A vulnerability described as critical has been identified in Linux Kernel up to 7.0.12 . The impacted element is the function sctp_stream_update of the component sctp . The manipulation of the argument out_curr results in use after free. This vulnerability is reported as CVE-2026-52924 . The attacker must have access to the local network to execute the attack. No exploit exists. Upgrading the affected component is recommended.