PT-2026-44321 · Linux · Linux Kernel

CVE-2026-46198

·

Published

2026-05-28

·

Updated

2026-06-10

CVSS v3.1

8.8

High

VectorAV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description An integer overflow exists in the batadv iv ogm send to if function within the batman-adv module. The issue occurs because the size check in batadv iv ogm aggr packet uses the int type, while the buff pos variable uses the s16 type. This discrepancy can lead to an out-of-bound read, which occurs when a program reads data past the end of the intended buffer.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Integer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-46198
ECHO-76F4-7CF3-CF0C
OPENSUSE-SU-2026:10954-1

Affected Products

Linux Kernel