A flaw was found in the Linux kernel’s Kernel-based virtual machine (KVM) subsystem. A bug in the code destroys devices attached to I/O buses before the bus can be nullified. This issue causes use-after-free scenarios as readers may still reference the devices on their bus version.