CVE-2026-52913

In the Linux kernel, the following vulnerability has been resolved:

batman-adv: v: stop OGMv2 on disabled interface

When a batadv hard iface is disabled, its mesh iface pointer is set to NULL. However, batadv v ogm send meshif() may still dispatch OGMs via batadv v ogm queue on if() for interfaces that have since lost their mesh iface association. This results in a NULL pointer dereference when batadv v ogm queue on if() unconditionally calls netdev priv() on the now NULL hard iface->mesh iface to retrieve the batadv priv.

It is necessary to ensure that the batadv v ogm queue on if() checks that it is using the same mesh iface for which batadv v ogm send meshif() was called.