CVE-2026-53336 PUBLISHED

nvmem: layouts: onie-tlv: fix hang on unknown types

Assigner: Linux
Reserved: 09.06.2026 Published: 01.07.2026 Updated: 01.07.2026

In the Linux kernel, the following vulnerability has been resolved:

nvmem: layouts: onie-tlv: fix hang on unknown types

The EEPROM on my board has a vendor specific entry of type 0x41. When stumbling upon that, this driver hangs in an endless loop.

Fix it by keep incrementing the offset on unknown entries, so the loop will eventually stop.

Product Status

Vendor Linux
Product Linux
Versions Default: unaffected
  • affected from d3c0d12f6474216bf386101e2449cc73e5c5b61d to 033d498b0f473c6456be5f885be172024ad84972 (excl.)
  • affected from d3c0d12f6474216bf386101e2449cc73e5c5b61d to fd47edeabadfaa75422009dc5894e92c4c697517 (excl.)
  • affected from d3c0d12f6474216bf386101e2449cc73e5c5b61d to 4a4d21f531ccf5bb333d99b620e0d66551f3652c (excl.)
  • affected from d3c0d12f6474216bf386101e2449cc73e5c5b61d to 4f27eb01619c36cc8e3ce9a2a9af97f145f5d1c6 (excl.)
  • affected from d3c0d12f6474216bf386101e2449cc73e5c5b61d to ea41020b9018e31c2ea7e9d89021e3e6d7470883 (excl.)
Vendor Linux
Product Linux
Versions Default: affected
  • Version 6.4 is affected
  • unaffected from 0 to 6.4 (excl.)
  • unaffected from 6.6.143 to 6.6.* (incl.)
  • unaffected from 6.12.94 to 6.12.* (incl.)
  • unaffected from 6.18.36 to 6.18.* (incl.)
  • unaffected from 7.0.13 to 7.0.* (incl.)
  • unaffected from 7.1 to * (incl.)

References