Ye Zhang and Nicolas Wu discovered that the io_uring subsystem in the Linux kernel did not properly handle locking for rings with IOPOLL, leading to a
double-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code.
(CVE-2023-21400)
https://ubuntu.com/security/notices/USN-7234-4