CVE-2017-11019

Name of the Vulnerable Software and Affected Versions Android for MSM versions (affected versions not specified) Firefox OS for MSM versions (affected versions not specified) QRD Android versions (affected versions not specified)

Description The issue arises from a failure to close a file descriptor (fd) allocated during the get metadata process, despite the buffer allocated to the fd being freed. This results in a failure during the exit sequence.

Recommendations For Android for MSM, ensure proper closure of file descriptors after use to prevent resource leaks. For Firefox OS for MSM, implement a mechanism to close the fd allocated during get metadata to prevent failures during exit. For QRD Android, review and modify the exit sequence to handle unclosed file descriptors properly. At the moment, there is no information about a newer version that contains a fix for this vulnerability.