Linux Kernel Vulnerability in NVMEM Driver Affecting Device Functionality
CVE-2026-53336

Currently unrated

Key Information:

Vendor

Linux

Status
Vendor
CVE Published:
1 July 2026

What is CVE-2026-53336?

A vulnerability in the NVMEM driver within the Linux kernel allows the driver to hang when encountering vendor-specific EEPROM entries of unknown types, notably type 0x41. This results in an endless loop during operation, causing disruptions in device functionality. A patch has been implemented to handle unknown entries more effectively by incrementing the offset, ensuring that the process will eventually terminate correctly and prevent system hang-ups.

Affected Version(s)

Linux d3c0d12f6474216bf386101e2449cc73e5c5b61d < 033d498b0f473c6456be5f885be172024ad84972

Linux d3c0d12f6474216bf386101e2449cc73e5c5b61d

Linux d3c0d12f6474216bf386101e2449cc73e5c5b61d < 4a4d21f531ccf5bb333d99b620e0d66551f3652c

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.