Impact
The vulnerability resides in the Linux kernel’s nvmem onie‑tlv layout handling code. When the driver parses an EEPROM entry of an unknown vendor‑specific type, the parsing loop never advances the offset, causing an endless iteration that stalls the driver and effectively renders the system unresponsive. This denial of service can cause kernel resource exhaustion or a system hang.
Affected Systems
All Linux kernel installations that include the onie‑tlv layout handler before the intervening patch are at risk. This includes the majority of distribution kernels that were built with the legacy loop logic and have not been updated to a kernel that incorporates the offset‑increment fix.
Risk and Exploitability
The likely attack vector is local: an adversary would need control over or the ability to modify the device’s EEPROM to insert an unknown type. In embedded systems where firmware can be altered the loop. The EPSS score is not available, and the vulnerability is not listed in CISA, implying limited evidence of public exploitation. Nonetheless, the high‑impact denial of service nature of an infinite loop warrants immediate attention when vulnerable firmware is present.
OpenCVE Enrichment