CVE-2026-53103
UnknownSummary
A vulnerability has been identified in the Linux kernel that could lead to a deadlock in the mt7925_roc_abort_sync function. The issue occurred when this function attempted to cancel work that was already holding a mutex, leading to a blockage.
Risk Assessment
The deadlock could result in system unresponsiveness, affecting the availability of network services. Organizations may experience downtime in wireless network operations.
Recommendation
It is recommended to update the Linux kernel to a version where this vulnerability has been fixed to avoid potential availability issues.
Original NVD description (English source)
In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7925: fix potential deadlock in mt7925_roc_abort_sync roc_abort_sync() can deadlock with roc_work(). roc_work() holds dev->mt76.mutex, while cancel_work_sync() waits for roc_work() to finish. If the caller already owns the same mutex, both sides block and no progress is possible. This deadlock can occur during station removal when mt76_sta_state() -> mt76_sta_remove() -> mt7925_mac_sta_remove_link() -> mt7925_mac_link_sta_remove() -> mt7925_roc_abort_sync() invokes cancel_work_sync() while roc_work() is still running and holding dev->mt76.mutex. This avoids the mutex deadlock and preserves exactly-once work ownership.

