CVE-2021-0929

Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified) Android kernel (affected versions not specified)

Description: The issue is related to the use of previously freed memory in the ion dma buf end cpu access() function of the ion.c module. This could lead to memory corruption and potentially allow an attacker to cause a denial of service or escalate privileges locally without needing additional execution privileges. User interaction is not required for exploitation.

Recommendations: For Linux kernel: At the moment, there is no information about a newer version that contains a fix for this vulnerability. For Android kernel: Consider restricting access to the ion dma buf end cpu access() function as a temporary workaround until a patch is available.