CVE-2018-11891

Name of the Vulnerable Software and Affected Versions Android for MSM (affected versions not specified) Firefox OS for MSM (affected versions not specified) QRD Android (affected versions not specified)

Description The issue is related to a lack of check on the length of an array while accessing it, which can lead to an out of bound read in the WLAN HOST function. This affects Android releases using the Linux kernel.

Recommendations For Android for MSM, update to a version that includes the necessary checks for array length to prevent out of bound reads. For Firefox OS for MSM, apply configuration changes to restrict access to the WLAN HOST function until a fix is available. For QRD Android, consider disabling the WLAN HOST function temporarily as a mitigation measure until a patch is released. At the moment, there is no information about a newer version that contains a fix for this vulnerability.