CVE-2026-53101
Low risk· EPSS 6%Exploitation Probability (EPSS)
Low risk6th percentile - higher than 6% of all known CVEs
Summary
A potential deadlock was found in the Linux kernel's mt7921 driver in the mt7921_roc_abort_sync function. The issue occurs when cancel_work_sync() is called while roc_work() holds dev->mt76.mutex, causing both threads to block indefinitely.
Risk Assessment
This deadlock can freeze the Wi-Fi driver, making the network interface unusable and potentially requiring a system reboot or module reload to recover.
Recommendation
Immediately update the Linux kernel to a version containing the fix for this deadlock in the mt7921 driver (commit in the wifi/mt76 branch).
Original NVD description (English source)
In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7921: fix potential deadlock in mt7921_roc_abort_sync roc_abort_sync() can deadlock with roc_work(). roc_work() holds dev->mt76.mutex, while cancel_work_sync() waits for roc_work() to finish. If the caller already owns the same mutex, both sides block and no progress is possible. This deadlock can occur during station removal when mt76_sta_state() -> mt76_sta_remove() -> mt7921_mac_sta_remove() -> mt7921_roc_abort_sync() invokes cancel_work_sync() while roc_work() is still running and holding dev->mt76.mutex. This avoids the mutex deadlock and preserves exactly-once work ownership.

