{"id":"CVE-2022-50656","summary":"nfc: pn533: Clear nfc_target before being used","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nnfc: pn533: Clear nfc_target before being used\n\nFix a slab-out-of-bounds read that occurs in nla_put() called from\nnfc_genl_send_target() when target-\u003esensb_res_len, which is duplicated\nfrom an nfc_target in pn533, is too large as the nfc_target is not\nproperly initialized and retains garbage values. Clear nfc_targets with\nmemset() before they are used.\n\nFound by a modified version of syzkaller.\n\nBUG: KASAN: slab-out-of-bounds in nla_put\nCall Trace:\n memcpy\n nla_put\n nfc_genl_dump_targets\n genl_lock_dumpit\n netlink_dump\n __netlink_dump_start\n genl_family_rcv_msg_dumpit\n genl_rcv_msg\n netlink_rcv_skb\n genl_rcv\n netlink_unicast\n netlink_sendmsg\n sock_sendmsg\n ____sys_sendmsg\n ___sys_sendmsg\n __sys_sendmsg\n do_syscall_64","modified":"2026-04-02T08:28:40.633418Z","published":"2025-12-09T00:00:31.691Z","related":["SUSE-SU-2026:0263-1","SUSE-SU-2026:0316-1","SUSE-SU-2026:0317-1","SUSE-SU-2026:0411-1","SUSE-SU-2026:0617-1"],"database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/50xxx/CVE-2022-50656.json"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/61a7e15d55fae329a245535c3bac494e401005b8"},{"type":"WEB","url":"https://git.kernel.org/stable/c/755019e37815a66bb0a23893debbd3dd640ccbd3"},{"type":"WEB","url":"https://git.kernel.org/stable/c/8bddef54cbe9ede5ac7478f1e1e968fcfe7e6f03"},{"type":"WEB","url":"https://git.kernel.org/stable/c/9da4a0411f3455e3885831d0758bee3e3d565bbc"},{"type":"WEB","url":"https://git.kernel.org/stable/c/9f28157778ede0d4f183f7ab3b46995bb400abbe"},{"type":"WEB","url":"https://git.kernel.org/stable/c/aae9c24ebd901f482e6c88b6f9e0c80dc5b536d6"},{"type":"WEB","url":"https://git.kernel.org/stable/c/aea9e64dec2cc6cd742e07ecd4e6236fc76b389b"},{"type":"WEB","url":"https://git.kernel.org/stable/c/bef2f478513e7367ef3b05441f6afca981de29be"},{"type":"WEB","url":"https://git.kernel.org/stable/c/e491285b4d08884b622638be8e4961eb43b0af64"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/50xxx/CVE-2022-50656.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-50656"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"361f3cb7f9cfdb82c80926d0e7843c098c034545"},{"fixed":"9da4a0411f3455e3885831d0758bee3e3d565bbc"},{"fixed":"61a7e15d55fae329a245535c3bac494e401005b8"},{"fixed":"bef2f478513e7367ef3b05441f6afca981de29be"},{"fixed":"8bddef54cbe9ede5ac7478f1e1e968fcfe7e6f03"},{"fixed":"aea9e64dec2cc6cd742e07ecd4e6236fc76b389b"},{"fixed":"aae9c24ebd901f482e6c88b6f9e0c80dc5b536d6"},{"fixed":"755019e37815a66bb0a23893debbd3dd640ccbd3"},{"fixed":"e491285b4d08884b622638be8e4961eb43b0af64"},{"fixed":"9f28157778ede0d4f183f7ab3b46995bb400abbe"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-50656.json"}},{"package":{"name":"Kernel","ecosystem":"Linux"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"3.3.0"},{"fixed":"4.9.337"}]},{"type":"ECOSYSTEM","events":[{"introduced":"4.10.0"},{"fixed":"4.14.303"}]},{"type":"ECOSYSTEM","events":[{"introduced":"4.15.0"},{"fixed":"4.19.270"}]},{"type":"ECOSYSTEM","events":[{"introduced":"4.20.0"},{"fixed":"5.4.229"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.5.0"},{"fixed":"5.10.163"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.11.0"},{"fixed":"5.15.86"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.16.0"},{"fixed":"6.0.16"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.1.0"},{"fixed":"6.1.2"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-50656.json"}}],"schema_version":"1.7.5"}