In the Linux kernel, the following vulnerability has been resolved:
can: vxcan: vxcan_xmit: fix use after free bug
After calling netifrxni(skb), dereferencing skb is unsafe. Especially, the canfdframe cfd which aliases skb memory is accessed after the netifrx_ni().