CVE-2026-31473

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A race condition exists in the media mc and v4l2 components where MEDIA REQUEST IOC REINIT can run concurrently with VIDIOC REQBUFS(0) queue teardown paths. This concurrency can cause request object cleanup to race against vb2 queue cancellation, potentially leading to use-after-free reports, which occurs when the system continues to use a memory address after it has been freed.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.