CVE-2026-31726

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A race condition in the USB gadget UVC (USB Video Class) component can lead to a NULL pointer dereference. During power management transitions, the wait event interruptible timeout() function may be aborted early when the system freezes user space processes. This allows the unbind thread to nullify the cdev->gadget pointer. When the system resumes or aborts the suspend process and tasks restart, the V4L2 release path attempts to access this nullified pointer via the uvc function disconnect() function, resulting in a kernel panic.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.