CVE-2017-8246

Name of the Vulnerable Software and Affected Versions Android (affected versions not specified)

Description The issue arises in the msm pcm playback close() function where prtd is assigned substream->runtime->private data. After prtd is freed, it is not sanitized and set to NULL, resulting in a dangling pointer. Other functions, such as msm pcm volume ctl put(), access the same memory with a NULL check, which could lead to the use of the freed memory.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.