CVE-2026-23420

EUVD-2026-18637
In the Linux kernel, the following vulnerability has been resolved:

wifi: wlcore: Fix a locking bug

Make sure that wl->mutex is locked before it is unlocked. This has been
detected by the Clang thread-safety analyzer.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.5 MEDIUM
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 2%
Affected Products (NVD)
VendorProductVersion
linuxlinux_kernel
4.19.1 ≤
𝑥
< 5.10.253
linuxlinux_kernel
5.11 ≤
𝑥
< 5.15.203
linuxlinux_kernel
5.16 ≤
𝑥
< 6.1.167
linuxlinux_kernel
6.2 ≤
𝑥
< 6.6.130
linuxlinux_kernel
6.7 ≤
𝑥
< 6.12.77
linuxlinux_kernel
6.13 ≤
𝑥
< 6.18.17
linuxlinux_kernel
6.19 ≤
𝑥
< 6.19.7
linuxlinux_kernel
4.19
linuxlinux_kernel
7.0:rc1
linuxlinux_kernel
7.0:rc2
linuxlinux_kernel
7.0:rc3
linuxlinux_kernel
7.0:rc4
linuxlinux_kernel
7.0:rc5
linuxlinux_kernel
7.0:rc6
linuxlinux_kernel
7.0:rc7
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
linux
bookworm
6.1.170-3
fixed
bookworm (security)
6.1.172-1
fixed
bullseye
vulnerable
bullseye (security)
vulnerable
forky
7.0.7-1
fixed
sid
7.0.7-1
fixed
trixie
6.12.86-1
fixed
trixie (security)
6.12.88-1
fixed
linux-6.1
bullseye (security)
6.1.172-1~deb11u1
fixed
Common Weakness Enumeration
References
https://git.kernel.org/stable/c/1a1c28a08d74716f3f8e3a21c86b30d0ff13521a
https://git.kernel.org/stable/c/4ae8faf31b24c78653f4433298ee52813a56967a
https://git.kernel.org/stable/c/5feeea59ed142e15c3284d0b1a364c6786bf3487
https://git.kernel.org/stable/c/72c6df8f284b3a49812ce2ac136727ace70acc7c
https://git.kernel.org/stable/c/7ab511003c5ae3bf5364d7699a2e3ab1db513680
https://git.kernel.org/stable/c/aca4c9e4901b01b8b985993dc7df80bd1d1338bd
https://git.kernel.org/stable/c/fc404390a386404cf9822d4091ccae1f61efcbcd
https://git.kernel.org/stable/c/fcef983ad88832f3aa83491a174c345de57afbbd