Description
In the Linux kernel, the following vulnerability has been resolved:

ipmi:ssif: Clean up kthread on errors

If an error occurs after the ssif kthread is created, but before the
main IPMI code starts the ssif interface, the ssif kthread will not
be stopped.

So make sure the kthread is stopped on an error condition if it is
running.
Published: 2026-05-27
Score: 5.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The Linux kernel bug in the IPMI over SSIF subsystem creates an orphaned kernel thread when an error occurs between thread creation and interface initialization; the thread continues to run, consuming CPU time and memory until the error is fully handled, which can degrade system performance or exhaust resources. This constitutes a resource leak weakness identified as CWE‑772.

Affected Systems

All Linux kernel installations that include the legacy IPMI SSIF implementation are affected. The vendor is Linux and the product is the Linux kernel. No specific version numbers are supplied, but any kernel built from source before the commit that introduced the cleanup fix is vulnerable.

Risk and Exploitability

The CVSS score of 5.5 indicates moderate severity. The EPSS score of <1% shows a very low likelihood of exploitation, and the vulnerability is not listed in the CISA KEV catalog. Based on the description, it is inferred that the likely attack vector is a local kernel error triggered by malformed firmware or misconfigured drivers that cause the SSIF thread to start before cleanup, requiring privileged local access or kernel compromise to activate. No remote exploitation path is indicated.

Generated by OpenCVE AI on June 18, 2026 at 03:58 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update the Linux kernel to a release that incorporates the SSIF thread cleanup fix.
  • If an update cannot be performed immediately, blacklist or unload the ipmi_ssif kernel module to stop the thread from being created.
  • Monitor kernel logs (such as dmesg) and system performance metrics for signs of orphaned SSIF threads or abnormal resource consumption.

Generated by OpenCVE AI on June 18, 2026 at 03:58 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Debian DLA Debian DLA DLA-4664-1 linux security update
Debian DLA Debian DLA DLA-4665-1 linux security update
Debian DLA Debian DLA DLA-4671-1 linux-6.1 security update
Ubuntu USN Ubuntu USN USN-8488-1 Linux kernel vulnerabilities
Ubuntu USN Ubuntu USN USN-8489-1 Linux kernel (OEM) vulnerabilities
Ubuntu USN Ubuntu USN USN-8488-2 Linux kernel (Raspberry Pi) vulnerabilities
Ubuntu USN Ubuntu USN USN-8507-1 Linux kernel (NVIDIA) vulnerabilities
History

Fri, 19 Jun 2026 12:45:00 +0000


Tue, 16 Jun 2026 15:15:00 +0000

Type Values Removed Values Added
Weaknesses NVD-CWE-noinfo
Metrics cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}


Mon, 01 Jun 2026 17:00:00 +0000


Thu, 28 May 2026 03:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-400
CWE-458

Thu, 28 May 2026 00:15:00 +0000


Wed, 27 May 2026 22:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-400
CWE-458

Wed, 27 May 2026 14:15:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: ipmi:ssif: Clean up kthread on errors If an error occurs after the ssif kthread is created, but before the main IPMI code starts the ssif interface, the ssif kthread will not be stopped. So make sure the kthread is stopped on an error condition if it is running.
Title ipmi:ssif: Clean up kthread on errors
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Subscriptions

Linux Linux Kernel
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-06-19T11:59:07.730Z

Reserved: 2026-05-13T15:03:33.094Z

Link: CVE-2026-46044

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2026-05-27T14:17:23.853

Modified: 2026-06-17T10:52:57.350

Link: CVE-2026-46044

cve-icon Redhat

Severity :

Publid Date: 2026-05-27T00:00:00Z

Links: CVE-2026-46044 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-06-18T04:00:15Z

Weaknesses