In the Linux kernel, the following vulnerability has been resolved: batman-adv: avoid OGM aggregation when skb tailroom is insufficient When OGM aggregation state is toggled at runtime, an existing forwarded packet may have been allocated with only packet_len bytes, while a later packet can still be selected for aggregation. Appending in this case can hit skb_put overflow conditions. Reject aggregation when the target skb tailroom cannot accommodate the new packet. The caller then falls back to creating a new forward packet instead of appending.

A flaw was found in the batman-adv module of the Linux kernel. This vulnerability arises when the Optimized Global Messaging (OGM) aggregation state is dynamically altered, leading to insufficient buffer space (skb tailroom) for network packets. A remote attacker could exploit this condition by sending specially crafted network packets, potentially causing a memory corruption vulnerability that results in a system crash or denial of service. The system may become unstable or unresponsive.

Red Hat Enterprise Linux 10 Not affected kernel Red Hat Enterprise Linux 6 Not affected kernel Red Hat Enterprise Linux 7 Not affected kernel Red Hat Enterprise Linux 7 Not affected kernel-rt Red Hat Enterprise Linux 8 Not affected kernel Red Hat Enterprise Linux 8 Not affected kernel-rt Red Hat Enterprise Linux 9 Not affected kernel Red Hat Enterprise Linux 9 Not affected kernel-rt https://www.cve.org/CVERecord?id=CVE-2026-31683 https://nvd.nist.gov/vuln/detail/CVE-2026-31683 https://lore.kernel.org/linux-cve-announce/2026042545-CVE-2026-31683-b833@gregkh/T