CVE-2025-40109

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2025-40109

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-40109.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2025-40109

Downstream

BELL-CVE-2025-40109

DEBIAN-CVE-2025-40109

DLA-4379-1

DLA-4404-1

DSA-6053-1

ECHO-93b4-5342-28d2

OESA-2025-2765

OESA-2025-2766

OESA-2025-2767

ROOT-OS-DEBIAN-11-CVE-2025-40109

ROOT-OS-DEBIAN-13-CVE-2025-40109

ROOT-OS-UBUNTU-2204-CVE-2025-40109

ROOT-OS-UBUNTU-2404-CVE-2025-40109

SUSE-SU-2025:4393-1

SUSE-SU-2025:4422-1

SUSE-SU-2025:4505-1

SUSE-SU-2025:4516-1

SUSE-SU-2025:4517-1

SUSE-SU-2025:4521-1

SUSE-SU-2026:20012-1

SUSE-SU-2026:20015-1

SUSE-SU-2026:20021-1

SUSE-SU-2026:20039-1

SUSE-SU-2026:20059-1

SUSE-SU-2026:20473-1

SUSE-SU-2026:20496-1

openSUSE-SU-2025:20172-1

Related

Published

2025-11-09T04:35:59.979Z

Modified

2026-03-20T12:43:10.887577Z

Summary

crypto: rng - Ensure set_ent is always present

Details

In the Linux kernel, the following vulnerability has been resolved:

crypto: rng - Ensure set_ent is always present

Ensure that set_ent is always set since only drbg provides it.

Database specific

{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/40xxx/CVE-2025-40109.json",
    "cna_assigner": "Linux"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

77ebdabe8de7c02f43c6de3357f79ff96f9f0579

Fixed

15d6f42da1bb527629d8e1067b1302d58dec9166

Fixed

bd903c25b652c331831226cdf56c8179d18e43f4

Fixed

17acbcd44fe8dc17dc1072375e76df2d52da6ac8

Fixed

ab172f4f42626549b02bada05f09e3f2b0cc26ec

Fixed

c5c703b50e91dd4748769f4c5ab50d9ad60be370

Fixed

e247a7d138e514a40edda7c4d72c8bd49bb2cad3

Fixed

915cb75983bc5e8b80f8a2f25a4af463f7b18c14

Fixed

c0d36727bf39bb16ef0a67ed608e279535ebf0da

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-40109.json"

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

5.10.0

Fixed

5.10.246

Type: ECOSYSTEM
Events: Introduced

5.11.0

Fixed

5.15.195

Type: ECOSYSTEM
Events: Introduced

5.16.0

Fixed

6.1.156

Type: ECOSYSTEM
Events: Introduced

6.2.0

Fixed

6.6.111

Type: ECOSYSTEM
Events: Introduced

6.7.0

Fixed

6.12.52

Type: ECOSYSTEM
Events: Introduced

6.13.0

Fixed

6.16.12

Type: ECOSYSTEM
Events: Introduced

6.17.0

Fixed

6.17.2

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-40109.json"