CVE-2018-11299

Name of the Vulnerable Software and Affected Versions Android for MSM (affected versions not specified) Firefox OS for MSM (affected versions not specified) QRD Android (affected versions not specified)

Description The issue arises when the WLAN FW fails to correctly fill the vdev id in stats events, causing the WLAN host driver to access the interface array without proper bound checking. This can lead to invalid memory access, resulting in a kernel panic or page fault.

Recommendations For Android for MSM, update the WLAN host driver to include proper bound checking for the interface array. For Firefox OS for MSM, ensure the WLAN FW correctly fills the vdev id in stats events to prevent invalid memory access. For QRD Android, modify the WLAN host driver to handle cases where the vdev id is not correctly filled, preventing kernel panic or page fault. At the moment, there is no information about a newer version that contains a fix for this vulnerability.