CVE-2025-68313

Summary

In the Linux kernel, the following vulnerability has been resolved:

x86/CPU/AMD: Add RDSEED fix for Zen5

There's an issue with RDSEED's 16-bit and 32-bit register output variants on Zen5 which return a random value of 0 "at a rate inconsistent with randomness while incorrectly signaling success (CF=1)". Search the web for AMD-SB-7055 for more detail.

Add a fix glue which checks microcode revisions.

[ bp: Add microcode revisions checking, rewrite. ]

Affected Software

VendorProductVersion RangeStatus
LinuxLinux3e4147f33f8b647775357bae0248b9a2aeebfcd2 < e980de2ff109dacb6d9d3a77f01b27c467115ecbaffected
LinuxLinux3e4147f33f8b647775357bae0248b9a2aeebfcd2 < 36ff93e66d0efc46e39fab536a9feec968daa766affected
LinuxLinux3e4147f33f8b647775357bae0248b9a2aeebfcd2 < 607b9fb2ce248cc5b633c5949e0153838992c152affected
LinuxLinux6.8affected
LinuxLinux0 < 6.8unaffected
LinuxLinux6.12.58 <= 6.12.*unaffected
LinuxLinux6.17.8 <= 6.17.*unaffected
LinuxLinux6.18 <= *unaffected

Weaknesses

References