CVE-2021-1042

Name of the Vulnerable Software and Affected Versions Android kernel

Description The issue is related to a possible disclosure of freed kernel heap memory due to a use after free in the dsi panel debugfs read cmdset function of dsi panel.c. This could lead to local information disclosure, requiring System execution privileges for exploitation. User interaction is not needed for exploitation.

Recommendations For Android kernel, consider applying a patch to fix the use after free issue in the dsi panel debugfs read cmdset function as a permanent solution. As a temporary workaround, restrict access to the dsi panel debugfs read cmdset function to minimize the risk of exploitation.