Vulners
Lucene search
Linux Distros Unpatched Vulnerability : CVE-2026-52953
| Reporter | Title | Published | Views | Family All 9 |
|---|---|---|---|---|
 | CVE-2026-52953 | 24 Jun 202616:28 | – | attackerkb |
 | CVE-2026-52953 | 24 Jun 202616:28 | – | cve |
 | CVE-2026-52953 iommu/vt-d: Fix oops due to out of scope access | 24 Jun 202616:28 | – | cvelist |
 | CVE-2026-52953 | 24 Jun 202616:28 | – | debiancve |
 | EUVD-2026-38821 | 24 Jun 202618:32 | – | euvd |
 | CVE-2026-52953 | 24 Jun 202617:17 | – | nvd |
 | DEBIAN-CVE-2026-52953 | 24 Jun 202620:48 | – | osv |
| UBUNTU-CVE-2026-52953 | 25 Jun 202600:00 | – | osv |
 | PT-2026-51847 | 24 Jun 202600:00 | – | ptsecurity |
| Source | Link |
|---|---|
| security-tracker | www.security-tracker.debian.org/tracker/CVE-2026-52953 |
| cve | www.cve.mitre.org/cgi-bin/cvename.cgi |
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##
include('compat.inc');
if (description)
{
script_id(322657);
script_version("1.1");
script_set_attribute(attribute:"plugin_modification_date", value:"2026/06/25");
script_cve_id("CVE-2026-52953");
script_name(english:"Linux Distros Unpatched Vulnerability : CVE-2026-52953");
script_set_attribute(attribute:"synopsis", value:
"The Linux/Unix host has one or more packages installed with a vulnerability that the vendor indicates will not be
patched.");
script_set_attribute(attribute:"description", value:
"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied
patch available.
- iommu/vt-d: Fix oops due to out of scope access Below oops triggers when kill QEMU process: Oops: general
protection fault, probably for non-canonical address 0x7fffffff844eaaa7: 0000 [#1] SMP NOPTI Call Trace:
<TASK> do_raw_spin_lock+0xaa/0xc0 _raw_spin_lock_irqsave+0x21/0x40 domain_remove_dev_pasid+0x52/0x160
intel_nested_set_dev_pasid+0x1b9/0x1e0 __iommu_set_group_pasid+0x56/0x120
pci_dev_reset_iommu_done+0xe3/0x180 pcie_flr+0x65/0x160 __pci_reset_function_locked+0x5b/0x120
vfio_pci_core_close_device+0x63/0xe0 [vfio_pci_core] vfio_df_close+0x4f/0xa0
vfio_df_unbind_iommufd+0x2d/0x60 vfio_device_fops_release+0x3e/0x40 __fput+0xe5/0x2c0
task_work_run+0x58/0xa0 do_exit+0x2c8/0x600 do_group_exit+0x2f/0xa0 get_signal+0x863/0x8c0
arch_do_signal_or_restart+0x24/0x100 exit_to_user_mode_loop+0x87/0x380 do_syscall_64+0x2ff/0x11e0
entry_SYSCALL_64_after_hwframe+0x76/0x7e The global static blocked domain is a dummy domain without
corresponding dmar_domain structure, accessing beyond iommu_domain structure triggers oops easily. Fix it
by return early in domain_remove_dev_pasid() like identity domain. (CVE-2026-52953)
Note that Nessus relies on the presence of the package as reported by the vendor.");
script_set_attribute(attribute:"see_also", value:"https://security-tracker.debian.org/tracker/CVE-2026-52953");
script_set_attribute(attribute:"solution", value:
"There is no known solution at this time.");
script_set_attribute(attribute:"agent", value:"unix");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:U/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:U/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2026-52953");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vendor_unpatched", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2026/06/24");
script_set_attribute(attribute:"plugin_publication_date", value:"2026/06/25");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:13.0");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:linux");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Misc.");
script_copyright(english:"This script is Copyright (C) 2026 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info2.nasl", "set_linux_os_id.nasl");
script_require_keys("Host/cpu", "Host/local_checks_enabled", "global_settings/vendor_unpatched", "Host/OS/identifier");
script_require_ports("Host/OS/Debian Linux-13");
exit(0);
}
if (!get_kb_item("global_settings/vendor_unpatched")) exit(0, "Unpatched Vulnerabilities Detection not active.");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (empty_or_null(get_one_kb_item("Host/Debian/dpkg-l"))) audit(AUDIT_PACKAGE_LIST_MISSING);
include('linux_unpatched.inc');
var distro_constraints_array = {
"Debian Linux-13": {
"package_manager": "dpkg-l",
"constraints": [
{
"release": "13",
"pkgs": [
{"reference": "bpftool"},
{"reference": "hyperv-daemons"},
{"reference": "intel-sdsi"},
{"reference": "libcpupower-dev"},
{"reference": "libcpupower1"},
{"reference": "linux-bpf-dev"},
{"reference": "linux-config-6.12"},
{"reference": "linux-cpupower"},
{"reference": "linux-doc"},
{"reference": "linux-doc-6.12"},
{"reference": "linux-headers-4kc-malta"},
{"reference": "linux-headers-5kc-malta"},
{"reference": "linux-headers-6.12.86+deb13-4kc-malta"},
{"reference": "linux-headers-6.12.86+deb13-5kc-malta"},
{"reference": "linux-headers-6.12.86+deb13-alpha-generic"},
{"reference": "linux-headers-6.12.86+deb13-alpha-smp"},
{"reference": "linux-headers-6.12.86+deb13-amd64"},
{"reference": "linux-headers-6.12.86+deb13-arm64"},
{"reference": "linux-headers-6.12.86+deb13-arm64-16k"},
{"reference": "linux-headers-6.12.86+deb13-armmp"},
{"reference": "linux-headers-6.12.86+deb13-armmp-lpae"},
{"reference": "linux-headers-6.12.86+deb13-cloud-amd64"},
{"reference": "linux-headers-6.12.86+deb13-cloud-arm64"},
{"reference": "linux-headers-6.12.86+deb13-common"},
{"reference": "linux-headers-6.12.86+deb13-common-rt"},
{"reference": "linux-headers-6.12.86+deb13-loong64"},
{"reference": "linux-headers-6.12.86+deb13-loongson-3"},
{"reference": "linux-headers-6.12.86+deb13-m68k"},
{"reference": "linux-headers-6.12.86+deb13-mips32r2eb"},
{"reference": "linux-headers-6.12.86+deb13-mips32r2el"},
{"reference": "linux-headers-6.12.86+deb13-mips64r2eb"},
{"reference": "linux-headers-6.12.86+deb13-mips64r2el"}
]
}
]
}
};
var distro_constraints_values = linux_unpatched::get_distro_constraints(distro_constraints_arr:distro_constraints_array);
if (empty_or_null(distro_constraints_values)) audit(AUDIT_HOST_NOT, 'affected');
var report = linux_unpatched::check_unpatched_constraints(distro_constraints_values:distro_constraints_values);
if (!empty_or_null(report))
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : report
);
exit(0);
}
else
{
audit(AUDIT_HOST_NOT, 'affected');
}
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
25 Jun 2026 00:00Current
5.9Medium risk
Vulners AI Score5.9