CVE-2026-31695

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A use-after-free issue exists in the virt wifi component of the Linux kernel. The problem occurs because SET NETDEV DEV(dev, &priv->lowerdev->dev) is executed for virt wifi net devices, but the unregistration of a virt wifi device in netdev run todo() can happen simultaneously with the device referenced by SET NETDEV DEV(). This can lead to a situation where the dev.parent field points to freed memory. When ethnl ops begin() calls pm runtime get sync(dev->dev.parent) during ethtool operations on a device being unregistered, it results in a use-after-free. A use-after-free is a memory corruption flaw where a program continues to use a pointer after it has been freed.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.