CVE-2026-53107

ANALYSIS PENDING

wifi: libertas: don't kill URBs in interrupt context

Title source: cna
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: libertas: don't kill URBs in interrupt context Serialization for the TX path was enforced by calling usb_kill_urb()/usb_kill_anchored_urbs(), to prevent transmission before a previous URB was completed. usb_tx_block() can be called from interrupt context (e.g. in the HCD giveback path), so we can't always use it to kill in-flight URBs. Prevent sleeping during interrupt context by checking the tx_submitted anchor for existing URBs. We now return -EBUSY, to indicate there's a pending request.

Scores

EPSS 0.0015
EPSS Percentile 5.1%

Details

Status published
Products (23)
linux/Kernel < 6.18.33linux
linux/Kernel 6.19.0 - 7.0.10linux
Linux/Linux < 7.0
Linux/Linux 2902a9b4415a6bafc9b1e5dd360f065d757a0bb7
Linux/Linux 3308c7504e093b22e91a4468470309cee2e26b83 - 00c0317cebf44151df18fb647781f315268cdd98
Linux/Linux 498525d8358d6d20918787e59736d5b6a021e9fd
Linux/Linux 5.10.252 - 5.11
Linux/Linux 5.15.202 - 5.16
Linux/Linux 5bfb25495e391a1be0db94b15715174fa06b93a1
Linux/Linux 6.1.165 - 6.2
... and 13 more
Published Jun 24, 2026
Tracked Since Jun 24, 2026