CVE Catalog

CVE-2026-53101

Low risk· EPSS 6%
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.17%

6th percentile - higher than 6% of all known CVEs

Summary

A potential deadlock was found in the Linux kernel's mt7921 driver in the mt7921_roc_abort_sync function. The issue occurs when cancel_work_sync() is called while roc_work() holds dev->mt76.mutex, causing both threads to block indefinitely.

Risk Assessment

This deadlock can freeze the Wi-Fi driver, making the network interface unusable and potentially requiring a system reboot or module reload to recover.

Recommendation

Immediately update the Linux kernel to a version containing the fix for this deadlock in the mt7921 driver (commit in the wifi/mt76 branch).

Original NVD description (English source)

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7921: fix potential deadlock in mt7921_roc_abort_sync roc_abort_sync() can deadlock with roc_work(). roc_work() holds dev->mt76.mutex, while cancel_work_sync() waits for roc_work() to finish. If the caller already owns the same mutex, both sides block and no progress is possible. This deadlock can occur during station removal when mt76_sta_state() -> mt76_sta_remove() -> mt7921_mac_sta_remove() -> mt7921_roc_abort_sync() invokes cancel_work_sync() while roc_work() is still running and holding dev->mt76.mutex. This avoids the mutex deadlock and preserves exactly-once work ownership.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS