CVE-2026-23197

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel’s i2c imx subsystem. Specifically, when a block read operation returns an invalid length—either zero or exceeding the I2C SMBUS BLOCK MAX limit—the length handler sets the state to IMX I2C STATE FAILED. However, the i2c imx master isr() function unconditionally overwrites this error state with IMX I2C STATE READ CONTINUE, leading to an infinite read loop. This loop can cause buffer overruns and system crashes. The issue arises from a failure to preserve error states set by the length handler.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.