Jitterentropy Vulnerability in Linux Kernel Affecting Performance
CVE-2026-52936

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 24 June 2026

What is CVE-2026-52936?

A concurrency issue has been identified in the Linux kernel's jitterentropy implementation, where a spinlock is used to serialize access to the shared jitterentropy state. This design can cause performance stalling during entropy generation due to parallel readers contending for the same lock. To address this, replacing the spinlock with a mutex allows contended readers to sleep, improving performance and ensuring smoother operation during critical entropy generation processes.

Affected Version(s)

Linux bb5530e4082446aac3a3d69780cd4dbfa4520013 < 18216b8ab6904753eaf31baf453cb02ecd202ba4

Linux bb5530e4082446aac3a3d69780cd4dbfa4520013 < 4c03e6eb98443dc4d6d422a9780034a5b75376b4

Linux bb5530e4082446aac3a3d69780cd4dbfa4520013

References

https://git.kernel.org/stable/c/18216b8ab6904753eaf31baf4...

https://git.kernel.org/stable/c/4c03e6eb98443dc4d6d422a97...

https://git.kernel.org/stable/c/ff734dbd9e2432601a6dcd167...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 24, 2026
Vulnerability Reserved
Jun 9, 2026

CVE-2026-52936 Data

JSON