Linux · Linux Kernel · CVE-2024-27052
**Name of the Vulnerable Software and Affected Versions**
Linux kernel (affected versions not specified)
**Description**
The issue is related to errors in memory usage after release in the `rtl8xxxu stop()` function. This can allow an attacker to elevate privileges in the system. The problem occurs because the workqueue might still be running when the driver is stopped, leading to a use-after-free condition. To avoid this, `cancel work sync()` is called in `rtl8xxxu stop()`.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.