Lars-Peter Clausen

Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified) Description: The issue is related to a use-after-free error in the Linux kernel's mma8452 driver. The driver directly assigns a trigger to the struct iio dev, and the IIO core calls `iio trigger put()` to drop the reference count by 1 when done using this trigger. Without the matching `iio trigger get()` in the driver, the reference count can reach 0 too early, causing the trigger to be freed while still in use and resulting in a use-after-free error. This can potentially allow an attacker to elevate privileges in the system. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.