CVE-2026-46231

Summary

In the Linux kernel, the following vulnerability has been resolved:

batman-adv: bla: put backbone reference on failed claim hash insert

When batadv_bla_add_claim() fails to insert a new claim into the hash, it leaked a reference to the backbone_gw for which the claim was intended. Call batadv_backbone_gw_put() on the error path to release the reference and avoid leaking the backbone_gw object.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux3db0decf1185357d6ab2256d0dede1ca9efda03d < 6c8b68a7ed667a63aa603ba4d3a7088be143007eaffected
LinuxLinux3db0decf1185357d6ab2256d0dede1ca9efda03d < 769f413d374ff2b6ff6d8d8c37b4c1178e6cdf14affected
LinuxLinux3db0decf1185357d6ab2256d0dede1ca9efda03d < 2888c9a154123db0254ae4fb9bea570c7e1f2e06affected
LinuxLinux3db0decf1185357d6ab2256d0dede1ca9efda03d < 65419eb4259a26a3cd3f56fa0e3b3c113bf8c256affected
LinuxLinux3db0decf1185357d6ab2256d0dede1ca9efda03d < fd0ca034c1e71ca7613cde9dd892836b2c2831bdaffected
LinuxLinux3db0decf1185357d6ab2256d0dede1ca9efda03d < 0baf4b659cdc7305cf685b5a5d60f9e3816ab5d0affected
LinuxLinux3db0decf1185357d6ab2256d0dede1ca9efda03d < 7cccf4eb4f96d3c3af91a00b7a9caa652439542eaffected
LinuxLinux3db0decf1185357d6ab2256d0dede1ca9efda03d < ba9d20ee9076dac32c371116bacbe72480eb356caffected
LinuxLinux3fdd337ac0b277a1f40aa73b35283520f426e517affected
LinuxLinux485eedfabc2aefac8f09f98a82ba1c1e3e202a6daffected
LinuxLinux3.16.39 < 3.17affected
LinuxLinux4.4.217 < 4.5affected
LinuxLinux4.7affected
LinuxLinux0 < 4.7unaffected
LinuxLinux5.10.258 <= 5.10.*unaffected
LinuxLinux5.15.209 <= 5.15.*unaffected
LinuxLinux6.1.175 <= 6.1.*unaffected
LinuxLinux6.6.140 <= 6.6.*unaffected
LinuxLinux6.12.90 <= 6.12.*unaffected
LinuxLinux6.18.32 <= 6.18.*unaffected
LinuxLinux7.0.9 <= 7.0.*unaffected
LinuxLinux7.1 <= *unaffected

Weaknesses

References