CVE-2021-39801

Name of the Vulnerable Software and Affected Versions Android kernel versions (affected versions not specified)

Description The issue is related to a possible use after free due to improper locking in the ion ioctl of ion-ioctl.c. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. The vulnerability is associated with the ION memory allocation subsystem of the Linux operating system kernel and could allow an attacker to elevate their privileges, affecting the confidentiality, integrity, and availability of protected information.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.