CVE-2017-11073

Name of the Vulnerable Software and Affected Versions Android for MSM (affected versions not specified) Firefox OS for MSM (affected versions not specified) QRD Android (affected versions not specified)

Description The issue allows mapping memory via /proc/ath pktlog/cld to user space, potentially exposing sensitive information. This is related to the qcacld pktlog in Android for MSM, Firefox OS for MSM, and QRD Android, which use the Linux kernel.

Recommendations For Android for MSM, consider restricting access to the /proc/ath pktlog/cld interface until a fix is available. For Firefox OS for MSM, restrict access to the qcacld pktlog functionality to minimize the risk of exploitation. For QRD Android, avoid using the qcacld pktlog feature in sensitive operations until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.