CVE-2017-15845

Name of the Vulnerable Software and Affected Versions: Android for MSM (affected versions not specified) Firefox OS for MSM (affected versions not specified) QRD Android (affected versions not specified)

Description: The issue arises from an invalid input of firmware size, specifically a negative value, from user space. This can potentially lead to a memory leak or buffer overflow during the WLAN cal data store operation.

Recommendations: For Android for MSM, restrict access to the WLAN cal data store operation until a fix is available. For Firefox OS for MSM, avoid using negative firmware size values in user space to minimize the risk of exploitation. For QRD Android, consider disabling the WLAN cal data store operation temporarily as a workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.