CVE-2026-23372

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the NFC rawsock functionality of the Linux kernel. Specifically, the rawsock release() function does not properly cancel pending tx work and purge the write queue before socket teardown. This can lead to a race condition between tx work execution and socket/device teardown, potentially resulting in use-after-free or leaked references when a process is terminated. The tx work function, running on the system workqueue, calls nfc data exchange, which dereferences the NCI device. The vulnerability occurs when tx work is already running during socket and device teardown.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.