{"id":"CVE-2026-43032","summary":"NFC: pn533: bound the UART receive buffer","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nNFC: pn533: bound the UART receive buffer\n\npn532_receive_buf() appends every incoming byte to dev-\u003erecv_skb and\nonly resets the buffer after pn532_uart_rx_is_frame() recognizes a\ncomplete frame. A continuous stream of bytes without a valid PN532 frame\nheader therefore keeps growing the skb until skb_put_u8() hits the tail\nlimit.\n\nDrop the accumulated partial frame once the fixed receive buffer is full\nso malformed UART traffic cannot grow the skb past\nPN532_UART_SKB_BUFF_LEN.","modified":"2026-06-18T03:56:57.754913022Z","published":"2026-05-01T14:15:31.921Z","database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/43xxx/CVE-2026-43032.json"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/23e925183db26cd322597679669ad29d70ed2ada"},{"type":"WEB","url":"https://git.kernel.org/stable/c/2c1fadd221b21d8038acfe6a0f56291881d5ff76"},{"type":"WEB","url":"https://git.kernel.org/stable/c/30fe3f5f6494f827d812ff179f295a8e532709d6"},{"type":"WEB","url":"https://git.kernel.org/stable/c/3adca9be14bf36b927193f05f5aea35a1a90e913"},{"type":"WEB","url":"https://git.kernel.org/stable/c/8bedf1dd5640ac8997bff00bbefe241b438df397"},{"type":"WEB","url":"https://git.kernel.org/stable/c/ad2f60de5045bfb5d20ea468a97c8760c6a3a4f8"},{"type":"WEB","url":"https://git.kernel.org/stable/c/cf2ff10183204349edfd6b972e189375fc5f1fb0"},{"type":"WEB","url":"https://git.kernel.org/stable/c/f48ab6ee654ecc350434e4566bc785773f412b7e"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/43xxx/CVE-2026-43032.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-43032"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"c656aa4c27b17a8c70da223ed5ab42145800d6b5"},{"fixed":"8bedf1dd5640ac8997bff00bbefe241b438df397"},{"fixed":"23e925183db26cd322597679669ad29d70ed2ada"},{"fixed":"3adca9be14bf36b927193f05f5aea35a1a90e913"},{"fixed":"2c1fadd221b21d8038acfe6a0f56291881d5ff76"},{"fixed":"f48ab6ee654ecc350434e4566bc785773f412b7e"},{"fixed":"ad2f60de5045bfb5d20ea468a97c8760c6a3a4f8"},{"fixed":"cf2ff10183204349edfd6b972e189375fc5f1fb0"},{"fixed":"30fe3f5f6494f827d812ff179f295a8e532709d6"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-43032.json"}},{"package":{"name":"Kernel","ecosystem":"Linux"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"5.5.0"},{"fixed":"5.10.253"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.11.0"},{"fixed":"5.15.203"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.16.0"},{"fixed":"6.1.168"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.2.0"},{"fixed":"6.6.134"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.7.0"},{"fixed":"6.12.81"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.13.0"},{"fixed":"6.18.22"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.19.0"},{"fixed":"6.19.12"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-43032.json"}}],"schema_version":"1.7.5"}