Buffer Overflow Vulnerability in Linux Kernel Affecting IIO Chemical Drivers
CVE-2026-43476

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 13 May 2026

What is CVE-2026-43476?

In the Linux kernel, a vulnerability was identified in the IIO chemical drivers specifically within the sps30_i2c_read_meas() function. This vulnerability arises from an incorrect evaluation of buffer size, where 'sizeof(num)' unexpectedly returns a size of 8 bytes on 64-bit systems instead of the intended 4 bytes associated with the __be32 element type. The resolution involves utilizing 'sizeof(*meas)' to ensure the buffer matches the correct element type, addressing potential buffer overflow issues and improving the overall security of the IIO subsystem.

Affected Version(s)

Linux 8f3f130852785dac0759843835ca97c3bacc2b10 < 9aff2e9c2927ecd9652872a43a0725f101128104

Linux 8f3f130852785dac0759843835ca97c3bacc2b10 < 08881d82f94deaa51800360029908863e5c4c39d

Linux 8f3f130852785dac0759843835ca97c3bacc2b10

References

https://git.kernel.org/stable/c/9aff2e9c2927ecd9652872a43...

https://git.kernel.org/stable/c/08881d82f94deaa5180036002...

https://git.kernel.org/stable/c/dcdf1e92674efb6692f4ebe18...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 13, 2026
Vulnerability Reserved
May 1, 2026

CVE-2026-43476 Data

JSON