VYPR
← All advisories
High severity7.8NVD Advisory· Published Dec 5, 2017· Updated May 13, 2026

CVE-2017-11016

CVE-2017-11016

Description

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, when memory allocation fails while creating a calibration block in create_cal_block stale pointers are left uncleared.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

A use-after-free vulnerability in Android's WLAN driver leaves stale pointers when memory allocation fails during calibration block creation.

Vulnerability

In Android for MSM, Firefox OS for MSM, QRD Android, and all Android releases from CAF using the Linux kernel, a stale pointer is left uncleared when memory allocation fails while creating a calibration block in create_cal_block. This stale pointer can later be dereferenced, leading to a use-after-free condition. The vulnerability affects devices with security patch levels before 2017-12-05 [1].

Exploitation

An attacker needs local execution privileges (e.g., through an app) to trigger the vulnerable code path. The exploitation requires specific conditions where memory allocation fails during the calibration block creation, causing a stale pointer to remain. The attacker would then need to manipulate the freed memory to achieve code execution.

Impact

Successful exploitation could lead to arbitrary code execution within the context of the kernel, allowing the attacker to take control of the affected device. This would result in a complete compromise of confidentiality, integrity, and availability.

Mitigation

The vulnerability was fixed in Android security patch level 2017-12-05. Users should ensure their device is updated to this patch level or later through an over-the-air (OTA) update [1].

References
  1. Pixel / Nexus Security Bulletin—December 2017

AI Insight generated on May 22, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

4
  • Google/Android
    cpe:2.3:o:google:android:-:*:*:*:*:*:*:*
  • Qualcomm/QRD Androidllm-create
  • Qualcomm/MSMllm-fuzzy
  • Qualcomm, Inc./Android for MSM, Firefox OS for MSM, QRD Androidv5
    Range: All Android releases from CAF using the Linux kernel

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

News mentions

0

No linked articles in our index yet.