CVE-2017-14917

Name of the Vulnerable Software and Affected Versions Android for MSM versions (affected versions not specified) QRD Android versions (affected versions not specified) Firefox OS for MSM versions (affected versions not specified) All Android releases from CAF using the Linux kernel versions (affected versions not specified)

Description The issue is related to the message passing interface, where buffer sizes are not properly validated. This could allow a remote attacker to execute arbitrary code.

Recommendations For Android for MSM, consider implementing input validation for buffer sizes in the message passing interface until a patch is available. For QRD Android, restrict access to the message passing interface to minimize the risk of exploitation. For Firefox OS for MSM, avoid using the vulnerable message passing interface until the issue is resolved. For all Android releases from CAF using the Linux kernel, as a temporary workaround, consider disabling the vulnerable parts of the message passing interface until a patch is available.