CVE-2023-21071

Name of the Vulnerable Software and Affected Versions Android kernel

Description The issue is related to a possible out of bounds write in the dhd prot ioctcmplt process function of dhd msgbuf.c due to improper input validation. This could lead to local escalation of privilege, requiring System execution privileges. No user interaction is needed for exploitation.

Recommendations For Android kernel, apply the necessary patches or updates to fix the improper input validation issue in the dhd prot ioctcmplt process function. As a temporary workaround, consider restricting access to the affected function until a patch is available.