CVE-2026-46047

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A use-after-free issue exists in the QRTR nameservice driver during the remove() process. If a packet arrives after destroy workqueue() is called but before sock release(), the qrtr ns data ready() callback attempts to queue work, leading to a memory access violation. This occurs because the work structure is dereferenced after it has been destroyed.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.