CVE-2026-46206
Received Received - Intake
batman-adv tp_meter Session Rejection Flaw

Publication date: 2026-05-28

Last updated on: 2026-05-28

Assigner: kernel.org

Description
In the Linux kernel, the following vulnerability has been resolved: batman-adv: reject new tp_meter sessions during teardown Prevent tp_meter from starting new sender or receiver sessions after mesh_state has left BATADV_MESH_ACTIVE.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-05-28
Last Modified
2026-05-28
Generated
2026-05-28
AI Q&A
2026-05-28
EPSS Evaluated
N/A
NVD
CVE-2026-46206
EUVD
EUVD-2026-32833
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
batman-adv batman-adv *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?

This vulnerability involves the batman-adv component of the Linux kernel. It occurs because new tp_meter sessions could be started during the teardown phase, even after the mesh_state has left the BATADV_MESH_ACTIVE state. The fix prevents tp_meter from initiating new sender or receiver sessions once the mesh network is no longer active.


How can this vulnerability impact me? :

If exploited, this vulnerability could allow tp_meter to start new sessions during an inappropriate state of the mesh network, potentially leading to unexpected behavior or resource misuse in the network mesh managed by batman-adv.


Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart