Linux · Linux Kernel · CVE-2023-21255
**Name of the Vulnerable Software and Affected Versions**
Linux kernel (affected versions not specified)
**Description**
The issue is related to a memory corruption vulnerability due to a use after free in multiple functions of binder.c. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. The vulnerability is also associated with the incorrect determination of the size of the buffer being freed in the binder free buf() function of the drivers/android/binder driver.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.