GHSA-vhcc-wfm4-93wwunknown
In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7921: fix...
🔗 CVE IDs covered (1)
📋 Description
In the Linux kernel, the following vulnerability has been resolved:
wifi: mt76: mt7921: fix potential deadlock in mt7921_roc_abort_sync
roc_abort_sync() can deadlock with roc_work(). roc_work() holds dev->mt76.mutex, while cancel_work_sync() waits for roc_work() to finish. If the caller already owns the same mutex, both sides block and no progress is possible.
This deadlock can occur during station removal when mt76_sta_state() -> mt76_sta_remove() -> mt7921_mac_sta_remove() -> mt7921_roc_abort_sync() invokes cancel_work_sync() while roc_work() is still running and holding dev->mt76.mutex.
This avoids the mutex deadlock and preserves exactly-once work ownership.
🔗 References (5)
- https://nvd.nist.gov/vuln/detail/CVE-2026-53101
- https://git.kernel.org/stable/c/35180c772f5e11e2fa4d80d3dfd50906cb6d9646
- https://git.kernel.org/stable/c/91e77840bf13de3add125060cf8b32ca24a52c8c
- https://git.kernel.org/stable/c/d5059e52fd8bc624ec4255c9fa01a266513d126b
- https://github.com/advisories/GHSA-vhcc-wfm4-93ww