Linux · Linux Kernel · CVE-2023-21400
**Name of the Vulnerable Software and Affected Versions**
Linux kernel (affected versions not specified)
**Description**
The issue is related to a possible kernel memory corruption due to improper locking in multiple functions of io uring.c. This could lead to local escalation of privilege in the kernel with System execution privileges needed. User interaction is not needed for exploitation. The vulnerability can be exploited using the Dirty Pagetable technique, which enables arbitrary read/write access to physical memory. There have been reports of successful exploitation on Google Pixel 7 devices. The success rate of the exploit is approximately 30%, decided by the vulnerability due to the race condition.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.