CVE-2023-21055

Name of the Vulnerable Software and Affected Versions Android kernel

Description The issue is related to a possible use after free due to a race condition in the dit hal ioctl function of dit.c. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.

Recommendations For Android kernel, consider applying a patch or fix that addresses the use after free issue in the dit hal ioctl function to prevent local escalation of privilege. As a temporary workaround, restricting access to the dit hal ioctl function may help minimize the risk of exploitation.