PT-2026-51706 · Linux · Linux
Published
2026-06-24
·
Updated
2026-06-24
·
CVE-2026-52913
None
No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
In the Linux kernel, the following vulnerability has been resolved:
batman-adv: v: stop OGMv2 on disabled interface
When a batadv hard iface is disabled, its mesh iface pointer is set to
NULL. However, batadv v ogm send meshif() may still dispatch OGMs via
batadv v ogm queue on if() for interfaces that have since lost their
mesh iface association. This results in a NULL pointer dereference when
batadv v ogm queue on if() unconditionally calls netdev priv() on the
now NULL hard iface->mesh iface to retrieve the batadv priv.
It is necessary to ensure that the batadv v ogm queue on if() checks that
it is using the same mesh iface for which batadv v ogm send meshif() was
called.
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Linux