Vulnerability in Linux Kernel Affecting AMD Zen5 Processors
CVE-2025-68313

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 16 December 2025

What is CVE-2025-68313?

A vulnerability has been identified in the Linux kernel, particularly affecting AMD Zen5 processors. This issue pertains to the RDSEED instruction, which is designed to provide random values. Unfortunately, in specific scenarios, the instruction returns a constant value of 0 too frequently, misleadingly indicating a successful operation. This inconsistency raises significant concerns regarding the reliability of randomness output from the processor, potentially undermining cryptographic operations and overall system security. A recent update has introduced checks for microcode revisions to address this problem effectively. For further technical details, refer to AMD-SB-7055 and related documentation.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 36ff93e66d0efc46e39fab536a9feec968daa766

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 607b9fb2ce248cc5b633c5949e0153838992c152

References

https://git.kernel.org/stable/c/e980de2ff109dacb6d9d3a77f...

https://git.kernel.org/stable/c/36ff93e66d0efc46e39fab536...

https://git.kernel.org/stable/c/607b9fb2ce248cc5b633c5949...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 16, 2025
Vulnerability Reserved
Dec 16, 2025

JSON