type":"ADVISORY","url":"https://lists.debian.org/debian-lts-announce/2020/10/msg00032.html"},{"type":"ADVISORY","url":"https://usn.ubuntu.com/4526-1/"},{"type":"ADVISORY","url":"https://arxiv.org/pdf/2012.07432.pdf"},{"type":"FIX","url":"https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=f227e3ec3b5cad859ad15666874405e8c1bbc1d4"},{"type":"FIX","url":"https://www.oracle.com/security-alerts/cpuApr2021.html"},{"type":"FIX","url":"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=c51f8f88d705e06bd696d7510aff22b33eb8e638"},{"type":"FIX","url":"https://github.com/torvalds/linux/commit/f227e3ec3b5cad859ad15666874405e8c1bbc1d4"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git","events":[{"introduced":"0"},{"fixed":"f227e3ec3b5cad859ad15666874405e8c1bbc1d4"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git","events":[{"introduced":"0"},{"fixed":"c51f8f88d705e06bd696d7510aff22b33eb8e638"}]},{"type":"GIT","repo":"https://github.com/torvalds/linux","events":[{"introduced":"0"},{"fixed":"f227e3ec3b5cad859ad15666874405e8c1bbc1d4"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git","events":[{"introduced":"0"},{"fixed":"f227e3ec3b5cad859ad15666874405e8c1bbc1d4"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git","events":[{"introduced":"0"},{"fixed":"c51f8f88d705e06bd696d7510aff22b33eb8e638"}]},{"type":"GIT","repo":"https://github.com/torvalds/linux","events":[{"introduced":"0"},{"fixed":"f227e3ec3b5cad859ad15666874405e8c1bbc1d4"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-16166.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"5.7.11"}]},{"events":[{"introduced":"0"},{"last_affected":"15.1"}]},{"events":[{"introduced":"0"},{"last_affected":"15.2"}]},{"events":[{"introduced":"0"},{"last_affected":"31"}]},{"events":[{"introduced":"0"},{"last_affected":"32"}]},{"events":[{"introduced":"0"},{"last_affected":"9.0"}]},{"events":[{"introduced":"0"},{"last_affected":"14.04"}]},{"events":[{"introduced":"0"},{"last_affected":"16.04"}]},{"events":[{"introduced":"0"},{"last_affected":"18.04"}]},{"events":[{"introduced":"0"},{"last_affected":"20.04"}]},{"events":[{"introduced":"9.5"}]},{"events":[{"introduced":"11.0.0"},{"last_affected":"11.60.3"}]},{"events":[{"introduced":"0"},{"last_affected":"9.0.4"}]},{"events":[{"introduced":"0"},{"last_affected":"8.2"}]},{"events":[{"introduced":"0"},{"last_affected":"5.7.11"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"}]}