CVE-2026-43476

Summary

In the Linux kernel, the following vulnerability has been resolved:

iio: chemical: sps30_i2c: fix buffer size in sps30_i2c_read_meas()

sizeof(num) evaluates to sizeof(size_t) (8 bytes on 64-bit) instead of the intended __be32 element size (4 bytes). Use sizeof(*meas) to correctly match the buffer element type.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux8f3f130852785dac0759843835ca97c3bacc2b10 < 9aff2e9c2927ecd9652872a43a0725f101128104affected
LinuxLinux8f3f130852785dac0759843835ca97c3bacc2b10 < 08881d82f94deaa51800360029908863e5c4c39daffected
LinuxLinux8f3f130852785dac0759843835ca97c3bacc2b10 < dcdf1e92674efb6692f4ebe189e0aa9fde23a541affected
LinuxLinux8f3f130852785dac0759843835ca97c3bacc2b10 < 2a4d111a6a34afb8bb4f118009e7728ed2ec7e10affected
LinuxLinux8f3f130852785dac0759843835ca97c3bacc2b10 < 90e978ace598567e6e30de79805bddf37cf892acaffected
LinuxLinux8f3f130852785dac0759843835ca97c3bacc2b10 < 165f12b40901c6a7aca15796da239726ddcdc5adaffected
LinuxLinux8f3f130852785dac0759843835ca97c3bacc2b10 < 216345f98cae7fcc84f49728c67478ac00321c87affected
LinuxLinux5.14affected
LinuxLinux0 < 5.14unaffected
LinuxLinux5.15.203 <= 5.15.*unaffected
LinuxLinux6.1.167 <= 6.1.*unaffected
LinuxLinux6.6.130 <= 6.6.*unaffected
LinuxLinux6.12.78 <= 6.12.*unaffected
LinuxLinux6.18.19 <= 6.18.*unaffected
LinuxLinux6.19.9 <= 6.19.*unaffected
LinuxLinux7.0 <= *unaffected

Weaknesses

References