{"id":"CVE-2023-52615","summary":"hwrng: core - Fix page fault dead lock on mmap-ed hwrng","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nhwrng: core - Fix page fault dead lock on mmap-ed hwrng\n\nThere is a dead-lock in the hwrng device read path.  This triggers\nwhen the user reads from /dev/hwrng into memory also mmap-ed from\n/dev/hwrng.  The resulting page fault triggers a recursive read\nwhich then dead-locks.\n\nFix this by using a stack buffer when calling copy_to_user.","modified":"2026-04-02T09:43:08.804031Z","published":"2024-03-18T10:14:45.503Z","related":["ALSA-2024:4352","SUSE-SU-2024:1466-1","SUSE-SU-2024:1480-1","SUSE-SU-2024:1490-1","SUSE-SU-2024:2892-1","SUSE-SU-2024:2901-1","SUSE-SU-2024:2940-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/52xxx/CVE-2023-52615.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/26cc6d7006f922df6cc4389248032d955750b2a0"},{"type":"WEB","url":"https://git.kernel.org/stable/c/5030d4c798863ccb266563201b341a099e8cdd48"},{"type":"WEB","url":"https://git.kernel.org/stable/c/6822a14271786150e178869f1495cc03e74c5029"},{"type":"WEB","url":"https://git.kernel.org/stable/c/78aafb3884f6bc6636efcc1760c891c8500b9922"},{"type":"WEB","url":"https://git.kernel.org/stable/c/aa8aa16ed9adf1df05bb339d588cf485a011839e"},{"type":"WEB","url":"https://git.kernel.org/stable/c/c6a8111aacbfe7a8a70f46cc0de8eed00561693c"},{"type":"WEB","url":"https://git.kernel.org/stable/c/eafd83b92f6c044007a3591cbd476bcf90455990"},{"type":"WEB","url":"https://git.kernel.org/stable/c/ecabe8cd456d3bf81e92c53b074732f3140f170d"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/52xxx/CVE-2023-52615.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-52615"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"9996508b3353063f2d6c48c1a28a84543d72d70b"},{"fixed":"eafd83b92f6c044007a3591cbd476bcf90455990"},{"fixed":"5030d4c798863ccb266563201b341a099e8cdd48"},{"fixed":"c6a8111aacbfe7a8a70f46cc0de8eed00561693c"},{"fixed":"26cc6d7006f922df6cc4389248032d955750b2a0"},{"fixed":"aa8aa16ed9adf1df05bb339d588cf485a011839e"},{"fixed":"ecabe8cd456d3bf81e92c53b074732f3140f170d"},{"fixed":"6822a14271786150e178869f1495cc03e74c5029"},{"fixed":"78aafb3884f6bc6636efcc1760c891c8500b9922"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-52615.json"}}],"schema_version":"1.7.5"}