CVE-2018-11995

Name of the Vulnerable Software and Affected Versions Android for MSM (affected versions not specified) Firefox OS for MSM (affected versions not specified) QRD Android (affected versions not specified)

Description The issue is related to a partition name-check variable not being reset for every iteration, potentially causing improper termination in the META image. This affects Android releases using the Linux kernel from CAF.

Recommendations For Android for MSM, update to a version that resets the partition name-check variable properly for every iteration. For Firefox OS for MSM, update to a version that resets the partition name-check variable properly for every iteration. For QRD Android, update to a version that resets the partition name-check variable properly for every iteration. As a temporary workaround, consider restricting access to the META image until a proper fix is applied.