1 page.title= Nexus 2015. 2 @jd:body 3 4 <!-- 5 Copyright 2016 The Android Open Source Project 6 7 Licensed under the Apache License, Version 2.0 (the "License"); 8 you may not use this file except in compliance with the License. 9 You may obtain a copy of the License at 10 11 http://www.apache.org/licenses/LICENSE-2.0 12 13 Unless required by applicable law or agreed to in writing, software 14 distributed under the License is distributed on an "AS IS" BASIS, 15 WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 16 See the License for the specific language governing permissions and 17 limitations under the License. 18 --> 19 <div id="qv-wrapper"> 20 <div id="qv"> 21 <ol id="auto-toc"> 22 </ol> 23 </div> 24 </div> 25 26 <p> 27 <em> 28 2 2015 29 </em> 30 </p> 31 <p> 32 Android 33 Nexus 34 35 Nexus 36 <a href="https://developers.google.com/android/nexus/images"> 37 38 </a> 39 . 40 LMY48X , 41 Android6.0 Marshmallow 1 2015. 42 <a href="http://source.android.com/security/bulletin/2015-11-01.html#common_questions_and_answers"> 43 44 </a> 45 </p> 46 <p> 47 5 2015 . 48 Android Open 49 Source Project (AOSP) 48. 50 AOSP. 51 </p> 52 <p> 53 54 (, 55 , 56 MMS). 57 </p> 58 <p> 59 . 60 <a href="http://source.android.com/security/bulletin/2015-11-01.html#mitigations"> 61 62 </a> 63 , 64 <a href="http://source.android.com/security/enhancements/index.html"> 65 66 </a> 67 , 68 SafetyNet, Android. 69 . 70 </p> 71 <h2 id="security_vulnerability_summary" style="margin-bottom:0px"> 72 73 </h2> 74 <hr/> 75 <p> 76 , (CVE) 77 . 78 <a href="http://source.android.com/security/overview/updates-resources.html#severity"> 79 80 </a> 81 , 82 , 83 . 84 </p> 85 <table> 86 <tbody> 87 <tr> 88 <th> 89 90 </th> 91 <th> 92 CVE 93 </th> 94 <th> 95 96 </th> 97 </tr> 98 <tr> 99 <td> 100 mediaserver 101 </td> 102 <td> 103 CVE-2015-6608 104 </td> 105 <td> 106 107 </td> 108 </tr> 109 <tr> 110 <td> 111 libutils 112 </td> 113 <td> 114 CVE-2015-6609 115 </td> 116 <td> 117 118 </td> 119 </tr> 120 <tr> 121 <td> 122 mediaserver 123 </td> 124 <td> 125 CVE-2015-6611 126 </td> 127 <td> 128 129 </td> 130 </tr> 131 <tr> 132 <td> 133 libstagefright 134 </td> 135 <td> 136 CVE-2015-6610 137 </td> 138 <td> 139 140 </td> 141 </tr> 142 <tr> 143 <td> 144 libmedia 145 </td> 146 <td> 147 CVE-2015-6612 148 </td> 149 <td> 150 151 </td> 152 </tr> 153 <tr> 154 <td> 155 Bluetooth 156 </td> 157 <td> 158 CVE-2015-6613 159 </td> 160 <td> 161 162 </td> 163 </tr> 164 <tr> 165 <td> 166 167 </td> 168 <td> 169 CVE-2015-6614 170 </td> 171 <td> 172 173 </td> 174 </tr> 175 </tbody> 176 </table> 177 <p> 178 179 <a href="http://source.android.com/security/overview/updates-resources.html#severity"> 180 181 </a> 182 , 183 , 184 . 185 </p> 186 <h2 id="mitigations" style="margin-bottom:0px"> 187 188 </h2> 189 <hr/> 190 <p> 191 , 192 <a href="http://source.android.com/security/enhancements/index.html"> 193 194 </a> 195 , 196 SafetyNet, Android. 197 </p> 198 <ul> 199 <li> 200 Android, 201 . 202 </li> 203 <li> 204 , Android, 205 SafetyNet. 206 207 . Google Play . 208 , 209 , " " . 210 - 211 . , 212 , , 213 . , 214 . 215 </li> 216 <li> 217 Google Hangouts Messenger 218 , mediaserver, . 219 </li> 220 </ul> 221 <h2 id="acknowledgements" style="margin-bottom:0px"> 222 223 </h2> 224 <hr/> 225 <p> 226 , : 227 </p> 228 <ul> 229 <li> 230 , , 231 Google Chrome: CVE-2015-6608. 232 </li> 233 <li> 234 (daniel.micay (a] copperhead.co) Copperhead Security: 235 CVE-2015-6609. 236 </li> 237 <li> 238 (dkay (a] kaist.ac.kr) System Security Lab, KAIST: 239 CVE-2015-6614. 240 </li> 241 <li> 242 (hongilk (a] kaist.ac.kr) System Security Lab, KAIST: 243 CVE-2015-6614. 244 </li> 245 <li> 246 (@jacktang310) Trend Micro: CVE-2015-6611. 247 </li> 248 <li> 249 Trend Micro: CVE-2015-6611. 250 </li> 251 <li> 252 Google Project Zero: CVE-2015-6608. 253 </li> 254 <li> 255 (flanker_hqd) (@antlr7) KeenTeam (@K33nTeam, 256 http://k33nteam.org/): CVE-2015-6612. 257 </li> 258 <li> 259 Trend Micro: CVE-2015-6610. 260 </li> 261 </ul> 262 <h2 id="security_vulnerability_details" style="margin-bottom:0px"> 263 264 </h2> 265 <hr/> 266 <p> 267 268 <a href="http://source.android.com/security/bulletin/2015-11-01.html#security_vulnerability_summary"> 269 270 </a> 271 : , , CVE, 272 , , 273 . 274 , AOSP, 275 , 276 . 277 </p> 278 <h3 id="remote_code_execution_vulnerabilities_in_mediaserver"> 279 mediaserver 280 </h3> 281 <p> 282 283 mediaserver, 284 285 mediaserver. 286 </p> 287 <p> 288 . 289 , MMS- 290 , . 291 </p> 292 <p> 293 - 294 mediaserver. - 295 , , . 296 </p> 297 <table> 298 <tbody> 299 <tr> 300 <th> 301 CVE 302 </th> 303 <th> 304 AOSP 305 </th> 306 <th> 307 308 </th> 309 <th> 310 311 </th> 312 <th> 313 314 </th> 315 </tr> 316 <tr> 317 <td rowspan="6"> 318 CVE-2015-6608 319 </td> 320 <td> 321 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fav/+/8ec845c8fe0f03bc57c901bc484541bdd6a7cf80"> 322 ANDROID-19779574 323 </a> 324 </td> 325 <td rowspan="3"> 326 327 </td> 328 <td rowspan="3"> 329 5.0, 5.1, 6.0 330 </td> 331 <td rowspan="3"> 332 Google 333 </td> 334 </tr> 335 <tr> 336 <td> 337 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fav/+/c6a2815eadfce62702d58b3fa3887f24c49e1864"> 338 ANDROID-23680780 339 </a> 340 </td> 341 </tr> 342 <tr> 343 <td> 344 <a href="https://android.googlesource.com/platform%2Fexternal%2Faac/+/b3c5a4bb8442ab3158fa1f52b790fadc64546f46"> 345 ANDROID-23876444 346 </a> 347 </td> 348 </tr> 349 <tr> 350 <td> 351 <a href="https://android.googlesource.com/platform%2Fexternal%2Ftremolo/+/3830d0b585ada64ee75dea6da267505b19c622fd"> 352 ANDROID-23881715 353 </a> 354 </td> 355 <td> 356 357 </td> 358 <td> 359 4.4, 5.0, 5.1, 6.0 360 </td> 361 <td> 362 Google 363 </td> 364 </tr> 365 <tr> 366 <td> 367 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fav/+/3878b990f7d53eae7c2cf9246b6ef2db5a049872"> 368 ANDROID-14388161 369 </a> 370 </td> 371 <td> 372 373 </td> 374 <td> 375 4.4 5.1 376 </td> 377 <td> 378 Google 379 </td> 380 </tr> 381 <tr> 382 <td> 383 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fav/+/f3eb82683a80341f5ac23057aab733a57963cab2"> 384 ANDROID-23658148 385 </a> 386 </td> 387 <td> 388 389 </td> 390 <td> 391 5.0, 5.1, 6.0 392 </td> 393 <td> 394 Google 395 </td> 396 </tr> 397 </tbody> 398 </table> 399 <h3 id="remote_code_execution_vulnerability_in_libutils"> 400 libutils 401 </h3> 402 <p> 403 libutils 404 . 405 406 . 407 </p> 408 <p> 409 API. , 410 MMS- , 411 . - 412 . 413 - , 414 , . 415 </p> 416 <table> 417 <tbody> 418 <tr> 419 <th> 420 CVE 421 </th> 422 <th> 423 AOSP 424 </th> 425 <th> 426 427 </th> 428 <th> 429 430 </th> 431 <th> 432 433 </th> 434 </tr> 435 <tr> 436 <td> 437 CVE-2015-6609 438 </td> 439 <td> 440 <a href="https://android.googlesource.com/platform%2Fbootable%2Frecovery/+/ec63d564a86ad5b30f75aa307b4bd271f6a96a56"> 441 ANDROID-22953624 442 </a> 443 [ 444 <a href="https://android.googlesource.com/platform%2Fsystem%2Fcore/+/419e6c3c68413bd6dbb6872340b2ae0d69a0fd60"> 445 2 446 </a> 447 ] 448 </td> 449 <td> 450 451 </td> 452 <td> 453 6.0 454 </td> 455 <td> 456 3 2015. 457 </td> 458 </tr> 459 </tbody> 460 </table> 461 <h3 id="information_disclosure_vulnerabilities_in_mediaserver"> 462 mediaserver 463 </h3> 464 <p> 465 mediaserver , 466 , . 467 </p> 468 <table> 469 <tbody> 470 <tr> 471 <th> 472 CVE 473 </th> 474 <th> 475 AOSP 476 </th> 477 <th> 478 479 </th> 480 <th> 481 482 </th> 483 <th> 484 485 </th> 486 </tr> 487 <tr> 488 <td rowspan="12"> 489 CVE-2015-6611 490 </td> 491 <td> 492 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fav/+/1c7719820359f4190cd4bfd1a24d521face7b4f8"> 493 ANDROID-23905951 494 </a> 495 [ 496 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fav/+/3b76870d146b1350db8a2f7797e06897c8c92dc2"> 497 2 498 </a> 499 ] 500 [ 501 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fav/+/40715a2ee896edd2df4023d9f6f586977887d34c"> 502 3 503 </a> 504 ] 505 </td> 506 <td rowspan="3"> 507 508 </td> 509 <td rowspan="3"> 510 6.0 511 </td> 512 <td rowspan="3"> 513 7 2015. 514 </td> 515 </tr> 516 <tr> 517 <td> 518 ANDROID-23912202* 519 </td> 520 </tr> 521 <tr> 522 <td> 523 ANDROID-23953967* 524 </td> 525 </tr> 526 <tr> 527 <td> 528 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fnative/+/b414255f53b560a06e642251535b019327ba0d7b"> 529 ANDROID-23696300 530 </a> 531 </td> 532 <td> 533 534 </td> 535 <td> 536 6.0 537 </td> 538 <td> 539 31 2015. 540 </td> 541 </tr> 542 <tr> 543 <td> 544 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fav/+/09ed70fab1f1424971ccc105dcdf5be5ce2e2643"> 545 ANDROID-23600291 546 </a> 547 </td> 548 <td> 549 550 </td> 551 <td> 552 6.0 553 </td> 554 <td> 555 26 2015. 556 </td> 557 </tr> 558 <tr> 559 <td> 560 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fav/+/892354335d49f0b9fcd10e20e0c13e3cd0f1f1cb"> 561 ANDROID-23756261 562 </a> 563 [ 564 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fav/+/a946d844a77906072f5eb7093d41db465d6514bb"> 565 2 566 </a> 567 ] 568 </td> 569 <td> 570 571 </td> 572 <td> 573 6.0 574 </td> 575 <td> 576 26 2015. 577 </td> 578 </tr> 579 <tr> 580 <td> 581 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fav/+/57bed83a539535bb64a33722fb67231119cb0618"> 582 ANDROID-23540907 583 </a> 584 [ 585 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fav/+/25a634427dec455b79d73562131985ae85b98c43"> 586 2 587 </a> 588 ] 589 </td> 590 <td> 591 592 </td> 593 <td> 594 5.1 595 </td> 596 <td> 597 25 2015. 598 </td> 599 </tr> 600 <tr> 601 <td> 602 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fav/+/d53aced041b7214a92b1f2fd5970d895bb9934e5"> 603 ANDROID-23541506 604 </a> 605 </td> 606 <td rowspan="4"> 607 608 </td> 609 <td rowspan="4"> 610 6.0 611 </td> 612 <td rowspan="4"> 613 25 2015. 614 </td> 615 </tr> 616 <tr> 617 <td> 618 ANDROID-23284974* 619 </td> 620 </tr> 621 <tr> 622 <td> 623 ANDROID-23542351* 624 </td> 625 </tr> 626 <tr> 627 <td> 628 ANDROID-23542352* 629 </td> 630 </tr> 631 <tr> 632 <td> 633 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fav/+/0981df6e3db106bfb7a56a2b668c012fcc34dd2c"> 634 ANDROID-23515142 635 </a> 636 </td> 637 <td> 638 639 </td> 640 <td> 641 5.1 642 </td> 643 <td> 644 19 2015. 645 </td> 646 </tr> 647 </tbody> 648 </table> 649 <p> 650 * AOSP. 651 </p> 652 <h3 id="elevation_of_privilege_vulnerability_in_libstagefright"> 653 libstagefright 654 </h3> 655 <p> 656 libstagefright 657 658 mediaserver. 659 , - 660 . 661 </p> 662 <table> 663 <tbody> 664 <tr> 665 <th> 666 CVE 667 </th> 668 <th> 669 AOSP 670 </th> 671 <th> 672 673 </th> 674 <th> 675 676 </th> 677 <th> 678 679 </th> 680 </tr> 681 <tr> 682 <td> 683 CVE-2015-6610 684 </td> 685 <td> 686 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fav/+/d26052738f7b095b7e318c8dde7f32db0a48450c"> 687 ANDROID-23707088 688 </a> 689 [ 690 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fav/+/820c105f7a4dc0971ee563caea4c9b346854a2f7"> 691 2 692 </a> 693 ] 694 </td> 695 <td> 696 697 </td> 698 <td> 699 6.0 700 </td> 701 <td> 702 19 2015. 703 </td> 704 </tr> 705 </tbody> 706 </table> 707 <h3 id="elevation_of_privilege_vulnerability_in_libmedia"> 708 libmedia 709 </h3> 710 <p> 711 libmedia 712 mediaserver. 713 , , 714 . 715 </p> 716 <table> 717 <tbody> 718 <tr> 719 <th> 720 CVE 721 </th> 722 <th> 723 AOSP 724 </th> 725 <th> 726 727 </th> 728 <th> 729 730 </th> 731 <th> 732 733 </th> 734 </tr> 735 <tr> 736 <td> 737 CVE-2015-6612 738 </td> 739 <td> 740 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fav/+/4b219e9e5ab237eec9931497cf10db4d78982d84"> 741 ANDROID-23540426 742 </a> 743 </td> 744 <td> 745 746 </td> 747 <td> 748 6.0 749 </td> 750 <td> 751 23 2015. 752 </td> 753 </tr> 754 </tbody> 755 </table> 756 <h3 id="elevation_of_privilege_vulnerability_in_bluetooth"> 757 Bluetooth 758 </h3> 759 <p> 760 Bluetooth 761 . 762 , , 763 (, 764 <a href="http://developer.android.com/guide/topics/manifest/permission-element.html#plevel"> 765 Signature 766 </a> 767 768 <a href="http://developer.android.com/guide/topics/manifest/permission-element.html#plevel"> 769 SignatureOrSystem 770 </a> 771 ). 772 </p> 773 <table> 774 <tbody> 775 <tr> 776 <th> 777 CVE 778 </th> 779 <th> 780 AOSP 781 </th> 782 <th> 783 784 </th> 785 <th> 786 787 </th> 788 <th> 789 790 </th> 791 </tr> 792 <tr> 793 <td> 794 CVE-2015-6613 795 </td> 796 <td> 797 <a href="https://android.googlesource.com/platform%2Fsystem%2Fbt/+/74dad51510f7d7b05c6617ef88168bf0bbdf3fcd"> 798 ANDROID-24371736 799 </a> 800 </td> 801 <td> 802 803 </td> 804 <td> 805 6.0 806 </td> 807 <td> 808 Google 809 </td> 810 </tr> 811 </tbody> 812 </table> 813 <h3 id="elevation_of_privilege_vulnerability_in_telephony"> 814 815 </h3> 816 <p> 817 818 . 819 . , 820 , 821 . , 822 823 <a href="http://developer.android.com/guide/topics/manifest/permission-element.html#plevel"> 824 dangerous 825 </a> 826 (). 827 </p> 828 <table> 829 <tbody> 830 <tr> 831 <th> 832 CVE 833 </th> 834 <th> 835 AOSP 836 </th> 837 <th> 838 839 </th> 840 <th> 841 842 </th> 843 <th> 844 845 </th> 846 </tr> 847 <tr> 848 <td> 849 CVE-2015-6614 850 </td> 851 <td> 852 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fopt%2Ftelephony/+/70dd1f77873913635288e513564a6c93ae4d0a26"> 853 ANDROID-21900139 854 </a> 855 [ 856 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fbase/+/a12044215b1148826ea9a88d5d1102378b13922f"> 857 2 858 </a> 859 ] 860 [ 861 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fbase/+/2b6af396ad14def9a967f62cccc87ee715823bb1"> 862 3 863 </a> 864 ] 865 </td> 866 <td> 867 868 </td> 869 <td> 870 5.0, 5.1 871 </td> 872 <td> 873 8 2015. 874 </td> 875 </tr> 876 </tbody> 877 </table> 878 <h3 id="common_questions_and_answers"> 879 880 </h3> 881 <p> 882 , 883 . 884 </p> 885 <p> 886 <strong> 887 1. , , 888 ? 889 </strong> 890 </p> 891 <p> 892 LMY48X , 893 Android6.0 Marshmallow 1 2015. 894 , , 895 896 <a href="https://support.google.com/nexus/answer/4457705"> 897 Nexus 898 </a> 899 . , 900 , 901 [ro.build.version.security_patch]:[2015-11-01]. 902 </p> 903 <h2 id="revisions" style="margin-bottom:0px"> 904 905 </h2> 906 <hr/> 907 <ul> 908 <li> 909 2 2015: 910 </li> 911 </ul> 912 </div> 913 <div class="content-footer-sac" itemscope="" itemtype="http://schema.org/SiteNavigationElement"> 914 <div class="layout-content-col col-9" style="padding-top:4px"> 915 </div> 916 <div class="paging-links layout-content-col col-4"> 917 </div> 918 </div> 919 </div> 920
