CVE-2026-52922

Source
https://cve.org/CVERecord?id=CVE-2026-52922
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-52922.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-52922
Downstream
Published
2026-06-24T07:14:17.185Z
Modified
2026-07-10T03:54:03.563049219Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
batman-adv: dat: handle forward allocation error
Details

In the Linux kernel, the following vulnerability has been resolved:

batman-adv: dat: handle forward allocation error

batadvdatforwarddata() calls pskbcopyforclone() to duplicate an skb for each DHT candidate, but does not check the return value before passing it to batadvsendskbprepareunicast_4addr(). That function dereferences the skb unconditionally, so a failed allocation triggers a NULL pointer dereference.

Skip forwarding to the current DHT candidate on allocation failure.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/52xxx/CVE-2026-52922.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
785ea1144182c341b8b85b0f8180291839d176a8
Fixed
9bcebaedfb8479cb4affb23c7a0d000ca9a20e73
Fixed
2edb8aeb3cdda9d00ec4997252dc5bcd6f54d8ef
Fixed
ce0c381199402a2c58f4599f4f6ed100d872d0da
Fixed
866ac1d57040ed0b44ca732e3c66b3aa6b93011c
Fixed
4d420d9ee70a220a2cd95aa0dd2e15acad66a505
Fixed
9cceea8eeba710def2a5707ee00f00c74a9a1cac
Fixed
cf48e75fc4fe0d5cc7721c82d454221d01367b93
Fixed
2d8826a2d3657cea66fb0370f9e521575a673871

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-52922.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
3.8.0
Fixed
5.10.258
Type
ECOSYSTEM
Events
Introduced
5.11.0
Fixed
5.15.209
Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
6.1.175
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.142
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.92
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.18.34
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
7.0.11

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-52922.json"