Linux kernel batadv-adv backbone_gw reference leak on claim insert failure
CVE-2026-46231 Published on May 28, 2026
batman-adv: bla: put backbone reference on failed claim hash insert
In the Linux kernel, the following vulnerability has been resolved:
batman-adv: bla: put backbone reference on failed claim hash insert
When batadv_bla_add_claim() fails to insert a new claim into the hash, it
leaked a reference to the backbone_gw for which the claim was intended.
Call batadv_backbone_gw_put() on the error path to release the reference
and avoid leaking the backbone_gw object.
Products Associated with CVE-2026-46231
Want to know whenever a new CVE is published for Linux Kernel? stack.watch will email you.
Affected Versions
Linux:- Version 3db0decf1185357d6ab2256d0dede1ca9efda03d and below 65419eb4259a26a3cd3f56fa0e3b3c113bf8c256 is affected.
- Version 3db0decf1185357d6ab2256d0dede1ca9efda03d and below fd0ca034c1e71ca7613cde9dd892836b2c2831bd is affected.
- Version 3db0decf1185357d6ab2256d0dede1ca9efda03d and below 0baf4b659cdc7305cf685b5a5d60f9e3816ab5d0 is affected.
- Version 3db0decf1185357d6ab2256d0dede1ca9efda03d and below 7cccf4eb4f96d3c3af91a00b7a9caa652439542e is affected.
- Version 3db0decf1185357d6ab2256d0dede1ca9efda03d and below ba9d20ee9076dac32c371116bacbe72480eb356c is affected.
- Version 3fdd337ac0b277a1f40aa73b35283520f426e517 is affected.
- Version 485eedfabc2aefac8f09f98a82ba1c1e3e202a6d is affected.
- Version 3.16.39 and below 3.17 is affected.
- Version 4.4.217 and below 4.5 is affected.
- Version 4.7 is affected.
- Before 4.7 is unaffected.
- Version 6.6.140, <= 6.6.* is unaffected.
- Version 6.12.90, <= 6.12.* is unaffected.
- Version 6.18.32, <= 6.18.* is unaffected.
- Version 7.0.9, <= 7.0.* is unaffected.
- Version 7.1-rc4, <= * is unaffected.