{"id":"CVE-2026-45968","summary":"cpuidle: Skip governor when only one idle state is available","details":"In the Linux kernel, the following vulnerability has been resolved:\n\ncpuidle: Skip governor when only one idle state is available\n\nOn certain platforms (PowerNV systems without a power-mgt DT node),\ncpuidle may register only a single idle state. In cases where that\nsingle state is a polling state (state 0), the ladder governor may\nincorrectly treat state 1 as the first usable state and pass an\nout-of-bounds index. This can lead to a NULL enter callback being\ninvoked, ultimately resulting in a system crash.\n\n[   13.342636] cpuidle-powernv : Only Snooze is available\n[   13.351854] Faulting instruction address: 0x00000000\n[   13.376489] NIP [0000000000000000] 0x0\n[   13.378351] LR  [c000000001e01974] cpuidle_enter_state+0x2c4/0x668\n\nFix this by adding a bail-out in cpuidle_select() that returns state 0\ndirectly when state_count \u003c= 1, bypassing the governor and keeping the\ntick running.","modified":"2026-05-29T04:02:52.144728379Z","published":"2026-05-27T12:18:27.247Z","database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/45xxx/CVE-2026-45968.json"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/4da2b897283c39980d6ae09dc1560fcd937879e5"},{"type":"WEB","url":"https://git.kernel.org/stable/c/5c577ac939bca486cb02069505cfe47a5312ce02"},{"type":"WEB","url":"https://git.kernel.org/stable/c/5d103a38e2ae96eca57fd17161bcd29bd4622d1c"},{"type":"WEB","url":"https://git.kernel.org/stable/c/63ae78336f40bcd9a44952a7c6bafb9c88a8effd"},{"type":"WEB","url":"https://git.kernel.org/stable/c/8f6833d919bae915ead6c599a53e81e19b32da52"},{"type":"WEB","url":"https://git.kernel.org/stable/c/a0724e40a58a0e323c59707edeae5b71d15800dc"},{"type":"WEB","url":"https://git.kernel.org/stable/c/a0f7e804edc82e513d1ccb7c95ed8b351522ec81"},{"type":"WEB","url":"https://git.kernel.org/stable/c/e5c9ffc6ae1bcdb1062527d611043681ac301aca"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/45xxx/CVE-2026-45968.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-45968"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"dc2251bf98c66db3f4e055b751968f0871037ae4"},{"fixed":"a0f7e804edc82e513d1ccb7c95ed8b351522ec81"},{"fixed":"5d103a38e2ae96eca57fd17161bcd29bd4622d1c"},{"fixed":"4da2b897283c39980d6ae09dc1560fcd937879e5"},{"fixed":"5c577ac939bca486cb02069505cfe47a5312ce02"},{"fixed":"8f6833d919bae915ead6c599a53e81e19b32da52"},{"fixed":"63ae78336f40bcd9a44952a7c6bafb9c88a8effd"},{"fixed":"a0724e40a58a0e323c59707edeae5b71d15800dc"},{"fixed":"e5c9ffc6ae1bcdb1062527d611043681ac301aca"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-45968.json"}},{"package":{"name":"Kernel","ecosystem":"Linux"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"4.14.0"},{"fixed":"5.10.252"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.11.0"},{"fixed":"5.15.202"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.16.0"},{"fixed":"6.1.165"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.2.0"},{"fixed":"6.6.128"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.7.0"},{"fixed":"6.12.75"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.13.0"},{"fixed":"6.18.14"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.19.0"},{"fixed":"6.19.4"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-45968.json"}}],"schema_version":"1.7.5"}