Vulners
Lucene search
Linux Distros Unpatched Vulnerability : CVE-2026-46148
| Reporter | Title | Published | Views | Family All 15 |
|---|---|---|---|---|
 | Linux kernel 安全漏洞 | 28 May 202600:00 | – | cnnvd |
 | CVE-2026-46148 | 28 May 202609:36 | – | cve |
 | CVE-2026-46148 spi: microchip-core-qspi: control built-in cs manually | 28 May 202609:36 | – | cvelist |
 | CVE-2026-46148 | 28 May 202609:36 | – | debiancve |
 | EUVD-2026-32775 | 28 May 202609:36 | – | euvd |
 | CVE-2026-46148 | 28 May 202610:16 | – | nvd |
 | BELL-CVE-2026-46148 | 2 Jun 202606:11 | – | osv |
| DEBIAN-CVE-2026-46148 | 28 May 202610:16 | – | osv |
| ROOT-OS-DEBIAN-12-CVE-2026-46148 CVE-2026-46148 in rootio-linux - Patched by Root | 2 Jun 202604:12 | – | osv |
| ROOT-OS-DEBIAN-13-CVE-2026-46148 CVE-2026-46148 in rootio-linux - Patched by Root | 2 Jun 202604:18 | – | osv |
10
| Source | Link |
|---|---|
| security-tracker | www.security-tracker.debian.org/tracker/CVE-2026-46148 |
| cve | www.cve.mitre.org/cgi-bin/cvename.cgi |
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##
include('compat.inc');
if (description)
{
script_id(317613);
script_version("1.1");
script_set_attribute(attribute:"plugin_modification_date", value:"2026/05/29");
script_cve_id("CVE-2026-46148");
script_name(english:"Linux Distros Unpatched Vulnerability : CVE-2026-46148");
script_set_attribute(attribute:"synopsis", value:
"The Linux/Unix host has one or more packages installed with a vulnerability that the vendor indicates will not be
patched.");
script_set_attribute(attribute:"description", value:
"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied
patch available.
- spi: microchip-core-qspi: control built-in cs manually The coreQSPI IP supports only a single chip select,
which is automagically operated by the hardware - set low when the transmit buffer first gets written to
and set high when the number of bytes written to the TOTALBYTES field of the FRAMES register have been
sent on the bus. Additional devices must use GPIOs for their chip selects. It was reported to me that if
there are two devices attached to this QSPI controller that the in-built chip select is set low while
linux tries to access the device attached to the GPIO. This went undetected as the boards that connected
multiple devices to the SPI controller all exclusively used GPIOs for chip selects, not relying on the
built-in chip select at all. It turns out that this was because the built-in chip select, when controlled
automagically, is set low when active and high when inactive, thereby ruling out its use for active-high
devices or devices that need to transmit with the chip select disabled. Modify the driver so that it
controls chip select directly, retaining the behaviour for mem_ops of setting the chip select active for
the entire duration of the transfer in the exec_op callback. For regular transfers, implement the set_cs
callback for the core to use. As part of this, the existing setup callback, mchp_coreqspi_setup_op(), is
removed. Modifying the CLKIDLE field is not safe to do during operation when there are multiple devices,
so this code is removed entirely. Setting the MASTER and ENABLE fields is something that can be done once
at probe, it doesn't need to be re-run for each device. Instead the new setup callback sets the built-in
chip select to its inactive state for active-low devices, as the reset value of the chip select in
software controlled mode is low. (CVE-2026-46148)
Note that Nessus relies on the presence of the package as reported by the vendor.");
script_set_attribute(attribute:"see_also", value:"https://security-tracker.debian.org/tracker/CVE-2026-46148");
script_set_attribute(attribute:"solution", value:
"There is no known solution at this time.");
script_set_attribute(attribute:"agent", value:"unix");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:U/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:U/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2026-46148");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vendor_unpatched", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2026/05/28");
script_set_attribute(attribute:"plugin_publication_date", value:"2026/05/29");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:12.0");
script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:13.0");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:linux");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Misc.");
script_copyright(english:"This script is Copyright (C) 2026 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info2.nasl", "set_linux_os_id.nasl");
script_require_keys("Host/cpu", "Host/local_checks_enabled", "global_settings/vendor_unpatched", "Host/OS/identifier");
script_require_ports("Host/OS/Debian Linux-12", "Host/OS/Debian Linux-13");
exit(0);
}
if (!get_kb_item("global_settings/vendor_unpatched")) exit(0, "Unpatched Vulnerabilities Detection not active.");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (empty_or_null(get_one_kb_item("Host/Debian/dpkg-l"))) audit(AUDIT_PACKAGE_LIST_MISSING);
include('linux_unpatched.inc');
var distro_constraints_array = {
"Debian Linux-12": {
"package_manager": "dpkg-l",
"constraints": [
{
"release": "12",
"pkgs": [
{"reference": "btrfs-modules-6.1.0-47-alpha-generic-di"},
{"reference": "cdrom-core-modules-6.1.0-47-alpha-generic-di"},
{"reference": "ext4-modules-6.1.0-47-alpha-generic-di"},
{"reference": "fat-modules-6.1.0-47-alpha-generic-di"},
{"reference": "isofs-modules-6.1.0-47-alpha-generic-di"},
{"reference": "jfs-modules-6.1.0-47-alpha-generic-di"},
{"reference": "kernel-image-6.1.0-47-alpha-generic-di"},
{"reference": "linux-doc"},
{"reference": "linux-doc-6.1"},
{"reference": "linux-headers-6.1.0"},
{"reference": "linux-source"},
{"reference": "linux-source-6.1"},
{"reference": "linux-support-6.1.0"},
{"reference": "loop-modules-6.1.0-47-alpha-generic-di"},
{"reference": "nic-modules-6.1.0-47-alpha-generic-di"},
{"reference": "nic-shared-modules-6.1.0-47-alpha-generic-di"},
{"reference": "nic-wireless-modules-6.1.0-47-alpha-generic-di"},
{"reference": "pata-modules-6.1.0-47-alpha-generic-di"},
{"reference": "ppp-modules-6.1.0-47-alpha-generic-di"},
{"reference": "scsi-core-modules-6.1.0-47-alpha-generic-di"},
{"reference": "scsi-modules-6.1.0-47-alpha-generic-di"},
{"reference": "scsi-nic-modules-6.1.0-47-alpha-generic-di"},
{"reference": "serial-modules-6.1.0-47-alpha-generic-di"},
{"reference": "usb-serial-modules-6.1.0-47-alpha-generic-di"},
{"reference": "xfs-modules-6.1.0-47-alpha-generic-di"}
]
}
]
},
"Debian Linux-13": {
"package_manager": "dpkg-l",
"constraints": [
{
"release": "13",
"pkgs": [
{"reference": "bpftool"},
{"reference": "hyperv-daemons"},
{"reference": "intel-sdsi"},
{"reference": "libcpupower-dev"},
{"reference": "libcpupower1"},
{"reference": "linux-bpf-dev"},
{"reference": "linux-config-6.12"},
{"reference": "linux-cpupower"},
{"reference": "linux-doc"},
{"reference": "linux-doc-6.12"},
{"reference": "linux-headers-4kc-malta"},
{"reference": "linux-headers-5kc-malta"},
{"reference": "linux-headers-6.12.86+deb13-4kc-malta"},
{"reference": "linux-headers-6.12.86+deb13-5kc-malta"},
{"reference": "linux-headers-6.12.86+deb13-alpha-generic"},
{"reference": "linux-headers-6.12.86+deb13-alpha-smp"},
{"reference": "linux-headers-6.12.86+deb13-amd64"},
{"reference": "linux-headers-6.12.86+deb13-arm64"},
{"reference": "linux-headers-6.12.86+deb13-arm64-16k"},
{"reference": "linux-headers-6.12.86+deb13-armmp"},
{"reference": "linux-headers-6.12.86+deb13-armmp-lpae"},
{"reference": "linux-headers-6.12.86+deb13-cloud-amd64"},
{"reference": "linux-headers-6.12.86+deb13-cloud-arm64"},
{"reference": "linux-headers-6.12.86+deb13-common"},
{"reference": "linux-headers-6.12.86+deb13-common-rt"},
{"reference": "linux-headers-6.12.86+deb13-loong64"},
{"reference": "linux-headers-6.12.86+deb13-loongson-3"},
{"reference": "linux-headers-6.12.86+deb13-m68k"},
{"reference": "linux-headers-6.12.86+deb13-mips32r2eb"},
{"reference": "linux-headers-6.12.86+deb13-mips32r2el"},
{"reference": "linux-headers-6.12.86+deb13-mips64r2eb"},
{"reference": "linux-headers-6.12.86+deb13-mips64r2el"}
]
}
]
}
};
var distro_constraints_values = linux_unpatched::get_distro_constraints(distro_constraints_arr:distro_constraints_array);
if (empty_or_null(distro_constraints_values)) audit(AUDIT_HOST_NOT, 'affected');
var report = linux_unpatched::check_unpatched_constraints(distro_constraints_values:distro_constraints_values);
if (!empty_or_null(report))
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : report
);
exit(0);
}
else
{
audit(AUDIT_HOST_NOT, 'affected');
}
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
29 May 2026 00:00Current
6Medium risk
Vulners AI Score6
EPSS0.00022