Vulnerability Database

321,593

Total vulnerabilities in the database

CVE-2025-39839

In the Linux kernel, the following vulnerability has been resolved:

batman-adv: fix OOB read/write in network-coding decode

batadv_nc_skb_decode_packet() trusts coded_len and checks only against skb->len. XOR starts at sizeof(struct batadv_unicast_packet), reducing payload headroom, and the source skb length is not verified, allowing an out-of-bounds read and a small out-of-bounds write.

Validate that coded_len fits within the payload area of both destination and source sk_buffs before XORing.

  • Published: Sep 19, 2025
  • Updated: Jan 21, 2026
  • CVE: CVE-2025-39839
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 7.1
  • AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

CWEs:

Software From Fixed in
linux / linux_kernel 3.10 5.4.299
linux / linux_kernel 5.5 5.10.243
linux / linux_kernel 5.11 5.15.192
linux / linux_kernel 5.16 6.1.151
linux / linux_kernel 6.2 6.6.105
linux / linux_kernel 6.7 6.12.46
linux / linux_kernel 6.13 6.16.6
linux / linux_kernel 6.17-rc1 6.17-rc1.x
linux / linux_kernel 6.17-rc2 6.17-rc2.x
linux / linux_kernel 6.17-rc3 6.17-rc3.x
linux / linux_kernel 6.17-rc4 6.17-rc4.x
debian / debian_linux 11.0 11.0.x