CVE-2026-31622

A flaw was found in the Linux kernel's NFC (Near Field Communication) digital subsystem. A malicious peer device can exploit this vulnerability by sending specially crafted NFC-A anti-collision cascade responses. This allows the peer to exceed the intended cascade depth, leading to a heap overflow by writing past the allocated buffer for the nfc_target. This memory corruption can result in a denial of service or potentially arbitrary code execution.