CVE-2026-52919

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description An issue exists in the batman-adv module where the batadv tp sender shutdown() function unconditionally decrements the sending atomic counter. If this function is called multiple times through different paths, such as timeouts, user cancellations, or normal completion, the counter can underflow to -1. Because the sender logic interprets any non-zero value as an indication that sending is still in progress, a negative value causes the sender kthread to loop indefinitely. This results in a use-after-free condition when the interface is removed while the zombie thread remains active.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.