Linux Kernel Vulnerability in SHDLC Timers and Context Management
CVE-2026-46267

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 3 June 2026

What is CVE-2026-46267?

A vulnerability exists in the Linux kernel related to SHDLC (Synchronous HDLC) functionality, where improper management of timers and context can lead to a Use After Free (UAF) condition. The function llc_shdlc_deinit() attempts to purge SHDLC skb queues and free the llc_shdlc structure while active timers and state machines may still be operating. This situation can create a scenario where timer callbacks execute concurrently with the cleanup process, potentially causing unexpected behavior or access to freed memory. To mitigate this risk, it is essential to stop all SHDLC timers and cancel scheduled work synchronously before proceeding with the cleanup of queues and context memory.

Affected Version(s)

Linux 4a61cd6687fc6348d08724676d34e38160d6cf9b

Linux 4a61cd6687fc6348d08724676d34e38160d6cf9b < 77eef9f2eef045c3c37a3df82d3e661afb866b98

References

https://git.kernel.org/stable/c/c60f41022eaad2a1dafecd3ae...

https://git.kernel.org/stable/c/a24a676329d40481b2331bfa1...

https://git.kernel.org/stable/c/77eef9f2eef045c3c37a3df82...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 3, 2026
Vulnerability Reserved
May 13, 2026

CVE-2026-46267 Data

JSON