CVE-2017-18062

Name of the Vulnerable Software and Affected Versions: Android for MSM versions (affected versions not specified) Firefox OS for MSM versions (affected versions not specified) QRD Android versions (affected versions not specified)

Description: A potential buffer overflow issue exists when processing UTF events in the wma process utf event() function. This could lead to unspecified consequences.

Recommendations: For Android for MSM, consider restricting access to the wma process utf event() function until a patch is available. For Firefox OS for MSM, avoid using the vulnerable wma process utf event() function in processing UTF events until the issue is resolved. For QRD Android, as a temporary workaround, consider disabling the wma process utf event() function until a fix is provided. At the moment, there is no information about a newer version that contains a fix for this vulnerability.