CVE-2026-53100

ANALYSIS PENDING

wifi: mt76: fix deadlock in remain-on-channel

Title source: cna
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: fix deadlock in remain-on-channel mt76_remain_on_channel() and mt76_roc_complete() call mt76_set_channel() while already holding dev->mutex. Since mt76_set_channel() also acquires dev->mutex, this results in a deadlock. Use __mt76_set_channel() instead of mt76_set_channel(). Add cancel_delayed_work_sync() for mac_work before acquiring the mutex in mt76_remain_on_channel() to prevent a secondary deadlock with the mac_work workqueue.

Scores

EPSS 0.0017
EPSS Percentile 6.2%

Details

Status published
Products (10)
linux/Kernel 6.14.0 - 6.18.33linux
linux/Kernel 6.19.0 - 7.0.10linux
Linux/Linux < 6.14
Linux/Linux 6.14
Linux/Linux 6.18.33 - 6.18.*
Linux/Linux 7.0.10 - 7.0.*
Linux/Linux 7.1
Linux/Linux a8f424c1287cc79a06c21816658feea87dfcb83f - 5fc8c5d45e44575dda9fcabdc2aac4ad97baf0cd
Linux/Linux a8f424c1287cc79a06c21816658feea87dfcb83f - 6939b97ddad3cf3dfbb3b5a0a12ef79cb886747e
Linux/Linux a8f424c1287cc79a06c21816658feea87dfcb83f - 7a89c245d203aa0ed5ff2d68ac05b48b2ef9fa3f
Published Jun 24, 2026
Tracked Since Jun 24, 2026