Use-After-Free Vulnerability in Linux Kernel NFC Raw Socket
CVE-2026-23372

7.8HIGH

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 25 March 2026

What is CVE-2026-23372?

In the Linux kernel's NFC subsystem, a vulnerability exists related to the raw socket functionality. The issue arises in the 'rawsock_release()' function, where pending transmission work can remain active even when the socket is being torn down. If a process is killed unexpectedly, as might happen with a SIGKILL signal, this can lead to a race condition between the ongoing work and the cleanup processes, potentially resulting in use-after-free scenarios or memory leaks. The vulnerability necessitates careful synchronization to ensure all queued operations are purged and pending work is canceled before the socket is finalized.

Affected Version(s)

Linux 23b7869c0fd08d73c9f83a2db88a13312d6198bb < 3ae592ed91bb4b6b51df256b51045c13d2656049

Linux 23b7869c0fd08d73c9f83a2db88a13312d6198bb < 722a28b635ec281bb08a23885223526d8e7d6526

Linux 23b7869c0fd08d73c9f83a2db88a13312d6198bb < 78141b8832e16d80d09cbefb4258612db0777a24

References

https://git.kernel.org/stable/c/3ae592ed91bb4b6b51df256b5...

https://git.kernel.org/stable/c/722a28b635ec281bb08a23885...

https://git.kernel.org/stable/c/78141b8832e16d80d09cbefb4...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 25, 2026
Vulnerability Reserved
Jan 13, 2026

CVE-2026-23372 Data

JSON