7.8
CVE-2026-46208
- EPSS 0.14%
- Veröffentlicht 28.05.2026 09:40:26
- Zuletzt bearbeitet 10.06.2026 19:17:59
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- CVE-Watchlists
- Unerledigt
batman-adv: stop tp_meter sessions during mesh teardown
In the Linux kernel, the following vulnerability has been resolved: batman-adv: stop tp_meter sessions during mesh teardown TP meter sessions remain linked on bat_priv->tp_list after the netlink request has already finished. When the mesh interface is removed, batadv_mesh_free() currently tears down the mesh without first draining these sessions. A running sender thread or a late incoming tp_meter packet can then keep processing against a mesh instance which is already shutting down. Synchronize tp_meter with the mesh lifetime by stopping all active sessions from batadv_mesh_free() and waiting for sender threads to exit before teardown continues.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 4.8 < 6.6.140
Linux ≫ Linux Kernel Version >= 6.7 < 6.12.90
Linux ≫ Linux Kernel Version >= 6.13 < 6.18.32
Linux ≫ Linux Kernel Version >= 6.19 < 7.0.9
Linux ≫ Linux Kernel Version7.1 Updaterc1
Linux ≫ Linux Kernel Version7.1 Updaterc2
Linux ≫ Linux Kernel Version7.1 Updaterc3
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.14% | 0.035 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
https://git.kernel.org/stable/c/79bc0eaeef2c5797317bf2da8e3159a74d62ec47
https://git.kernel.org/stable/c/26dfeee8db81354bfdade155f27f9e16510ad196
https://git.kernel.org/stable/c/03660dab86f93319178a24667f6998526dc4355d
https://git.kernel.org/stable/c/8634c1dbd73adb74d40533ebb7e914efb82e71fb
https://git.kernel.org/stable/c/3d3cf6a7314aca4df0a6dde28ce784a2a30d0166