CVE-2026-23432

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A use-after-free issue exists in the mshv map user memory() function within the Linux kernel. Specifically, in the error path of this function, directly calling vfree() on a memory region leaves the MMU notifier registered. Subsequently, when userspace unmaps the memory, the registered notifier triggers and attempts to access the already freed region, leading to a use-after-free condition and a potential kernel panic.

Recommendations Replace the call to vfree() with mshv partition put() to ensure the MMU notifier is unregistered before the memory region is freed.