{"id":"CVE-2026-23420","summary":"wifi: wlcore: Fix a locking bug","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: wlcore: Fix a locking bug\n\nMake sure that wl-\u003emutex is locked before it is unlocked. This has been\ndetected by the Clang thread-safety analyzer.","modified":"2026-06-04T09:14:29.999816274Z","published":"2026-04-03T13:24:29.681Z","related":["SUSE-SU-2026:21841-1","SUSE-SU-2026:21845-1","SUSE-SU-2026:21860-1","SUSE-SU-2026:21876-1","SUSE-SU-2026:21877-1","SUSE-SU-2026:21916-1","SUSE-SU-2026:21919-1","SUSE-SU-2026:2217-1","SUSE-SU-2026:2238-1","openSUSE-SU-2026:20826-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/23xxx/CVE-2026-23420.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/1a1c28a08d74716f3f8e3a21c86b30d0ff13521a"},{"type":"WEB","url":"https://git.kernel.org/stable/c/4ae8faf31b24c78653f4433298ee52813a56967a"},{"type":"WEB","url":"https://git.kernel.org/stable/c/5feeea59ed142e15c3284d0b1a364c6786bf3487"},{"type":"WEB","url":"https://git.kernel.org/stable/c/72c6df8f284b3a49812ce2ac136727ace70acc7c"},{"type":"WEB","url":"https://git.kernel.org/stable/c/7ab511003c5ae3bf5364d7699a2e3ab1db513680"},{"type":"WEB","url":"https://git.kernel.org/stable/c/aca4c9e4901b01b8b985993dc7df80bd1d1338bd"},{"type":"WEB","url":"https://git.kernel.org/stable/c/fc404390a386404cf9822d4091ccae1f61efcbcd"},{"type":"WEB","url":"https://git.kernel.org/stable/c/fcef983ad88832f3aa83491a174c345de57afbbd"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/23xxx/CVE-2026-23420.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-23420"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"45aa7f071b06c8481afed4c7b93e07c9584741e8"},{"fixed":"4ae8faf31b24c78653f4433298ee52813a56967a"},{"fixed":"fc404390a386404cf9822d4091ccae1f61efcbcd"},{"fixed":"7ab511003c5ae3bf5364d7699a2e3ab1db513680"},{"fixed":"aca4c9e4901b01b8b985993dc7df80bd1d1338bd"},{"fixed":"5feeea59ed142e15c3284d0b1a364c6786bf3487"},{"fixed":"fcef983ad88832f3aa83491a174c345de57afbbd"},{"fixed":"1a1c28a08d74716f3f8e3a21c86b30d0ff13521a"},{"fixed":"72c6df8f284b3a49812ce2ac136727ace70acc7c"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-23420.json"}},{"package":{"name":"Kernel","ecosystem":"Linux"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"4.19.0"},{"fixed":"5.10.253"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.11.0"},{"fixed":"5.15.203"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.16.0"},{"fixed":"6.1.167"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.2.0"},{"fixed":"6.6.130"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.7.0"},{"fixed":"6.12.77"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.13.0"},{"fixed":"6.18.17"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.19.0"},{"fixed":"6.19.7"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-23420.json"}}],"schema_version":"1.7.5"}