CVE-2017-9722

Name of the Vulnerable Software and Affected Versions Android for MSM versions (affected versions not specified) Firefox OS for MSM versions (affected versions not specified) QRD Android versions (affected versions not specified)

Description A buffer overflow issue occurs when updating custom EDID (hdmi tx sysfs wta edid) due to a large edid size controlled by userspace.

Recommendations For Android for MSM, restrict access to the hdmi tx sysfs wta edid module to minimize the risk of exploitation until a patch is available. For Firefox OS for MSM, avoid using large edid size values in the affected API endpoint until the issue is resolved. For QRD Android, consider disabling the custom EDID update feature until a fix is provided. At the moment, there is no information about a newer version that contains a fix for this vulnerability.