A vulnerability was found in the push-switch driver of Linux Kernel due to improper cleanup sequence in switch_drv_remove(). Originally, flush_work() was placed before timer_shutdown_sync(), allowing the worker to potentially be rescheduled in switch_timer() and causing a use-after-free bug.
Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.