In _splithugepmd of hugememory.c, there is a possible incorrectly mapped page due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
{ "fixes": [ "https://android.googlesource.com/kernel/common/+/c444eb564fb16645c172d550359cb3d75fe8a040" ], "spl": "2022-03-05", "types": [ "EoP" ], "severity": "High" }