{"api_version":"1","generated_at":"2026-07-04T18:18:59+00:00","cve":"CVE-2026-53326","urls":{"html":"https://cve.report/CVE-2026-53326","api":"https://cve.report/api/cve/CVE-2026-53326.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2026-53326","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2026-53326"},"summary":{"title":"debugobjects: Don't call fill_pool() in early boot hardirq context","description":"In the Linux kernel, the following vulnerability has been resolved:\n\ndebugobjects: Don't call fill_pool() in early boot hardirq context\n\nWhen booting a debug PREEMPT_RT kernel on an ARM64 system, a \"inconsistent\n{HARDIRQ-ON-W} -> {IN-HARDIRQ-W} usage\" lockdep warning message was\nreported to the console.\n\nDuring early boot, interrupts are enabled before the scheduler is\nenabled. In this window (before SYSTEM_SCHEDULING is set) interrupts can\nfire and in the hard interrupt context handler attempt to fill the pool\n\nThis can lead to a deadlock when the interrupt occurred when the interrupt\nhits a region which holds a lock that is required to be taken in the\nallocation path.\n\nAdd a new can_fill_pool() helper and reorder the exception rule and forbid\nthis scenario by excluding allocations from hard interrupt context.","state":"PUBLISHED","assigner":"Linux","published_at":"2026-07-01 14:16:40","updated_at":"2026-07-04 12:17:00"},"problem_types":[],"metrics":[],"references":[{"url":"https://git.kernel.org/stable/c/27335c50014102e9077b784ebd314954286afcab","name":"https://git.kernel.org/stable/c/27335c50014102e9077b784ebd314954286afcab","refsource":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://git.kernel.org/stable/c/44b8b03a9fb5c575548fc72c674653d6baba142a","name":"https://git.kernel.org/stable/c/44b8b03a9fb5c575548fc72c674653d6baba142a","refsource":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://git.kernel.org/stable/c/0d046ae106255cba5eb83b23f78ee93f3620247d","name":"https://git.kernel.org/stable/c/0d046ae106255cba5eb83b23f78ee93f3620247d","refsource":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://git.kernel.org/stable/c/7bc71bdb1c1526c7f02a6adab324394ff1327b0a","name":"https://git.kernel.org/stable/c/7bc71bdb1c1526c7f02a6adab324394ff1327b0a","refsource":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://git.kernel.org/stable/c/5d95f6b267f3d7fe54f42a3b224bb4a3d3990b41","name":"https://git.kernel.org/stable/c/5d95f6b267f3d7fe54f42a3b224bb4a3d3990b41","refsource":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://git.kernel.org/stable/c/3cc90ea0dd0fb1f8db577dcdc027fc46c06049f6","name":"https://git.kernel.org/stable/c/3cc90ea0dd0fb1f8db577dcdc027fc46c06049f6","refsource":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.cve.org/CVERecord?id=CVE-2026-53326","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2026-53326","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[{"source":"CNA","vendor":"Linux","product":"Linux","version":"affected 13abb2b11ac3b6cb89822f152e770081893e4bc3 3cc90ea0dd0fb1f8db577dcdc027fc46c06049f6 git","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"affected 0d2a64411b0974a469ff56e62441055147e5a194 5d95f6b267f3d7fe54f42a3b224bb4a3d3990b41 git","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"affected c93859a52b0d6953cdaa17fd7fb46a6871b015cf 27335c50014102e9077b784ebd314954286afcab git","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"affected a460935022f512e167b4c5d4c12d85f89ba6aabd 44b8b03a9fb5c575548fc72c674653d6baba142a git","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"affected 06e0ae988f6e3499785c407429953ade19c1096b 7bc71bdb1c1526c7f02a6adab324394ff1327b0a git","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"affected 06e0ae988f6e3499785c407429953ade19c1096b 0d046ae106255cba5eb83b23f78ee93f3620247d git","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"affected 6.19","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"unaffected 6.19 semver","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"unaffected 7.0.13 7.0.* semver","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"unaffected 7.1 * original_commit_for_fix","platforms":[]}],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[],"vendor_comments":[],"enrichments":{"kev":null,"epss":{"cve_year":"2026","cve_id":"53326","cve":"CVE-2026-53326","epss":"0.001660000","percentile":"0.061370000","score_date":"2026-07-03","updated_at":"2026-07-04 00:02:18"},"legacy_qids":[]},"source_records":{"cve_program":{"containers":{"cna":{"affected":[{"defaultStatus":"unaffected","product":"Linux","programFiles":["lib/debugobjects.c"],"repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","vendor":"Linux","versions":[{"lessThan":"3cc90ea0dd0fb1f8db577dcdc027fc46c06049f6","status":"affected","version":"13abb2b11ac3b6cb89822f152e770081893e4bc3","versionType":"git"},{"lessThan":"5d95f6b267f3d7fe54f42a3b224bb4a3d3990b41","status":"affected","version":"0d2a64411b0974a469ff56e62441055147e5a194","versionType":"git"},{"lessThan":"27335c50014102e9077b784ebd314954286afcab","status":"affected","version":"c93859a52b0d6953cdaa17fd7fb46a6871b015cf","versionType":"git"},{"lessThan":"44b8b03a9fb5c575548fc72c674653d6baba142a","status":"affected","version":"a460935022f512e167b4c5d4c12d85f89ba6aabd","versionType":"git"},{"lessThan":"7bc71bdb1c1526c7f02a6adab324394ff1327b0a","status":"affected","version":"06e0ae988f6e3499785c407429953ade19c1096b","versionType":"git"},{"lessThan":"0d046ae106255cba5eb83b23f78ee93f3620247d","status":"affected","version":"06e0ae988f6e3499785c407429953ade19c1096b","versionType":"git"}]},{"defaultStatus":"affected","product":"Linux","programFiles":["lib/debugobjects.c"],"repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","vendor":"Linux","versions":[{"status":"affected","version":"6.19"},{"lessThan":"6.19","status":"unaffected","version":"0","versionType":"semver"},{"lessThanOrEqual":"7.0.*","status":"unaffected","version":"7.0.13","versionType":"semver"},{"lessThanOrEqual":"*","status":"unaffected","version":"7.1","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"cpeMatch":[{"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionEndExcluding":"7.0.13","versionStartIncluding":"6.19","vulnerable":true},{"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionEndExcluding":"7.1","versionStartIncluding":"6.19","vulnerable":true}],"negate":false,"operator":"OR"}]}],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ndebugobjects: Don't call fill_pool() in early boot hardirq context\n\nWhen booting a debug PREEMPT_RT kernel on an ARM64 system, a \"inconsistent\n{HARDIRQ-ON-W} -> {IN-HARDIRQ-W} usage\" lockdep warning message was\nreported to the console.\n\nDuring early boot, interrupts are enabled before the scheduler is\nenabled. In this window (before SYSTEM_SCHEDULING is set) interrupts can\nfire and in the hard interrupt context handler attempt to fill the pool\n\nThis can lead to a deadlock when the interrupt occurred when the interrupt\nhits a region which holds a lock that is required to be taken in the\nallocation path.\n\nAdd a new can_fill_pool() helper and reorder the exception rule and forbid\nthis scenario by excluding allocations from hard interrupt context."}],"providerMetadata":{"dateUpdated":"2026-07-04T11:51:04.894Z","orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux"},"references":[{"url":"https://git.kernel.org/stable/c/3cc90ea0dd0fb1f8db577dcdc027fc46c06049f6"},{"url":"https://git.kernel.org/stable/c/5d95f6b267f3d7fe54f42a3b224bb4a3d3990b41"},{"url":"https://git.kernel.org/stable/c/27335c50014102e9077b784ebd314954286afcab"},{"url":"https://git.kernel.org/stable/c/44b8b03a9fb5c575548fc72c674653d6baba142a"},{"url":"https://git.kernel.org/stable/c/7bc71bdb1c1526c7f02a6adab324394ff1327b0a"},{"url":"https://git.kernel.org/stable/c/0d046ae106255cba5eb83b23f78ee93f3620247d"}],"title":"debugobjects: Don't call fill_pool() in early boot hardirq context","x_generator":{"engine":"bippy-1.2.0"}}},"cveMetadata":{"assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","assignerShortName":"Linux","cveId":"CVE-2026-53326","datePublished":"2026-07-01T13:32:12.924Z","dateReserved":"2026-06-09T07:44:35.398Z","dateUpdated":"2026-07-04T11:51:04.894Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.2"},"nvd":{"publishedDate":"2026-07-01 14:16:40","lastModifiedDate":"2026-07-04 12:17:00","problem_types":[],"metrics":[],"configurations":[]},"legacy_mitre":{"record":{"CveYear":"2026","CveId":"53326","Ordinal":"1","Title":"debugobjects: Don't call fill_pool() in early boot hardirq conte","CVE":"CVE-2026-53326","Year":"2026"},"notes":[{"CveYear":"2026","CveId":"53326","Ordinal":"1","NoteData":"In the Linux kernel, the following vulnerability has been resolved:\n\ndebugobjects: Don't call fill_pool() in early boot hardirq context\n\nWhen booting a debug PREEMPT_RT kernel on an ARM64 system, a \"inconsistent\n{HARDIRQ-ON-W} -> {IN-HARDIRQ-W} usage\" lockdep warning message was\nreported to the console.\n\nDuring early boot, interrupts are enabled before the scheduler is\nenabled. In this window (before SYSTEM_SCHEDULING is set) interrupts can\nfire and in the hard interrupt context handler attempt to fill the pool\n\nThis can lead to a deadlock when the interrupt occurred when the interrupt\nhits a region which holds a lock that is required to be taken in the\nallocation path.\n\nAdd a new can_fill_pool() helper and reorder the exception rule and forbid\nthis scenario by excluding allocations from hard interrupt context.","Type":"Description","Title":"debugobjects: Don't call fill_pool() in early boot hardirq conte"}]}}}