CVE-2026-52971

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A use-after-free issue exists in the get timestamp function of the ENA network driver. The problem occurs because the phc->active check and the assignment of the resp pointer were performed before acquiring the spinlock. If the ena com phc destroy() function executes between this check and the lock acquisition, it can set active to false, release the lock, free the DMA memory, and set virt addr to NULL. Consequently, the get timestamp path may dereference a NULL virt addr pointer.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.