Critical Vulnerability Information Vulnerability Type: use-after-free Affected Components: xfrm interface, collect_md property Issue Description: - The property can only be set at device creation time; therefore, calling on certain interfaces should fail. - The existing check was performed only on the returned from , but did not account for interfaces, resulting in the validation never being executed. - Calling incorrectly places the special interface into . Since also exists in the pointer, this leads to a double-free when the network namespace is destroyed. Mitigation: - Modify the check to use from , which is available earlier, to prevent changes to interfaces. Relevant Code Snippet: Commit Information: - Author: Eyal Birger - Committer: Greg Kroah-Hartman - Commit Time: 2025-07-03 10:02:58 -0700 - Merge Time: 2025-08-01 09:51:24 +0100 - Commit ID: 69a31f7a81ffdd3812c442e09ff0be22960f1