CVE-2017-11005

Name of the Vulnerable Software and Affected Versions Android for MSM versions prior to the fixed version QRD Android versions prior to the fixed version

Description The issue is related to a Use After Free condition in the Qualcomm IPC component of the Android operating system, which is caused by the use of memory after it has been freed. This can allow a remote attacker to execute arbitrary code. The condition can occur during a deinitialization path.

Recommendations For Android for MSM, update to a version that contains a fix for this issue. For QRD Android, update to a version that contains a fix for this issue. As a temporary workaround, consider restricting access to the vulnerable component until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.