In binder_release_work of binder.c, there is a possible use-after-free due to improper locking. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation. References: https://source.android.com/security/bulletin/2020-10-01
Created kernel tracking bugs for this issue: Affects: fedora-all [bug 1935171]
External References: https://source.android.com/security/bulletin/2020-10-01
The android platform drivers are not enabled on Fedora.