CVE-2026-45968

Severity CVSS v4.0:
Pending analysis
Type:
CWE-476 NULL Pointer Dereference
Publication date:
27/05/2026
Last modified:
16/06/2026

Description

In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> cpuidle: Skip governor when only one idle state is available<br /> <br /> On certain platforms (PowerNV systems without a power-mgt DT node),<br /> cpuidle may register only a single idle state. In cases where that<br /> single state is a polling state (state 0), the ladder governor may<br /> incorrectly treat state 1 as the first usable state and pass an<br /> out-of-bounds index. This can lead to a NULL enter callback being<br /> invoked, ultimately resulting in a system crash.<br /> <br /> [ 13.342636] cpuidle-powernv : Only Snooze is available<br /> [ 13.351854] Faulting instruction address: 0x00000000<br /> [ 13.376489] NIP [0000000000000000] 0x0<br /> [ 13.378351] LR [c000000001e01974] cpuidle_enter_state+0x2c4/0x668<br /> <br /> Fix this by adding a bail-out in cpuidle_select() that returns state 0<br /> directly when state_count

Vulnerable products and versions

CPE From Up to
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* 4.14 (including) 5.10.252 (excluding)
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* 5.11 (including) 5.15.202 (excluding)
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* 5.16 (including) 6.1.165 (excluding)
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* 6.2 (including) 6.6.128 (excluding)
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* 6.7 (including) 6.12.75 (excluding)
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* 6.13 (including) 6.18.14 (excluding)
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* 6.19 (including) 6.19.4 (excluding)