CVE-2026-53336

Summary

In the Linux kernel, the following vulnerability has been resolved:

nvmem: layouts: onie-tlv: fix hang on unknown types

The EEPROM on my board has a vendor specific entry of type 0x41. When stumbling upon that, this driver hangs in an endless loop.

Fix it by keep incrementing the offset on unknown entries, so the loop will eventually stop.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxd3c0d12f6474216bf386101e2449cc73e5c5b61d < 033d498b0f473c6456be5f885be172024ad84972affected
LinuxLinuxd3c0d12f6474216bf386101e2449cc73e5c5b61d < fd47edeabadfaa75422009dc5894e92c4c697517affected
LinuxLinuxd3c0d12f6474216bf386101e2449cc73e5c5b61d < 4a4d21f531ccf5bb333d99b620e0d66551f3652caffected
LinuxLinuxd3c0d12f6474216bf386101e2449cc73e5c5b61d < 4f27eb01619c36cc8e3ce9a2a9af97f145f5d1c6affected
LinuxLinuxd3c0d12f6474216bf386101e2449cc73e5c5b61d < ea41020b9018e31c2ea7e9d89021e3e6d7470883affected
LinuxLinux6.4affected
LinuxLinux0 < 6.4unaffected
LinuxLinux6.6.143 <= 6.6.*unaffected
LinuxLinux6.12.94 <= 6.12.*unaffected
LinuxLinux6.18.36 <= 6.18.*unaffected
LinuxLinux7.0.13 <= 7.0.*unaffected
LinuxLinux7.1 <= *unaffected

Weaknesses

References