HIGHCVE-2026-43291Published Modified CNA Linux
CVE-2026-43291: net: nfc: nci: Fix parameter validation for packet data
In the Linux kernel, the following vulnerability has been resolved: net: nfc: nci: Fix parameter validation for packet data Since commit 9c328f54741b ("net: nfc: nci: Add parameter validation for packet data") communication with nci nfc chips is not working any more. The mentioned commit tries to fix access of uninitialized data, but failed to understand that in some cases the data packet is of variable length and can therefore not be compared to the maximum packet length given by the sizeof(struct).
Metrics
- CVSS v3.1
- 8.3
- Severity
- HIGH
- Fixed in
- 0
- Affected Products
- 2
Fix available
03b91160e9a91b5a2662875417dc42dc5b0bf03ea498fc5d0d650c77e87fcc73808d4f43240c218055.15.202571dcbeb8e635182bb825ae758399831805693c26.1.1656.6.1286.12.756.186.18.166.19.67.0a24a8a582da4426b2042e510a1080df84083b51dad058a4317db7fdb3f09caa6ed536d24a62ce6a0c692db813a7e3b7c3c17d6e9a3ad2a018bf1142bf5218426f765eee22e178df9c126d974792fb6a5
Affected packages
- Linux / Linux< a24a8a582da4426b2042e510a1080df84083b51d (from 8fcc7315a10a84264e55bb65ede10f0af20a983f) · < f5218426f765eee22e178df9c126d974792fb6a5 (from bfdda0123dde406dbff62e7e9136037e97998a15) · < ad058a4317db7fdb3f09caa6ed536d24a62ce6a0 (from 0ba68bea1e356f466ad29449938bea12f5f3711f) · < 3b91160e9a91b5a2662875417dc42dc5b0bf03ea (from 74837bca0748763a77f77db47a0bdbe63b347628) · < c692db813a7e3b7c3c17d6e9a3ad2a018bf1142b (from 9c328f54741bd5465ca1dc717c84c04242fac2e1) · < 498fc5d0d650c77e87fcc73808d4f43240c21805 (from 9c328f54741bd5465ca1dc717c84c04242fac2e1)
- Linux / Linux6.18Fixed in 0, 5.15.202, 6.1.165, 6.6.128, 6.12.75, 6.18.16, 6.19.6, 7.0
CVSS Vector
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H