CVE-2026-53098

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A use-after-free issue exists in the mt7915 WiFi driver. When an mt7915 PCI chip is detached, the mt7915 coredump unregister() function releases mt7915 crash data. However, a race condition can occur if the dump work item is still pending or executing, causing the mt7915 mac dump work() function to dereference the already freed crash data memory.

Recommendations Ensure that cancel work sync() is called within the mt7915 unregister device() function to synchronize and cancel any pending or executing dump work before the crash data is deallocated.