CVE-2026-52931

NONE EPSS 32.3%
Published Jun 24, 20265d ago · Modified Jun 24, 20265d ago
Find Similar
Published Jun 24, 2026 5d ago
Last Modified Jun 24, 2026 5d ago

Description

In the Linux kernel, the following vulnerability has been resolved: batman-adv: tp_meter: avoid use of uninit sender vars batadv_tp_recv_ack() and batadv_tp_stop() are only valid for tp_vars in the BATADV_TP_SENDER role. When called with a BATADV_TP_RECEIVER role, it proceeds to read sender-only members that were never initialized, leading to undefined behavior. This can be triggered when a node that is currently acting as a receiver in an ongoing tp_meter session receives a malicious ACK packet. Guard against this by checking tp_vars->role immediately after the lookup and bailing out if it is not BATADV_TP_SENDER, before any of those members are accessed.

Threat Intelligence

EPSS Exploit Probability
32.3% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

References 8

  • git.kernel.org https://git.kernel.org/stable/c/0e388af04b3958b178a1b979527f93eb46ea1fee
  • git.kernel.org https://git.kernel.org/stable/c/1a21c055f66e78973712a4a1be2a554f1ee2e4f4
  • git.kernel.org https://git.kernel.org/stable/c/53f931e0146ae5bdab4cba302646827d06b3794b
  • git.kernel.org https://git.kernel.org/stable/c/6c65cf23d4c6170fcf5714c32aa64689718cb142
  • git.kernel.org https://git.kernel.org/stable/c/85397e48afe6be83ffca5ad3f4792296bfc81d3d
  • git.kernel.org https://git.kernel.org/stable/c/9884c9c02d3c90e9215db3c5128f59045d20ae91
  • git.kernel.org https://git.kernel.org/stable/c/dc2ae5fbd2dadc26735092f140b246841d969a11
  • git.kernel.org https://git.kernel.org/stable/c/ecdaa3e4d91040206afe21bc8a0d1198a0971ff3

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.