Vulners
Lucene search
Linux Distros Unpatched Vulnerability : CVE-2026-45957
| Reporter | Title | Published | Views | Family All 15 |
|---|---|---|---|---|
 | Linux kernel 安全漏洞 | 27 May 202600:00 | – | cnnvd |
 | CVE-2026-45957 | 27 May 202612:18 | – | cve |
 | CVE-2026-45957 rcu: Fix rcu_read_unlock() deadloop due to softirq | 27 May 202612:18 | – | cvelist |
 | CVE-2026-45957 | 27 May 202612:18 | – | debiancve |
 | EUVD-2026-32241 | 27 May 202615:33 | – | euvd |
 | CVE-2026-45957 | 27 May 202614:17 | – | nvd |
 | BELL-CVE-2026-45957 | 28 May 202606:10 | – | osv |
| DEBIAN-CVE-2026-45957 | 27 May 202614:17 | – | osv |
| ROOT-OS-DEBIAN-11-CVE-2026-45957 CVE-2026-45957 in rootio-linux - Patched by Root | 31 May 202603:58 | – | osv |
| ROOT-OS-DEBIAN-12-CVE-2026-45957 CVE-2026-45957 in rootio-linux - Patched by Root | 2 Jun 202604:12 | – | osv |
10
| Source | Link |
|---|---|
| security-tracker | www.security-tracker.debian.org/tracker/CVE-2026-45957 |
| cve | www.cve.mitre.org/cgi-bin/cvename.cgi |
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##
include('compat.inc');
if (description)
{
script_id(317257);
script_version("1.1");
script_set_attribute(attribute:"plugin_modification_date", value:"2026/05/27");
script_cve_id("CVE-2026-45957");
script_name(english:"Linux Distros Unpatched Vulnerability : CVE-2026-45957");
script_set_attribute(attribute:"synopsis", value:
"The Linux/Unix host has one or more packages installed with a vulnerability that the vendor indicates will not be
patched.");
script_set_attribute(attribute:"description", value:
"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied
patch available.
- rcu: Fix rcu_read_unlock() deadloop due to softirq Commit 5f5fa7ea89dc (rcu: Don't use negative nesting
depth in __rcu_read_unlock()) removes the recursion-protection code from __rcu_read_unlock(). Therefore,
we could invoke the deadloop in raise_softirq_irqoff() with ftrace enabled as follows: WARNING: CPU: 0
PID: 0 at kernel/trace/trace.c:3021 __ftrace_trace_stack.constprop.0+0x172/0x180 Modules linked in:
my_irq_work(O) CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Tainted: G O 6.18.0-rc7-dirty #23 PREEMPT(full)
Tainted: [O]=OOT_MODULE Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014
RIP: 0010:__ftrace_trace_stack.constprop.0+0x172/0x180 RSP: 0018:ffffc900000034a8 EFLAGS: 00010002 RAX:
0000000000000000 RBX: 0000000000000004 RCX: 0000000000000000 RDX: 0000000000000003 RSI: ffffffff826d7b87
RDI: ffffffff826e9329 RBP: 0000000000090009 R08: 0000000000000005 R09: ffffffff82afbc4c R10:
0000000000000008 R11: 0000000000011d7a R12: 0000000000000000 R13: ffff888003874100 R14: 0000000000000003
R15: ffff8880038c1054 FS: 0000000000000000(0000) GS:ffff8880fa8ea000(0000) knlGS:0000000000000000 CS: 0010
DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000055b31fa7f540 CR3: 00000000078f4005 CR4: 0000000000770ef0
PKRU: 55555554 Call Trace: <IRQ> trace_buffer_unlock_commit_regs+0x6d/0x220
trace_event_buffer_commit+0x5c/0x260 trace_event_raw_event_softirq+0x47/0x80
raise_softirq_irqoff+0x6e/0xa0 rcu_read_unlock_special+0xb1/0x160 unwind_next_frame+0x203/0x9b0
__unwind_start+0x15d/0x1c0 arch_stack_walk+0x62/0xf0 stack_trace_save+0x48/0x70
__ftrace_trace_stack.constprop.0+0x144/0x180 trace_buffer_unlock_commit_regs+0x6d/0x220
trace_event_buffer_commit+0x5c/0x260 trace_event_raw_event_softirq+0x47/0x80
raise_softirq_irqoff+0x6e/0xa0 rcu_read_unlock_special+0xb1/0x160 unwind_next_frame+0x203/0x9b0
__unwind_start+0x15d/0x1c0 arch_stack_walk+0x62/0xf0 stack_trace_save+0x48/0x70
__ftrace_trace_stack.constprop.0+0x144/0x180 trace_buffer_unlock_commit_regs+0x6d/0x220
trace_event_buffer_commit+0x5c/0x260 trace_event_raw_event_softirq+0x47/0x80
raise_softirq_irqoff+0x6e/0xa0 rcu_read_unlock_special+0xb1/0x160 unwind_next_frame+0x203/0x9b0
__unwind_start+0x15d/0x1c0 arch_stack_walk+0x62/0xf0 stack_trace_save+0x48/0x70
__ftrace_trace_stack.constprop.0+0x144/0x180 trace_buffer_unlock_commit_regs+0x6d/0x220
trace_event_buffer_commit+0x5c/0x260 trace_event_raw_event_softirq+0x47/0x80
raise_softirq_irqoff+0x6e/0xa0 rcu_read_unlock_special+0xb1/0x160 __is_insn_slot_addr+0x54/0x70
kernel_text_address+0x48/0xc0 __kernel_text_address+0xd/0x40 unwind_get_return_address+0x1e/0x40
arch_stack_walk+0x9c/0xf0 stack_trace_save+0x48/0x70 __ftrace_trace_stack.constprop.0+0x144/0x180
trace_buffer_unlock_commit_regs+0x6d/0x220 trace_event_buffer_commit+0x5c/0x260
trace_event_raw_event_softirq+0x47/0x80 __raise_softirq_irqoff+0x61/0x80
__flush_smp_call_function_queue+0x115/0x420 __sysvec_call_function_single+0x17/0xb0
sysvec_call_function_single+0x8c/0xc0 </IRQ> Commit b41642c87716 (rcu: Fix rcu_read_unlock() deadloop due
to IRQ work) fixed the infinite loop in rcu_read_unlock_special() for IRQ work by setting a flag before
calling irq_work_queue_on(). We fix this issue by setting the same flag before calling
raise_softirq_irqoff() and rename the flag to defer_qs_pending for more common. (CVE-2026-45957)
Note that Nessus relies on the presence of the package as reported by the vendor.");
script_set_attribute(attribute:"see_also", value:"https://security-tracker.debian.org/tracker/CVE-2026-45957");
script_set_attribute(attribute:"solution", value:
"There is no known solution at this time.");
script_set_attribute(attribute:"agent", value:"unix");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:U/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:U/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2026-45957");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vendor_unpatched", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2026/05/27");
script_set_attribute(attribute:"plugin_publication_date", value:"2026/05/27");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:11.0");
script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:12.0");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:linux");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Misc.");
script_copyright(english:"This script is Copyright (C) 2026 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info2.nasl", "set_linux_os_id.nasl");
script_require_keys("Host/cpu", "Host/local_checks_enabled", "global_settings/vendor_unpatched", "Host/OS/identifier");
script_require_ports("Host/OS/Debian Linux-11", "Host/OS/Debian Linux-12");
exit(0);
}
if (!get_kb_item("global_settings/vendor_unpatched")) exit(0, "Unpatched Vulnerabilities Detection not active.");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (empty_or_null(get_one_kb_item("Host/Debian/dpkg-l"))) audit(AUDIT_PACKAGE_LIST_MISSING);
include('linux_unpatched.inc');
var distro_constraints_array = {
"Debian Linux-12": {
"package_manager": "dpkg-l",
"constraints": [
{
"release": "12",
"pkgs": [
{"reference": "btrfs-modules-6.1.0-47-alpha-generic-di"},
{"reference": "cdrom-core-modules-6.1.0-47-alpha-generic-di"},
{"reference": "ext4-modules-6.1.0-47-alpha-generic-di"},
{"reference": "fat-modules-6.1.0-47-alpha-generic-di"},
{"reference": "isofs-modules-6.1.0-47-alpha-generic-di"},
{"reference": "jfs-modules-6.1.0-47-alpha-generic-di"},
{"reference": "kernel-image-6.1.0-47-alpha-generic-di"},
{"reference": "linux-doc"},
{"reference": "linux-doc-6.1"},
{"reference": "linux-headers-6.1.0"},
{"reference": "linux-source"},
{"reference": "linux-source-6.1"},
{"reference": "linux-support-6.1.0"},
{"reference": "loop-modules-6.1.0-47-alpha-generic-di"},
{"reference": "nic-modules-6.1.0-47-alpha-generic-di"},
{"reference": "nic-shared-modules-6.1.0-47-alpha-generic-di"},
{"reference": "nic-wireless-modules-6.1.0-47-alpha-generic-di"},
{"reference": "pata-modules-6.1.0-47-alpha-generic-di"},
{"reference": "ppp-modules-6.1.0-47-alpha-generic-di"},
{"reference": "scsi-core-modules-6.1.0-47-alpha-generic-di"},
{"reference": "scsi-modules-6.1.0-47-alpha-generic-di"},
{"reference": "scsi-nic-modules-6.1.0-47-alpha-generic-di"},
{"reference": "serial-modules-6.1.0-47-alpha-generic-di"},
{"reference": "usb-serial-modules-6.1.0-47-alpha-generic-di"},
{"reference": "xfs-modules-6.1.0-47-alpha-generic-di"}
]
}
]
},
"Debian Linux-11": {
"package_manager": "dpkg-l",
"constraints": [
{
"release": "11",
"pkgs": [
{"reference": "bpftool"},
{"reference": "btrfs-modules-5.10.0-32-alpha-generic-di"},
{"reference": "cdrom-core-modules-5.10.0-32-alpha-generic-di"},
{"reference": "hyperv-daemons"},
{"reference": "kernel-image-5.10.0-32-alpha-generic-di"},
{"reference": "libcpupower-dev"},
{"reference": "libcpupower1"},
{"reference": "linux-bootwrapper-5.10.0"},
{"reference": "linux-config-5.10"},
{"reference": "linux-cpupower"},
{"reference": "linux-doc"},
{"reference": "linux-doc-5.10"},
{"reference": "linux-headers-5.10.0"},
{"reference": "linux-kbuild-5.10"},
{"reference": "linux-libc-dev"},
{"reference": "linux-perf"},
{"reference": "linux-perf-5.10"},
{"reference": "linux-source"},
{"reference": "linux-source-5.10"},
{"reference": "linux-support-5.10.0"},
{"reference": "loop-modules-5.10.0-32-alpha-generic-di"},
{"reference": "nic-modules-5.10.0-32-alpha-generic-di"},
{"reference": "nic-shared-modules-5.10.0-32-alpha-generic-di"},
{"reference": "nic-wireless-modules-5.10.0-32-alpha-generic-di"},
{"reference": "pata-modules-5.10.0-32-alpha-generic-di"},
{"reference": "ppp-modules-5.10.0-32-alpha-generic-di"},
{"reference": "scsi-core-modules-5.10.0-32-alpha-generic-di"},
{"reference": "scsi-modules-5.10.0-32-alpha-generic-di"},
{"reference": "scsi-nic-modules-5.10.0-32-alpha-generic-di"},
{"reference": "serial-modules-5.10.0-32-alpha-generic-di"},
{"reference": "usb-serial-modules-5.10.0-32-alpha-generic-di"},
{"reference": "usbip"}
]
}
]
}
};
var distro_constraints_values = linux_unpatched::get_distro_constraints(distro_constraints_arr:distro_constraints_array);
if (empty_or_null(distro_constraints_values)) audit(AUDIT_HOST_NOT, 'affected');
var report = linux_unpatched::check_unpatched_constraints(distro_constraints_values:distro_constraints_values);
if (!empty_or_null(report))
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : report
);
exit(0);
}
else
{
audit(AUDIT_HOST_NOT, 'affected');
}
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
27 May 2026 00:00Current
5.9Medium risk
Vulners AI Score5.9
EPSS0.00024