Skip to content

NFC: Fix BusFault in Write to Initial Card#4362

Open
akrylysov wants to merge 1 commit intoflipperdevices:devfrom
akrylysov:nfc-write-initial-fix
Open

NFC: Fix BusFault in Write to Initial Card#4362
akrylysov wants to merge 1 commit intoflipperdevices:devfrom
akrylysov:nfc-write-initial-fix

Conversation

@akrylysov
Copy link

@akrylysov akrylysov commented Mar 22, 2026

What's new

Fixes #4108.

mode_ctx is a union where write_ctx.tag_block overlaps with dict_attack_ctx.nested_nonce.nonces. In "Write to Initial Card" it causes mf_classic_poller_free calling free() on a garbage pointer.

Verification

Built the firmware with the fix and tested with a key fob and an nfc file that caused a crash.

Checklist (For Reviewer)

  • PR has description of feature/bug or link to Confluence/Jira task
  • Description contains actions to verify feature/bugfix
  • I've built this code, uploaded it to the device and verified feature/bugfix

@akrylysov
NFC: Fix BusFault in Write to Initial Card
0009c8a 
mode_ctx is a union where write_ctx.tag_block overlaps with dict_attack_ctx.nested_nonce.nonces. In "Write to Initial Card" it causes mf_classic_poller_free calling free on a garbage pointer
This was referenced Mar 22, 2026
Open
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@DrZlo13 DrZlo13 Awaiting requested review from DrZlo13 DrZlo13 is a code owner

@hedger hedger Awaiting requested review from hedger hedger is a code owner

@gsurkov gsurkov Awaiting requested review from gsurkov gsurkov is a code owner

@gornekich gornekich Awaiting requested review from gornekich gornekich is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

NFC bus fault

1 participant

@akrylysov