CVE-2026-53101

Source
https://cve.org/CVERecord?id=CVE-2026-53101
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-53101.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-53101
Downstream
Published
2026-06-24T16:30:37.871Z
Modified
2026-07-08T08:13:43.129935428Z
Summary
wifi: mt76: mt7921: fix potential deadlock in mt7921_roc_abort_sync
Details

In the Linux kernel, the following vulnerability has been resolved:

wifi: mt76: mt7921: fix potential deadlock in mt7921rocabort_sync

rocabortsync() can deadlock with rocwork(). rocwork() holds dev->mt76.mutex, while cancelworksync() waits for roc_work() to finish. If the caller already owns the same mutex, both sides block and no progress is possible.

This deadlock can occur during station removal when mt76stastate() -> mt76staremove() -> mt7921macstaremove() -> mt7921rocabortsync() invokes cancelworksync() while roc_work() is still running and holding dev->mt76.mutex.

This avoids the mutex deadlock and preserves exactly-once work ownership.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/53xxx/CVE-2026-53101.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
352d966126e66d825244f1185eb9f2d904c83dd4
Fixed
b4faaa617af3f4173e64169b0ec1af8f9c5bca10
Fixed
35180c772f5e11e2fa4d80d3dfd50906cb6d9646
Fixed
91e77840bf13de3add125060cf8b32ca24a52c8c
Fixed
d5059e52fd8bc624ec4255c9fa01a266513d126b

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-53101.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.9.0
Fixed
6.12.95
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.18.33
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
7.0.10

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-53101.json"