PT-2026-44321 · Linux · Linux Kernel
CVE-2026-46198
·
Published
2026-05-28
·
Updated
2026-06-10
CVSS v3.1
8.8
High
| Vector | AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel (affected versions not specified)
Description
An integer overflow exists in the
batadv iv ogm send to if function within the batman-adv module. The issue occurs because the size check in batadv iv ogm aggr packet uses the int type, while the buff pos variable uses the s16 type. This discrepancy can lead to an out-of-bound read, which occurs when a program reads data past the end of the intended buffer.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Integer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Linux Kernel