hwrng: ks-sa - fix division by zero in ks_sa_rng_init
Fix division by zero in ks_sa_rng_init caused by missing clock
pointer initialization. The clk_get_rate() call is performed on
an uninitialized clk pointer, resulting in division by zero when
calculating delay values.
Add clock initialization code before using the clock.
drivers/char/hw_random/ks-sa-rng.c | 7 +++++++
1 file changed, 7 insertions(+)
Analysis
Analysis and contextual insights are available on OpenCVE Cloud.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Linux | Linux | unaffected |
|
||||||||||||||||||||||||||||||
| Linux | Linux | affected |
|
No data.
No data.
| Vendor | Product | Confidence | Versions |
|---|---|---|---|
| Linux | Linux Kernel | — | — |
Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
| Source | ID | Title |
|---|---|---|
 Debian DLA |
DLA-4379-1 | linux-6.1 security update |
| Debian DLA |
DLA-4404-1 | linux security update |
 Ubuntu USN |
USN-8029-1 | Linux kernel vulnerabilities |
| Ubuntu USN |
USN-8030-1 | Linux kernel (GCP) vulnerabilities |
| Ubuntu USN |
USN-8033-1 | Linux kernel vulnerabilities |
| Ubuntu USN |
USN-8033-2 | Linux kernel vulnerabilities |
| Ubuntu USN |
USN-8033-3 | Linux kernel (FIPS) vulnerabilities |
| Ubuntu USN |
USN-8034-1 | Linux kernel (NVIDIA Tegra) vulnerabilities |
| Ubuntu USN |
USN-8033-4 | Linux kernel (AWS) vulnerabilities |
| Ubuntu USN |
USN-8029-2 | Linux kernel vulnerabilities |
| Ubuntu USN |
USN-8033-5 | Linux kernel vulnerabilities |
| Ubuntu USN |
USN-8034-2 | Linux kernel (NVIDIA Tegra IGX) vulnerabilities |
| Ubuntu USN |
USN-8048-1 | Linux kernel (OEM) vulnerabilities |
| Ubuntu USN |
USN-8033-6 | Linux kernel (NVIDIA) vulnerabilities |
| Ubuntu USN |
USN-8033-7 | Linux kernel vulnerabilities |
| Ubuntu USN |
USN-8033-8 | Linux kernel (Intel IoTG) vulnerabilities |
| Ubuntu USN |
USN-8029-3 | Linux kernel (Azure) vulnerabilities |
| Ubuntu USN |
USN-8095-1 | Linux kernel vulnerabilities |
| Ubuntu USN |
USN-8095-2 | Linux kernel (FIPS) vulnerabilities |
| Ubuntu USN |
USN-8100-1 | Linux kernel (NVIDIA) vulnerabilities |
| Ubuntu USN |
USN-8095-3 | Linux kernel (Real-time) vulnerabilities |
| Ubuntu USN |
USN-8095-4 | Linux kernel (AWS) vulnerabilities |
| Ubuntu USN |
USN-8125-1 | Linux kernel (Azure) vulnerabilities |
| Ubuntu USN |
USN-8126-1 | Linux kernel (Azure) vulnerabilities |
| Ubuntu USN |
USN-8095-5 | Linux kernel (Raspberry Pi) vulnerabilities |
| Ubuntu USN |
USN-8141-1 | Linux kernel (Raspberry Pi) vulnerabilities |
| Ubuntu USN |
USN-8163-1 | Linux kernel (Azure FIPS) vulnerabilities |
| Ubuntu USN |
USN-8165-1 | Linux kernel (Azure FIPS) vulnerabilities |
| Ubuntu USN |
USN-8163-2 | Linux kernel (Azure) vulnerabilities |
| Ubuntu USN |
USN-8243-1 | Linux kernel (Azure) vulnerabilities |
| Ubuntu USN |
USN-8261-1 | Linux kernel (Xilinx) vulnerabilities |
Mon, 01 Dec 2025 06:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| CPEs | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
Fri, 14 Nov 2025 00:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| References |
| |
| Metrics |
threat_severity
|
cvssV3_1
|
Wed, 12 Nov 2025 23:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Linux
Linux linux Kernel |
|
| Vendors & Products |
Linux
Linux linux Kernel |
Wed, 12 Nov 2025 10:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | In the Linux kernel, the following vulnerability has been resolved: hwrng: ks-sa - fix division by zero in ks_sa_rng_init Fix division by zero in ks_sa_rng_init caused by missing clock pointer initialization. The clk_get_rate() call is performed on an uninitialized clk pointer, resulting in division by zero when calculating delay values. Add clock initialization code before using the clock. drivers/char/hw_random/ks-sa-rng.c | 7 +++++++ 1 file changed, 7 insertions(+) | |
| Title | hwrng: ks-sa - fix division by zero in ks_sa_rng_init | |
| References |
|
|
MITRE
Status: PUBLISHED
Assigner: Linux
Published:
Updated: 2026-05-11T21:43:17.660Z
Reserved: 2025-04-16T07:20:57.169Z
Link: CVE-2025-40127
Vulnrichment
No data.
NVD
Status : Deferred
Published: 2025-11-12T11:15:42.290
Modified: 2026-04-15T00:35:42.020
Link: CVE-2025-40127
Redhat
OpenCVE Enrichment
Updated: 2025-11-12T22:12:22Z
No weakness.