CVE-2023-21164

Name of the Vulnerable Software and Affected Versions devicemem server.c (affected versions not specified)

Description The issue is related to a use after free in the DevmemIntMapPMR function of devicemem server.c, which could lead to arbitrary code execution. This might result in local escalation of privilege in the kernel without requiring additional execution privileges. User interaction is not necessary for exploitation. The vulnerability is associated with the PowerVR GPU driver in Android and ChromeOS operating systems, allowing an attacker to execute arbitrary code and elevate their privileges.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.