CVE-2026-43291

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description An issue exists in the net: nfc: nci component where parameter validation for packet data was incorrectly implemented. A previous attempt to prevent access to uninitialized data failed to account for variable-length data packets, which cannot be compared against a maximum packet length defined by the sizeof(struct). This resulted in a failure of communication with NCI NFC chips.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.