CVE-2026-52934

medium Red Hat
EPSS Score
0.2%
Exploitation probability in 30 days
Top 94% most likely to be exploited
Published: June 24, 2026 (15 days ago)
Last Modified: June 24, 2026
Vendor: Red Hat
Source: REDHAT

Description

A flaw was found in the Linux kernel's batman-adv (Better Approach To Mobile Ad-hoc Networking - Advanced) module. An integer overflow vulnerability in the TVLV (Type-Length-Value) packet processing can lead to an undersized memory allocation. This allows a subsequent operation to write beyond the intended buffer, causing kernel memory corruption. This issue could potentially be exploited by an attacker to achieve a denial of service or, in some cases, arbitrary code execution.

CWE

CWE-190

Affected Products

Red Hat Enterprise Linux 10Red Hat Enterprise Linux 6Red Hat Enterprise Linux 7Red Hat Enterprise Linux 8Red Hat Enterprise Linux 9

References