CVE-2026-46208

medium Red Hat
EPSS Score
0.0%
Exploitation probability in 30 days
Top 95% most likely to be exploited
Published: May 28, 2026 (43 days ago)
Last Modified: May 28, 2026
Vendor: Red Hat
Source: REDHAT

Description

A flaw was found in the Linux kernel's `batman-adv` module. When a mesh interface is removed, the `batadv_mesh_free()` function does not properly stop `tp_meter` sessions. This oversight allows active `tp_meter` sender threads or late incoming packets to continue processing against a mesh instance that is in the process of shutting down. This can lead to system instability and a denial of service (DoS).

CWE

CWE-366

Affected Products

Red Hat Enterprise Linux 10Red Hat Enterprise Linux 6Red Hat Enterprise Linux 7Red Hat Enterprise Linux 8Red Hat Enterprise Linux 9

References