1 page.title=Android 2016 11 2 @jd:body 3 <!-- 4 Copyright 2016 The Android Open Source Project 5 Licensed under the Apache License, Version 2.0 (the "License"); 6 you may not use this file except in compliance with the License. 7 You may obtain a copy of the License at 8 http://www.apache.org/licenses/LICENSE-2.0 9 Unless required by applicable law or agreed to in writing, software 10 distributed under the License is distributed on an "AS IS" BASIS, 11 WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 12 See the License for the specific language governing permissions and 13 limitations under the License. 14 --> 15 16 <p><em>2016 11 7 | 2016 11 8 </em></p> 17 <p>Android Android Google OTA Google Google <a href="https://developers.google.com/android/nexus/images">Google Developers </a>2016 11 6 <a href="https://support.google.com/pixelphone/answer/4457705#pixel_phones&nexus_devices">Pixel Nexus </a></p> 18 <p> 19 2016 10 20 () Android (AOSP) AOSP 20 </p> 21 <p></p> 22 <p> <a href="{@docRoot}security/enhancements/index.html">Android </a> ( <a href="https://developer.android.com/training/safetynet/index.html">SafetyNet</a>) Android <a href="#mitigations">Android Google </a></p> 23 <p></p> 24 <h2 id="announcements"></h2> 25 <ul> 26 <li> Pixel Pixel XL Google (Nexus ) <a href="#google-devices"> Google </a> 27 </li> 28 <li> Android Android <a href="#common-questions-and-answers"></a> 29 <ul> 30 <li><strong>2016-11-01</strong> 2016-11-01 () </li> 31 <li><strong>2016-11-05</strong> 2016-11-01 2016-11-05 () </li> 32 <li><strong></strong> 33 <p> 2016-12-01 34 </p> 35 <ul> 36 <li><strong>2016-11-06</strong> 2016-11-05 CVE-2016-5195 ( 2016 10 19 )</li> 37 </ul> 38 </li> 39 </ul> 40 </li> 41 <li> Google 2016 11 5 OTA </li> 42 </ul> 43 44 <h2 id="security-vulnerability-summary"></h2> 45 <p> 46 ID (CVE) Google <a href="{@docRoot}security/overview/updates-resources.html#severity"></a></p> 47 <h3 id="2016-11-01-summary">2016-11-01 </h3> 48 <p> 49 2016-11-01 </p> 50 <table> 51 <col width="55%"> 52 <col width="20%"> 53 <col width="13%"> 54 <col width="12%"> 55 <tr> 56 <th></th> 57 <th>CVE</th> 58 <th></th> 59 <th> Google </th> 60 </tr> 61 <tr> 62 <td></td> 63 <td>CVE-2016-6699</td> 64 <td></td> 65 <td></td> 66 </tr> 67 <tr> 68 <td>libzipfile </td> 69 <td>CVE-2016-6700</td> 70 <td></td> 71 <td>*</td> 72 </tr> 73 <tr> 74 <td>Skia </td> 75 <td>CVE-2016-6701</td> 76 <td></td> 77 <td></td> 78 </tr> 79 <tr> 80 <td>libjpeg </td> 81 <td>CVE-2016-6702</td> 82 <td></td> 83 <td>*</td> 84 </tr> 85 <tr> 86 <td>Android </td> 87 <td>CVE-2016-6703</td> 88 <td></td> 89 <td>*</td> 90 </tr> 91 <tr> 92 <td></td> 93 <td>CVE-2016-6704CVE-2016-6705CVE-2016-6706</td> 94 <td></td> 95 <td></td> 96 </tr> 97 <tr> 98 <td></td> 99 <td>CVE-2016-6707</td> 100 <td></td> 101 <td></td> 102 </tr> 103 <tr> 104 <td></td> 105 <td>CVE-2016-6708</td> 106 <td></td> 107 <td></td> 108 </tr> 109 <tr> 110 <td>Conscrypt </td> 111 <td>CVE-2016-6709</td> 112 <td></td> 113 <td></td> 114 </tr> 115 <tr> 116 <td></td> 117 <td>CVE-2016-6710</td> 118 <td></td> 119 <td></td> 120 </tr> 121 <tr> 122 <td></td> 123 <td>CVE-2014-9908</td> 124 <td></td> 125 <td>*</td> 126 </tr> 127 <tr> 128 <td>OpenJDK </td> 129 <td>CVE-2015-0410</td> 130 <td></td> 131 <td></td> 132 </tr> 133 <tr> 134 <td></td> 135 <td>CVE-2016-6711CVE-2016-6712CVE-2016-6713CVE-2016-6714</td> 136 <td></td> 137 <td></td> 138 </tr> 139 <tr> 140 <td>Framework API </td> 141 <td>CVE-2016-6715</td> 142 <td></td> 143 <td></td> 144 </tr> 145 <tr> 146 <td>AOSP </td> 147 <td>CVE-2016-6716</td> 148 <td></td> 149 <td></td> 150 </tr> 151 <tr> 152 <td></td> 153 <td>CVE-2016-6717</td> 154 <td></td> 155 <td></td> 156 </tr> 157 <tr> 158 <td></td> 159 <td>CVE-2016-6718</td> 160 <td></td> 161 <td></td> 162 </tr> 163 <tr> 164 <td></td> 165 <td>CVE-2016-6719</td> 166 <td></td> 167 <td></td> 168 </tr> 169 <tr> 170 <td></td> 171 <td>CVE-2016-6720CVE-2016-6721CVE-2016-6722</td> 172 <td></td> 173 <td></td> 174 </tr> 175 <tr> 176 <td>Proxy </td> 177 <td>CVE-2016-6723</td> 178 <td></td> 179 <td></td> 180 </tr> 181 <tr> 182 <td></td> 183 <td>CVE-2016-6724</td> 184 <td></td> 185 <td></td> 186 </tr> 187 </table> 188 <p> 189 * Android 7.0 Google ()</p> 190 <h3 id="2016-11-05-summary">2016-11-05 </h3> 191 <p> 192 2016-11-05 2016-11-01 </p> 193 <table> 194 <col width="55%"> 195 <col width="20%"> 196 <col width="13%"> 197 <col width="12%"> 198 <tr> 199 <th></th> 200 <th>CVE</th> 201 <th></th> 202 <th> Google </th> 203 </tr> 204 <tr> 205 <td>Qualcomm </td> 206 <td>CVE-2016-6725</td> 207 <td></td> 208 <td></td> 209 </tr> 210 <tr> 211 <td></td> 212 <td>CVE-2015-8961CVE-2016-7910CVE-2016-7911</td> 213 <td></td> 214 <td></td> 215 </tr> 216 <tr> 217 <td> SCSI </td> 218 <td>CVE-2015-8962</td> 219 <td></td> 220 <td></td> 221 </tr> 222 <tr> 223 <td></td> 224 <td>CVE-2016-7913</td> 225 <td></td> 226 <td></td> 227 </tr> 228 <tr> 229 <td> USB </td> 230 <td>CVE-2016-7912</td> 231 <td></td> 232 <td></td> 233 </tr> 234 <tr> 235 <td> ION </td> 236 <td>CVE-2016-6728</td> 237 <td></td> 238 <td></td> 239 </tr> 240 <tr> 241 <td>Qualcomm </td> 242 <td>CVE-2016-6729</td> 243 <td></td> 244 <td></td> 245 </tr> 246 <tr> 247 <td>NVIDIA GPU </td> 248 <td>CVE-2016-6730CVE-2016-6731CVE-2016-6732CVE-2016-6733CVE-2016-6734CVE-2016-6735CVE-2016-6736</td> 249 <td></td> 250 <td></td> 251 </tr> 252 <tr> 253 <td></td> 254 <td>CVE-2016-6828</td> 255 <td></td> 256 <td></td> 257 </tr> 258 <tr> 259 <td></td> 260 <td>CVE-2016-2184</td> 261 <td></td> 262 <td></td> 263 </tr> 264 <tr> 265 <td> ION </td> 266 <td>CVE-2016-6737</td> 267 <td></td> 268 <td></td> 269 </tr> 270 <tr> 271 <td>Qualcomm </td> 272 <td>CVE-2016-6726CVE-2016-6727</td> 273 <td></td> 274 <td></td> 275 </tr> 276 <tr> 277 <td>Expat </td> 278 <td>CVE-2016-0718CVE-2012-6702CVE-2016-5300CVE-2015-1283</td> 279 <td></td> 280 <td>*</td> 281 </tr> 282 <tr> 283 <td>Webview </td> 284 <td>CVE-2016-6754</td> 285 <td></td> 286 <td>*</td> 287 </tr> 288 <tr> 289 <td>Freetype </td> 290 <td>CVE-2014-9675</td> 291 <td></td> 292 <td>*</td> 293 </tr> 294 <tr> 295 <td></td> 296 <td>CVE-2015-8963</td> 297 <td></td> 298 <td></td> 299 </tr> 300 <tr> 301 <td></td> 302 <td>CVE-2016-6136</td> 303 <td></td> 304 <td></td> 305 </tr> 306 <tr> 307 <td>Qualcomm </td> 308 <td>CVE-2016-6738</td> 309 <td></td> 310 <td></td> 311 </tr> 312 <tr> 313 <td>Qualcomm </td> 314 <td>CVE-2016-6739CVE-2016-6740CVE-2016-6741</td> 315 <td></td> 316 <td></td> 317 </tr> 318 <tr> 319 <td>Qualcomm </td> 320 <td>CVE-2016-3904</td> 321 <td></td> 322 <td></td> 323 </tr> 324 <tr> 325 <td>Synaptics </td> 326 <td>CVE-2016-6742CVE-2016-6744CVE-2016-6745CVE-2016-6743</td> 327 <td></td> 328 <td></td> 329 </tr> 330 <tr> 331 <td></td> 332 <td>CVE-2015-8964CVE-2016-7914CVE-2016-7915CVE-2016-7916</td> 333 <td></td> 334 <td></td> 335 </tr> 336 <tr> 337 <td>NVIDIA GPU </td> 338 <td>CVE-2016-6746</td> 339 <td></td> 340 <td></td> 341 </tr> 342 <tr> 343 <td></td> 344 <td>CVE-2016-6747</td> 345 <td></td> 346 <td></td> 347 </tr> 348 <tr> 349 <td></td> 350 <td>CVE-2016-6753CVE-2016-7917</td> 351 <td></td> 352 <td></td> 353 </tr> 354 <tr> 355 <td>Qualcomm </td> 356 <td>CVE-2016-6748CVE-2016-6749CVE-2016-6750CVE-2016-3906CVE-2016-3907CVE-2016-6698CVE-2016-6751CVE-2016-6752</td> 357 <td></td> 358 <td></td> 359 </tr> 360 </table> 361 <p> 362 * Android 7.0 Google ()</p> 363 <h3 id="2016-11-06-summary">2016-11-06 </h3> 364 <p>2016-11-06 2016-11-05 2016-11-01 </p> 365 <table> 366 <col width="55%"> 367 <col width="20%"> 368 <col width="13%"> 369 <col width="12%"> 370 <tr> 371 <th></th> 372 <th>CVE</th> 373 <th></th> 374 <th> Google </th> 375 </tr> 376 <tr> 377 <td></td> 378 <td>CVE-2016-5195</td> 379 <td></td> 380 <td></td> 381 </tr> 382 </table> 383 384 <h2 id="mitigations">Android Google </h2> 385 <p> 386 <a href="{@docRoot}security/enhancements/index.html">Android </a> SafetyNet Android </p> 387 <ul> 388 <li> Android Android Android</li> 389 <li>Android <a href="http://static.googleusercontent.com/media/source.android.com/en//security/reports/Google_Android_Security_2015_Report_Final.pdf"> SafetyNet</a> <a href="http://static.googleusercontent.com/media/source.android.com/en//security/reports/Google_Android_Security_PHA_classifications.pdf"></a> <a href="http://www.android.com/gms">Google </a> Google Play Google Play Root Root () </li> 390 <li>Google Hangouts Messenger </li> 391 </ul> 392 <h2 id="acknowledgements"></h2> 393 <p> 394 </p> 395 <ul> 396 <li>Google Chrome Abhishek AryaOliver Chang Martin BarbellaCVE-2016-6722</li> 397 <li>Google Andrei Kapishnikov Miriam GershensonCVE-2016-6703</li> 398 <li>Silence Information Technology <a href="http://www.pkav.net">PKAV</a> Ao Wang (<a href="http://twitter.com/@r4y2_wa">@r4y2_wa</a>) <a href="http://weibo.com/ele7enxxh">Zinuo Han</a>CVE-2016-6700CVE-2016-6702</li> 399 <li> AskyshangCVE-2016-6713</li> 400 <li>Android Billy LauCVE-2016-6737</li> 401 <li> <a href="mailto:kpatsak (a] unipi.gr">Constantinos Patsakis</a> <a href="mailto:talepis (a] unipi.gr">Efthimios Alepis</a>CVE-2016-6715</li> 402 <li> dragonltxCVE-2016-6714</li> 403 <li>Google Project Zero Gal BeniaminiCVE-2016-6707CVE-2016-6717</li> 404 <li><a href="http://www.360.com"> 360</a> IceSword Gengjia Chen (<a href="http://twitter.com/chengjia4574">@chengjia4574</a>) <a href="http://weibo.com/jfpan ">pjf</a>CVE-2016-6725CVE-2016-6738CVE-2016-6740CVE-2016-6741CVE-2016-6742CVE-2016-6744CVE-2016-6745CVE-2016-3906</li> 405 <li><a href="http://www.360.com"> 360 </a> Alpha Guang Gong () (<a href="http://twitter.com/oldfresher">@oldfresher</a>)CVE-2016-6754</li> 406 <li><a href="http://www.360.com"> 360</a> IceSword Jianqiang Zhao (<a href="http://twitter.com/jianqiangzhao">@jianqiangzhao</a>) <a href="http://weibo.com/jfpan ">pjf</a>CVE-2016-6739CVE-2016-3904CVE-2016-3907CVE-2016-6698</li> 407 <li>Google Project Zero Mark BrandCVE-2016-6706</li> 408 <li>Google Mark RenoufCVE-2016-6724</li> 409 <li>Micha Bednarski (<a href="https://github.com/michalbednarski">github.com/michalbednarski</a>)CVE-2016-6710</li> 410 <li>Android Min ChongCVE-2016-6743</li> 411 <li> Peter Pi (<a href="http://twitter.com/heisecode">@heisecode</a>)CVE-2016-6721</li> 412 <li> KeenLab Qidan He () (<a href="http://twitter.com/flanker_hqd">@flanker_hqd</a>) Gengming Liu () (<a href="http://twitter.com/dmxcsnsbh">@dmxcsnsbh</a>)CVE-2016-6705</li> 413 <li>Google Robin LeeCVE-2016-6708</li> 414 <li><a href="mailto:sbauer (a] plzdonthack.me">Scott Bauer</a> (<a href="http://twitter.com/ScottyBauer1">@ScottyBauer1</a>)CVE-2016-6751</li> 415 <li> Sergey Bobrov (<a href="http://twitter.com/Black2Fan">@Black2Fan</a>)CVE-2016-6716</li> 416 <li> Seven Shen (<a href="http://twitter.com/lingtongshen">@lingtongshen</a>)CVE-2016-6748CVE-2016-6749CVE-2016-6750CVE-2016-6753</li> 417 <li> Victor van der VeenHerbert BosKaveh Razavi Cristiano Giuffrida Yanick FratantonioMartina Lindorfer Giovanni VignaCVE-2016-6728</li> 418 <li> Weichao Sun (<a href="https://twitter.com/sunblate">@sunblate</a>)CVE-2016-6712CVE-2016-6699CVE-2016-6711</li> 419 <li><a href="http://c0reteam.org">C0RE </a> Wenke Dou (<a href="mailto:vancouverdou (a] gmail.com">vancouverdou (a] gmail.com</a>)Chiachih Wu (<a href="https://twitter.com/chiachih_wu">@chiachih_wu</a>) Xuxian JiangCVE-2016-6720</li> 420 <li> Wish Wu () (<a href="http://twitter.com/wish_wu">@wish_wu</a>)CVE-2016-6704</li> 421 <li><a href="https://wwws.nightwatchcybersecurity.com">Nightwatch Cybersecurity</a> Yakov ShafranovichCVE-2016-6723</li> 422 <li><a href="http://c0reteam.org">C0RE </a> <a href="mailto:computernik (a] gmail.com">Yuan-Tsung Lo</a><a href="mailto:yaojun8558363 (a] gmail.com">Yao Jun</a><a href="mailto:segfault5514 (a] gmail.com">Tong Lin</a>Chiachih Wu (<a href="https://twitter.com/chiachih_wu">@chiachih_wu</a>) Xuxian JiangCVE-2016-6730CVE-2016-6732CVE-2016-6734CVE-2016-6736</li> 423 <li><a href="http://c0reteam.org">C0RE </a> <a href="mailto:computernik (a] gmail.com">Yuan-Tsung Lo</a><a href="mailto:yaojun8558363 (a] gmail.com">Yao Jun</a><a href="mailto:wisedd (a] gmail.com">Xiaodong Wang</a>Chiachih Wu (<a href="https://twitter.com/chiachih_wu">@chiachih_wu</a>) Xuxian JiangCVE-2016-6731CVE-2016-6733CVE-2016-6735CVE-2016-6746</li> 424 </ul> 425 <p> 426 Android Zach Riggle </p> 427 428 <h2 id="2016-11-01-details">2016-11-01 </h2> 429 <p> 430 <a href="#2016-11-01-summary">2016-11-01 </a> CVE Google AOSP () ID ( AOSP ) ID </p> 431 432 <h3 id="rce-in-mediaserver"></h3> 433 <p> 434 </p> 435 <table> 436 <col width="18%"> 437 <col width="18%"> 438 <col width="10%"> 439 <col width="19%"> 440 <col width="17%"> 441 <col width="17%"> 442 <tr> 443 <th>CVE</th> 444 <th></th> 445 <th></th> 446 <th> Google </th> 447 <th> AOSP </th> 448 <th></th> 449 </tr> 450 <tr> 451 <td>CVE-2016-6699</td> 452 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/3b1c9f692c4d4b7a683c2b358fc89e831a641b88"> 453 A-31373622</a></td> 454 <td></td> 455 <td></td> 456 <td>7.0</td> 457 <td>2016 7 27 </td> 458 </tr> 459 </table> 460 <h3 id="eop-in-libzipfile">libzipfile </h3> 461 <p> 462 libzipfile (Re-flash) 463 </p> 464 <table> 465 <col width="18%"> 466 <col width="18%"> 467 <col width="10%"> 468 <col width="19%"> 469 <col width="17%"> 470 <col width="17%"> 471 <tr> 472 <th>CVE</th> 473 <th></th> 474 <th></th> 475 <th> Google </th> 476 <th> AOSP </th> 477 <th></th> 478 </tr> 479 <tr> 480 <td>CVE-2016-6700</td> 481 <td>A-30916186</td> 482 <td></td> 483 <td>*</td> 484 <td>4.4.45.0.25.1.1</td> 485 <td>2016 8 17 </td> 486 </tr> 487 </table> 488 <p> 489 * Android 7.0 Google () 490 </p> 491 <h3 id="rce-in-skia">Skia </h3> 492 <p> 493 libskia 494 </p> 495 <table> 496 <col width="18%"> 497 <col width="18%"> 498 <col width="10%"> 499 <col width="19%"> 500 <col width="17%"> 501 <col width="17%"> 502 <tr> 503 <th>CVE</th> 504 <th></th> 505 <th></th> 506 <th> Google </th> 507 <th> AOSP </th> 508 <th></th> 509 </tr> 510 <tr> 511 <td>CVE-2016-6701</td> 512 <td><a href="https://android.googlesource.com/platform/external/skia/+/aca73722873e908633ff27375f6f93a08cbb7dd3"> 513 A-30190637</a></td> 514 <td></td> 515 <td></td> 516 <td>7.0</td> 517 <td>Google </td> 518 </tr> 519 </table> 520 <h3 id="rce-in-libjpeg">libjpeg </h3> 521 <p> 522 libjpeg libjpeg 523 </p> 524 <table> 525 <col width="18%"> 526 <col width="18%"> 527 <col width="10%"> 528 <col width="19%"> 529 <col width="17%"> 530 <col width="17%"> 531 <tr> 532 <th>CVE</th> 533 <th></th> 534 <th></th> 535 <th> Google </th> 536 <th> AOSP </th> 537 <th></th> 538 </tr> 539 <tr> 540 <td>CVE-2016-6702</td> 541 <td>A-30259087</td> 542 <td></td> 543 <td>*</td> 544 <td>4.4.45.0.25.1.1</td> 545 <td>2016 7 19 </td> 546 </tr> 547 </table> 548 <p> 549 * Android 7.0 Google () 550 </p> 551 <h3 id="rce-in-android-runtime">Android </h3> 552 <p> 553 Android Android 554 </p> 555 <table> 556 <col width="18%"> 557 <col width="18%"> 558 <col width="10%"> 559 <col width="19%"> 560 <col width="17%"> 561 <col width="17%"> 562 <tr> 563 <th>CVE</th> 564 <th></th> 565 <th></th> 566 <th> Google </th> 567 <th> AOSP </th> 568 <th></th> 569 </tr> 570 <tr> 571 <td>CVE-2016-6703</td> 572 <td>A-30765246</td> 573 <td></td> 574 <td>*</td> 575 <td>4.4.45.0.25.1.16.06.0.1</td> 576 <td>Google </td> 577 </tr> 578 </table> 579 <p> 580 * Android 7.0 Google () 581 </p> 582 <h3 id="eop-in-mediaserver"></h3> 583 <p> 584 </p> 585 <table> 586 <col width="18%"> 587 <col width="18%"> 588 <col width="10%"> 589 <col width="19%"> 590 <col width="17%"> 591 <col width="17%"> 592 <tr> 593 <th>CVE</th> 594 <th></th> 595 <th></th> 596 <th> Google </th> 597 <th> AOSP </th> 598 <th></th> 599 </tr> 600 <tr> 601 <td>CVE-2016-6704</td> 602 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/c6c446f9e022adf20064e65a17574804f8af8e7d"> 603 A-30229821</a> 604 [<a href="https://android.googlesource.com/platform/hardware/qcom/audio/+/9cb9810ecb63c8ff55ecf4bc77431dc5b0688b5f">2</a>] 605 [<a href="https://android.googlesource.com/platform/system/media/+/a6274f03b4dfe1c3a22af51e3a17ea56a314e747">3</a>] 606 </td> 607 <td></td> 608 <td></td> 609 <td>4.4.45.0.25.1.16.06.0.17.0</td> 610 <td>2016 7 19 </td> 611 </tr> 612 <tr> 613 <td>CVE-2016-6705</td> 614 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/3a03fa24d21f97e84e796ac5ef14b3f434c0e8f1"> 615 A-30907212</a> 616 [<a href="https://android.googlesource.com/platform/frameworks/av/+/bd04b47d38a89f1dada1c6da2ef4a3d235c166b8">2</a>] 617 </td> 618 <td></td> 619 <td></td> 620 <td>5.0.25.1.16.06.0.17.0</td> 621 <td>2016 8 16 </td> 622 </tr> 623 <tr> 624 <td>CVE-2016-6706</td> 625 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/1d4feebdb85db46e138530f360d9ff2490e14353"> 626 A-31385713</a> 627 </td> 628 <td></td> 629 <td></td> 630 <td>7.0</td> 631 <td>2016 9 8 </td> 632 </tr> 633 </table> 634 <h3 id="eop-in-system-server"></h3> 635 <p> 636 </p> 637 <table> 638 <col width="18%"> 639 <col width="18%"> 640 <col width="10%"> 641 <col width="19%"> 642 <col width="17%"> 643 <col width="17%"> 644 <tr> 645 <th>CVE</th> 646 <th></th> 647 <th></th> 648 <th> Google </th> 649 <th> AOSP </th> 650 <th></th> 651 </tr> 652 <tr> 653 <td>CVE-2016-6707</td> 654 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/16024ea7c4bae08c972cf6b3734029aad33e8870"> 655 A-31350622</a> 656 </td> 657 <td></td> 658 <td></td> 659 <td>6.06.0.17.0</td> 660 <td>2016 9 7 </td> 661 </tr> 662 </table> 663 <h3 id="eop-in-system-ui"></h3> 664 <p> 665 Work 666 </p> 667 <table> 668 <col width="18%"> 669 <col width="18%"> 670 <col width="10%"> 671 <col width="19%"> 672 <col width="17%"> 673 <col width="17%"> 674 <tr> 675 <th>CVE</th> 676 <th></th> 677 <th></th> 678 <th> Google </th> 679 <th> AOSP </th> 680 <th></th> 681 </tr> 682 <tr> 683 <td>CVE-2016-6708</td> 684 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/c9c73fde339b4db496f2c1ff8c18df1e9db5a7c1"> 685 A-30693465</a> 686 </td> 687 <td></td> 688 <td></td> 689 <td>7.0</td> 690 <td>Google </td> 691 </tr> 692 </table> 693 <h3 id="id-in-conscrypt">Conscrypt </h3> 694 <p> 695 Conscrypt API 696 </p> 697 <table> 698 <col width="18%"> 699 <col width="18%"> 700 <col width="10%"> 701 <col width="19%"> 702 <col width="17%"> 703 <col width="17%"> 704 <tr> 705 <th>CVE</th> 706 <th></th> 707 <th></th> 708 <th> Google </th> 709 <th> AOSP </th> 710 <th></th> 711 </tr> 712 <tr> 713 <td>CVE-2016-6709</td> 714 <td><a href="https://android.googlesource.com/platform/external/conscrypt/+/44ef9535b9afb123d150d8e0362e4bb50794dd41"> 715 A-31081987</a> 716 </td> 717 <td></td> 718 <td></td> 719 <td>6.06.0.17.0</td> 720 <td>2015 10 9 </td> 721 </tr> 722 </table> 723 <h3 id="id-in-download-manager"></h3> 724 <p> 725 726 </p> 727 <table> 728 <col width="18%"> 729 <col width="18%"> 730 <col width="10%"> 731 <col width="19%"> 732 <col width="17%"> 733 <col width="17%"> 734 <tr> 735 <th>CVE</th> 736 <th></th> 737 <th></th> 738 <th> Google </th> 739 <th> AOSP </th> 740 <th></th> 741 </tr> 742 <tr> 743 <td>CVE-2016-6710</td> 744 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/9fab683c9598d234dd8461335c276ed3e37c91e8"> 745 A-30537115</a> 746 [<a href="https://android.googlesource.com/platform/packages/providers/DownloadProvider/+/243e62949f7208d3b82eda3ee4ec22d3dbc1fb19">2</a>] 747 </td> 748 <td></td> 749 <td></td> 750 <td>5.0.25.1.16.06.0.17.0</td> 751 <td>2016 7 30 </td> 752 </tr> 753 </table> 754 <h3 id="dos-in-bluetooth"></h3> 755 <p> 756 757 </p> 758 <table> 759 <col width="18%"> 760 <col width="18%"> 761 <col width="10%"> 762 <col width="19%"> 763 <col width="17%"> 764 <col width="17%"> 765 <tr> 766 <th>CVE</th> 767 <th></th> 768 <th></th> 769 <th> Google </th> 770 <th> AOSP </th> 771 <th></th> 772 </tr> 773 <tr> 774 <td>CVE-2014-9908</td> 775 <td>A-28672558</td> 776 <td></td> 777 <td>*</td> 778 <td>4.4.45.0.25.1.1</td> 779 <td>2014 5 5 </td> 780 </tr> 781 </table> 782 <p> 783 * Android 7.0 Google () 784 </p> 785 <h3 id="dos-in-openjdk">OpenJDK </h3> 786 <p>OpenJDK 787 </p> 788 <table> 789 <col width="18%"> 790 <col width="18%"> 791 <col width="10%"> 792 <col width="19%"> 793 <col width="17%"> 794 <col width="17%"> 795 <tr> 796 <th>CVE</th> 797 <th></th> 798 <th></th> 799 <th> Google </th> 800 <th> AOSP </th> 801 <th></th> 802 </tr> 803 <tr> 804 <td>CVE-2015-0410</td> 805 <td><a href="https://android.googlesource.com/platform/libcore/+/21098574528bdf99dd50a74a60e161573e999108"> 806 A-30703445</a> 807 </td> 808 <td></td> 809 <td></td> 810 <td>7.0</td> 811 <td>2015 1 16 </td> 812 </tr> 813 </table> 814 <h3 id="dos-in-mediaserver"></h3> 815 <p> 816 817 </p> 818 <table> 819 <col width="18%"> 820 <col width="18%"> 821 <col width="10%"> 822 <col width="19%"> 823 <col width="17%"> 824 <col width="17%"> 825 <tr> 826 <th>CVE</th> 827 <th></th> 828 <th></th> 829 <th> Google </th> 830 <th> AOSP </th> 831 <th></th> 832 </tr> 833 <tr> 834 <td>CVE-2016-6711</td> 835 <td><a href="https://android.googlesource.com/platform/external/libvpx/+/063be1485e0099bc81ace3a08b0ec9186dcad693"> 836 A-30593765</a> 837 </td> 838 <td></td> 839 <td>*</td> 840 <td>4.4.45.0.25.1.16.06.0.1</td> 841 <td>2016 8 1 </td> 842 </tr> 843 <tr> 844 <td>CVE-2016-6712</td> 845 <td><a href="https://android.googlesource.com/platform/external/libvpx/+/fdb1b40e7bb147c07bda988c9501ad223795d12d"> 846 A-30593752</a> 847 </td> 848 <td></td> 849 <td>*</td> 850 <td>4.4.45.0.25.1.16.06.0.1</td> 851 <td>2016 8 1 </td> 852 </tr> 853 <tr> 854 <td>CVE-2016-6713</td> 855 <td><a href="https://android.googlesource.com/platform/external/libavc/+/8cafca0e8b1ed8125918e203118c5a4e612fd56c"> 856 A-30822755</a></td> 857 <td></td> 858 <td></td> 859 <td>6.06.0.17.0</td> 860 <td>2016 8 11 </td> 861 </tr> 862 <tr> 863 <td>CVE-2016-6714</td> 864 <td><a href="https://android.googlesource.com/platform/external/libavc/+/5bdb0a6b72782e505671a387bb5f83222d891d6a"> 865 A-31092462</a> 866 </td> 867 <td></td> 868 <td></td> 869 <td>6.06.0.17.0</td> 870 <td>2016 8 22 </td> 871 </tr> 872 </table> 873 <p> 874 * Android 7.0 Google () 875 </p> 876 <h3 id="eop-in-framework-apis">Framework API </h3> 877 <p> 878 Framework API () 879 </p> 880 <table> 881 <col width="18%"> 882 <col width="18%"> 883 <col width="10%"> 884 <col width="19%"> 885 <col width="17%"> 886 <col width="17%"> 887 <tr> 888 <th>CVE</th> 889 <th></th> 890 <th></th> 891 <th> Google </th> 892 <th> AOSP </th> 893 <th></th> 894 </tr> 895 <tr> 896 <td>CVE-2016-6715</td> 897 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/3de09838fb0996bb4b420630800ad34e828fd1b6"> 898 A-29833954</a> 899 </td> 900 <td></td> 901 <td></td> 902 <td>4.4.45.0.25.1.16.06.0.17.0</td> 903 <td>2016 6 28 </td> 904 </tr> 905 </table> 906 <h3 id="eop-in-aosp-launcher">AOSP </h3> 907 <p> 908 AOSP () 909 </p> 910 <table> 911 <col width="18%"> 912 <col width="18%"> 913 <col width="10%"> 914 <col width="19%"> 915 <col width="17%"> 916 <col width="17%"> 917 <tr> 918 <th>CVE</th> 919 <th></th> 920 <th></th> 921 <th> Google </th> 922 <th> AOSP </th> 923 <th></th> 924 </tr> 925 <tr> 926 <td>CVE-2016-6716</td> 927 <td><a href="https://android.googlesource.com/platform/packages/apps/Launcher3/+/e83fc11c982e67dd0181966f5f3a239ea6b14924"> 928 A-30778130</a> 929 </td> 930 <td></td> 931 <td></td> 932 <td>7.0</td> 933 <td>2016 8 5 </td> 934 </tr> 935 </table> 936 <h3 id="eop-in-mediaserver-1"></h3> 937 <p> 938 </p> 939 <table> 940 <col width="18%"> 941 <col width="18%"> 942 <col width="10%"> 943 <col width="19%"> 944 <col width="17%"> 945 <col width="17%"> 946 <tr> 947 <th>CVE</th> 948 <th></th> 949 <th></th> 950 <th> Google </th> 951 <th> AOSP </th> 952 <th></th> 953 </tr> 954 <tr> 955 <td>CVE-2016-6717</td> 956 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/45d9bbabbe7920bf4e0a68074b97d8260aef2e07"> 957 A-31350239</a> 958 </td> 959 <td></td> 960 <td></td> 961 <td>4.4.45.0.25.1.16.06.0.17.0</td> 962 <td>2016 9 7 </td> 963 </tr> 964 </table> 965 <h3 id="eop-in-account-manager-service"></h3> 966 <p> 967 () 968 </p> 969 <table> 970 <col width="18%"> 971 <col width="18%"> 972 <col width="10%"> 973 <col width="19%"> 974 <col width="17%"> 975 <col width="17%"> 976 <tr> 977 <th>CVE</th> 978 <th></th> 979 <th></th> 980 <th> Google </th> 981 <th> AOSP </th> 982 <th></th> 983 </tr> 984 <tr> 985 <td>CVE-2016-6718</td> 986 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/fecfd550edeca422c0d9f32a9c0abe73398a1ff1"> 987 A-30455516</a> 988 </td> 989 <td></td> 990 <td></td> 991 <td>7.0</td> 992 <td>Google </td> 993 </tr> 994 </table> 995 <h3 id="eop-in-bluetooth"></h3> 996 <p> 997 () 998 </p> 999 <table> 1000 <col width="18%"> 1001 <col width="18%"> 1002 <col width="10%"> 1003 <col width="19%"> 1004 <col width="17%"> 1005 <col width="17%"> 1006 <tr> 1007 <th>CVE</th> 1008 <th></th> 1009 <th></th> 1010 <th> Google </th> 1011 <th> AOSP </th> 1012 <th></th> 1013 </tr> 1014 <tr> 1015 <td>CVE-2016-6719</td> 1016 <td><a href="https://android.googlesource.com/platform/packages/apps/Bluetooth/+/e1b6db10e913c09d0b695368336137f6aabee462"> 1017 A-29043989</a> 1018 [<a href="https://android.googlesource.com/platform/frameworks/base/+/b1dc1757071ba46ee653d68f331486e86778b8e4">2</a>] 1019 </td> 1020 <td></td> 1021 <td></td> 1022 <td>4.4.45.0.25.1.16.06.0.17.0</td> 1023 <td>Google </td> 1024 </tr> 1025 </table> 1026 <h3 id="id-in-mediaserver"></h3> 1027 <p> 1028 1029 </p> 1030 <table> 1031 <col width="18%"> 1032 <col width="18%"> 1033 <col width="10%"> 1034 <col width="19%"> 1035 <col width="17%"> 1036 <col width="17%"> 1037 <tr> 1038 <th>CVE</th> 1039 <th></th> 1040 <th></th> 1041 <th> Google </th> 1042 <th> AOSP </th> 1043 <th></th> 1044 </tr> 1045 <tr> 1046 <td>CVE-2016-6720</td> 1047 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/0f177948ae2640bfe4d70f8e4248e106406b3b0a"> 1048 A-29422020</a> 1049 [<a href="https://android.googlesource.com/platform/frameworks/av/+/2c75e1c3b98e4e94f50c63e2b7694be5f948477c">2</a>] 1050 [<a href="https://android.googlesource.com/platform/frameworks/av/+/7c88b498fda1c2b608a9dd73960a2fd4d7b7e3f7">3</a>] 1051 [<a href="https://android.googlesource.com/platform/frameworks/av/+/640b04121d7cd2cac90e2f7c82b97fce05f074a5">4</a>]</td> 1052 <td></td> 1053 <td></td> 1054 <td>4.4.45.0.25.1.16.06.0.17.0</td> 1055 <td>2016 6 15 </td> 1056 </tr> 1057 <tr> 1058 <td>CVE-2016-6721</td> 1059 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/f6bf0102bdc1adff973e08d8ce9c869c4e2efade"> 1060 A-30875060</a></td> 1061 <td></td> 1062 <td></td> 1063 <td>6.06.0.17.0</td> 1064 <td>2016 8 13 </td> 1065 </tr> 1066 <tr> 1067 <td>CVE-2016-6722</td> 1068 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/89c03b3b9ff74a507a8b8334c50b08b334483556"> 1069 A-31091777</a></td> 1070 <td></td> 1071 <td></td> 1072 <td>4.4.45.0.25.1.16.06.0.17.0</td> 1073 <td>2016 8 23 </td> 1074 </tr> 1075 </table> 1076 <h3 id="dos-in-proxy-auto-config">Proxy </h3> 1077 <p> 1078 Proxy 1079 </p> 1080 <table> 1081 <col width="18%"> 1082 <col width="18%"> 1083 <col width="10%"> 1084 <col width="19%"> 1085 <col width="17%"> 1086 <col width="17%"> 1087 <tr> 1088 <th>CVE</th> 1089 <th></th> 1090 <th></th> 1091 <th> Google </th> 1092 <th> AOSP </th> 1093 <th></th> 1094 </tr> 1095 <tr> 1096 <td>CVE-2016-6723</td> 1097 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/d5b0d0b1df2e1a7943a4bb2034fd21487edd0264"> 1098 A-30100884</a> 1099 [<a href="https://android.googlesource.com/platform/frameworks/base/+/31f351160cdfd9dbe9919682ebe41bde3bcf91c6">2</a>] 1100 </td> 1101 <td></td> 1102 <td></td> 1103 <td>4.4.45.0.25.1.16.06.0.17.0</td> 1104 <td>2016 7 11 </td> 1105 </tr> 1106 </table> 1107 <h3 id="dos-in-input-manager-service"></h3> 1108 <p> 1109 1110 </p> 1111 <table> 1112 <col width="18%"> 1113 <col width="18%"> 1114 <col width="10%"> 1115 <col width="19%"> 1116 <col width="17%"> 1117 <col width="17%"> 1118 <tr> 1119 <th>CVE</th> 1120 <th></th> 1121 <th></th> 1122 <th> Google </th> 1123 <th> AOSP </th> 1124 <th></th> 1125 </tr> 1126 <tr> 1127 <td>CVE-2016-6724</td> 1128 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/7625010a2d22f8c3f1aeae2ef88dde37cbebd0bf"> 1129 A-30568284</a> 1130 </td> 1131 <td></td> 1132 <td></td> 1133 <td>4.4.45.0.25.1.16.06.0.17.0</td> 1134 <td>Google </td> 1135 </tr> 1136 </table> 1137 <h2 id="2016-11-05-details">2016-11-05 </h2> 1138 <p> 1139 <a href="#2016-11-05-summary">2016-11-05 </a> CVE Google AOSP () ID ( AOSP ) ID </p> 1140 <h3 id="rce-in-qualcomm-crypto-driver">Qualcomm </h3> 1141 <p> 1142 Qualcomm 1143 </p> 1144 <table> 1145 <col width="19%"> 1146 <col width="20%"> 1147 <col width="10%"> 1148 <col width="23%"> 1149 <col width="17%"> 1150 <tr> 1151 <th>CVE</th> 1152 <th></th> 1153 <th></th> 1154 <th> Google </th> 1155 <th></th> 1156 </tr> 1157 <tr> 1158 <td>CVE-2016-6725</td> 1159 <td>A-30515053<br> 1160 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.10/commit/?id=cc95d644ee8a043f2883d65dda20e16f95041de3">QC-CR#1050970</a></td> 1161 <td></td> 1162 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixelPixel XL</td> 1163 <td>2016 7 25 </td> 1164 </tr> 1165 </table> 1166 <h3 id="eop-in-kernel-file-system"></h3> 1167 <p> (Re-flash) 1168 </p> 1169 <table> 1170 <col width="19%"> 1171 <col width="20%"> 1172 <col width="10%"> 1173 <col width="23%"> 1174 <col width="17%"> 1175 <tr> 1176 <th>CVE</th> 1177 <th></th> 1178 <th></th> 1179 <th> Google </th> 1180 <th></th> 1181 </tr> 1182 <tr> 1183 <td>CVE-2015-8961</td> 1184 <td>A-30952474 1185 <br> 1186 <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=6934da9238da947628be83635e365df41064b09b"></a></td> 1187 <td></td> 1188 <td>PixelPixel XL</td> 1189 <td>2015 10 18 </td> 1190 </tr> 1191 <tr> 1192 <td>CVE-2016-7911</td> 1193 <td>A-30946378 1194 <br> 1195 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=8ba8682107ee2ca3347354e018865d8e1967c5f4"></a></td> 1196 <td></td> 1197 <td>Nexus 5XNexus 6Nexus 6PNexus 9Android OnePixel CNexus PlayerPixelPixel XL</td> 1198 <td>2016 7 1 </td> 1199 </tr> 1200 <tr> 1201 <td>CVE-2016-7910</td> 1202 <td>A-30942273 1203 <br> 1204 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=77da160530dd1dc94f6ae15a981f24e5f0021e84"></a></td> 1205 <td></td> 1206 <td>Nexus 5XNexus 6Nexus 6PNexus 9Android OnePixel CNexus PlayerPixelPixel XL</td> 1207 <td>2016 7 29 </td> 1208 </tr> 1209 </table> 1210 <h3 id="eop-in-kernel-scsi-driver"> SCSI </h3> 1211 <p> 1212 SCSI (Re-flash) 1213 </p> 1214 <table> 1215 <col width="19%"> 1216 <col width="20%"> 1217 <col width="10%"> 1218 <col width="23%"> 1219 <col width="17%"> 1220 <tr> 1221 <th>CVE</th> 1222 <th></th> 1223 <th></th> 1224 <th> Google </th> 1225 <th></th> 1226 </tr> 1227 <tr> 1228 <td>CVE-2015-8962</td> 1229 <td>A-30951599 1230 <br> 1231 <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=f3951a3709ff50990bf3e188c27d346792103432"></a></td> 1232 <td></td> 1233 <td>PixelPixel XL</td> 1234 <td>2015 10 30 </td> 1235 </tr> 1236 </table> 1237 <h3 id="eop-in-kernel-media-driver"></h3> 1238 <p> 1239 (Re-flash) 1240 </p> 1241 <table> 1242 <col width="19%"> 1243 <col width="20%"> 1244 <col width="10%"> 1245 <col width="23%"> 1246 <col width="17%"> 1247 <tr> 1248 <th>CVE</th> 1249 <th></th> 1250 <th></th> 1251 <th> Google </th> 1252 <th></th> 1253 </tr> 1254 <tr> 1255 <td>CVE-2016-7913</td> 1256 <td>A-30946097 1257 <br> 1258 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=8dfbcc4351a0b6d2f2d77f367552f48ffefafe18"></a></td> 1259 <td></td> 1260 <td>Nexus 6PAndroid OneNexus PlayerPixelPixel XL</td> 1261 <td>2016 1 28 </td> 1262 </tr> 1263 </table> 1264 <h3 id="eop-in-kernel-usb-driver"> USB </h3> 1265 <p> 1266 USB (Re-flash) 1267 </p> 1268 <table> 1269 <col width="19%"> 1270 <col width="20%"> 1271 <col width="10%"> 1272 <col width="23%"> 1273 <col width="17%"> 1274 <tr> 1275 <th>CVE</th> 1276 <th></th> 1277 <th></th> 1278 <th> Google </th> 1279 <th></th> 1280 </tr> 1281 <tr> 1282 <td>CVE-2016-7912</td> 1283 <td>A-30950866 1284 <br> 1285 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=38740a5b87d53ceb89eb2c970150f6e94e00373a"></a></td> 1286 <td></td> 1287 <td>Pixel CPixelPixel XL</td> 1288 <td>2016 4 14 </td> 1289 </tr> 1290 </table> 1291 <h3 id="eop-in-kernel-ion-subsystem"> ION </h3> 1292 <p> 1293 ION (Re-flash) 1294 </p> 1295 <table> 1296 <col width="19%"> 1297 <col width="20%"> 1298 <col width="10%"> 1299 <col width="23%"> 1300 <col width="17%"> 1301 <tr> 1302 <th>CVE</th> 1303 <th></th> 1304 <th></th> 1305 <th> Google </th> 1306 <th></th> 1307 </tr> 1308 <tr> 1309 <td>CVE-2016-6728</td> 1310 <td>A-30400942*</td> 1311 <td></td> 1312 <td>Nexus 5Nexus 5XNexus 6Nexus 6PNexus 9Nexus PlayerPixel CAndroid One</td> 1313 <td>2016 7 25 </td> 1314 </tr> 1315 </table> 1316 <p>* Google <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> 1317 </p> 1318 <h3 id="eop-in-qualcomm-bootloader">Qualcomm </h3> 1319 <p>Qualcomm (Re-flash) 1320 </p> 1321 <table> 1322 <col width="19%"> 1323 <col width="20%"> 1324 <col width="10%"> 1325 <col width="23%"> 1326 <col width="17%"> 1327 <tr> 1328 <th>CVE</th> 1329 <th></th> 1330 <th></th> 1331 <th> Google </th> 1332 <th></th> 1333 </tr> 1334 <tr> 1335 <td>CVE-2016-6729</td> 1336 <td>A-30977990* 1337 <br> 1338 QC-CR#977684</td> 1339 <td></td> 1340 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixelPixel XL</td> 1341 <td>2016 7 25 </td> 1342 </tr> 1343 </table> 1344 <p>* Google <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> 1345 </p> 1346 <h3 id="eop-in-nvidia-gpu-driver">NVIDIA GPU </h3> 1347 <p> 1348 NVIDIA GPU (Re-flash) 1349 </p> 1350 <table> 1351 <col width="19%"> 1352 <col width="20%"> 1353 <col width="10%"> 1354 <col width="23%"> 1355 <col width="17%"> 1356 <tr> 1357 <th>CVE</th> 1358 <th></th> 1359 <th></th> 1360 <th> Google </th> 1361 <th></th> 1362 </tr> 1363 <tr> 1364 <td>CVE-2016-6730</td> 1365 <td>A-30904789*<br> 1366 N-CVE-2016-6730</td> 1367 <td></td> 1368 <td>Pixel C</td> 1369 <td>2016 8 16 </td> 1370 </tr> 1371 <tr> 1372 <td>CVE-2016-6731</td> 1373 <td>A-30906023*<br> 1374 N-CVE-2016-6731</td> 1375 <td></td> 1376 <td>Pixel C</td> 1377 <td>2016 8 16 </td> 1378 </tr> 1379 <tr> 1380 <td>CVE-2016-6732</td> 1381 <td>A-30906599*<br> 1382 N-CVE-2016-6732</td> 1383 <td></td> 1384 <td>Pixel C</td> 1385 <td>2016 8 16 </td> 1386 </tr> 1387 <tr> 1388 <td>CVE-2016-6733</td> 1389 <td>A-30906694*<br> 1390 N-CVE-2016-6733</td> 1391 <td></td> 1392 <td>Pixel C</td> 1393 <td>2016 8 16 </td> 1394 </tr> 1395 <tr> 1396 <td>CVE-2016-6734</td> 1397 <td>A-30907120*<br> 1398 N-CVE-2016-6734</td> 1399 <td></td> 1400 <td>Pixel C</td> 1401 <td>2016 8 16 </td> 1402 </tr> 1403 <tr> 1404 <td>CVE-2016-6735</td> 1405 <td>A-30907701*<br> 1406 N-CVE-2016-6735</td> 1407 <td></td> 1408 <td>Pixel C</td> 1409 <td>2016 8 16 </td> 1410 </tr> 1411 <tr> 1412 <td>CVE-2016-6736</td> 1413 <td>A-30953284*<br> 1414 N-CVE-2016-6736</td> 1415 <td></td> 1416 <td>Pixel C</td> 1417 <td>2016 8 18 </td> 1418 </tr> 1419 </table> 1420 <p>* Google <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> 1421 </p> 1422 <h3 id="eop-in-kernel-networking-subsystem"></h3> 1423 <p> 1424 (Re-flash) 1425 </p> 1426 <table> 1427 <col width="19%"> 1428 <col width="20%"> 1429 <col width="10%"> 1430 <col width="23%"> 1431 <col width="17%"> 1432 <tr> 1433 <th>CVE</th> 1434 <th></th> 1435 <th></th> 1436 <th> Google </th> 1437 <th></th> 1438 </tr> 1439 <tr> 1440 <td>CVE-2016-6828</td> 1441 <td>A-31183296 1442 <br> 1443 <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/include/net/tcp.h?id=bb1fceca22492109be12640d49f5ea5a544c6bb4"></a></td> 1444 <td></td> 1445 <td>Nexus 5XNexus 6Nexus 6PNexus 9Android OnePixel CNexus PlayerPixelPixel XL</td> 1446 <td>2016 8 18 </td> 1447 </tr> 1448 </table> 1449 <h3 id="eop-in-kernel-sound-subsystem"></h3> 1450 <p> 1451 (Re-flash) 1452 </p> 1453 <table> 1454 <col width="19%"> 1455 <col width="20%"> 1456 <col width="10%"> 1457 <col width="23%"> 1458 <col width="17%"> 1459 <tr> 1460 <th>CVE</th> 1461 <th></th> 1462 <th></th> 1463 <th> Google </th> 1464 <th></th> 1465 </tr> 1466 <tr> 1467 <td>CVE-2016-2184</td> 1468 <td>A-30952477 1469 <br> 1470 <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=836b34a935abc91e13e63053d0a83b24dfb5ea78"></a></td> 1471 <td></td> 1472 <td>Nexus 5XNexus 6Nexus 6PNexus 9Android OnePixel CNexus PlayerPixelPixel XL</td> 1473 <td>2016 3 31 </td> 1474 </tr> 1475 </table> 1476 <h3 id="eop-in-kernel-ion-subsystem-1"> ION </h3> 1477 <p> 1478 ION (Re-flash) 1479 </p> 1480 <table> 1481 <col width="19%"> 1482 <col width="20%"> 1483 <col width="10%"> 1484 <col width="23%"> 1485 <col width="17%"> 1486 <tr> 1487 <th>CVE</th> 1488 <th></th> 1489 <th></th> 1490 <th> Google </th> 1491 <th></th> 1492 </tr> 1493 <tr> 1494 <td>CVE-2016-6737</td> 1495 <td>A-30928456*</td> 1496 <td></td> 1497 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixel CNexus PlayerPixelPixel XL</td> 1498 <td>Google </td> 1499 </tr> 1500 </table> 1501 <p>* Google <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> 1502 </p> 1503 <h3 id="vulnerabilities-in-qualcomm-components">Qualcomm </h3> 1504 <p> 1505 Qualcomm 2016 6 Qualcomm AMSS 80-NV606-17 1506 </p> 1507 <table> 1508 <col width="19%"> 1509 <col width="20%"> 1510 <col width="10%"> 1511 <col width="23%"> 1512 <col width="17%"> 1513 <tr> 1514 <th>CVE</th> 1515 <th></th> 1516 <th>*</th> 1517 <th> Google </th> 1518 <th></th> 1519 </tr> 1520 <tr> 1521 <td>CVE-2016-6727</td> 1522 <td>A-31092400**</td> 1523 <td></td> 1524 <td>Android One</td> 1525 <td>Qualcomm </td> 1526 </tr> 1527 <tr> 1528 <td>CVE-2016-6726</td> 1529 <td>A-30775830**</td> 1530 <td></td> 1531 <td>Nexus 6Android One</td> 1532 <td>Qualcomm </td> 1533 </tr> 1534 </table> 1535 <p>* </p> 1536 <p> 1537 ** Google <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> 1538 </p> 1539 <h3 id="rce-in-expat">Expat </h3> 1540 <p> Expat 1541 Expat XML Expat 1542 </p> 1543 <table> 1544 <col width="18%"> 1545 <col width="18%"> 1546 <col width="10%"> 1547 <col width="19%"> 1548 <col width="17%"> 1549 <col width="17%"> 1550 <tr> 1551 <th>CVE</th> 1552 <th></th> 1553 <th></th> 1554 <th> Google </th> 1555 <th> AOSP </th> 1556 <th></th> 1557 </tr> 1558 1559 <tr> 1560 <td>CVE-2016-0718</td> 1561 <td><a href="https://android.googlesource.com/platform/external/expat/+/52ac633b73856ded34b33bd4adb4ab793bbbe963"> 1562 A-28698301</a></td> 1563 <td></td> 1564 <td>*</td> 1565 <td>4.4.45.0.25.1.16.06.0.1</td> 1566 <td>2016 5 10 </td> 1567 </tr> 1568 <tr> 1569 <td>CVE-2012-6702</td> 1570 <td><a href="https://android.googlesource.com/platform/external/expat/+/a11ff32280a863bff93df13ad643912ad9bf1302"> 1571 A-29149404</a></td> 1572 <td></td> 1573 <td>*</td> 1574 <td>4.4.45.0.25.1.16.06.0.1</td> 1575 <td>2016 3 6 </td> 1576 </tr> 1577 <tr> 1578 <td>CVE-2016-5300</td> 1579 <td><a href="https://android.googlesource.com/platform/external/expat/+/a11ff32280a863bff93df13ad643912ad9bf1302"> 1580 A-29149404</a></td> 1581 <td></td> 1582 <td>*</td> 1583 <td>4.4.45.0.25.1.16.06.0.1</td> 1584 <td>2016 6 4 </td> 1585 </tr> 1586 <tr> 1587 <td>CVE-2015-1283</td> 1588 <td><a href="https://android.googlesource.com/platform/external/expat/+/13b40c2040a17038b63a61e2b112c634da203d3b"> 1589 A-27818751</a></td> 1590 <td></td> 1591 <td>*</td> 1592 <td>4.4.45.0.25.1.16.06.0.1</td> 1593 <td>2015 7 24 </td> 1594 </tr> 1595 </table> 1596 1597 <p> 1598 * Android 7.0 Google () 1599 </p> 1600 <h3 id="rce-in-webview">Webview </h3> 1601 <p>Webview 1602 </p> 1603 <table> 1604 <col width="18%"> 1605 <col width="18%"> 1606 <col width="10%"> 1607 <col width="19%"> 1608 <col width="17%"> 1609 <col width="17%"> 1610 <tr> 1611 <th>CVE</th> 1612 <th></th> 1613 <th></th> 1614 <th> Google </th> 1615 <th> AOSP </th> 1616 <th></th> 1617 </tr> 1618 <tr> 1619 <td>CVE-2016-6754</td> 1620 <td>A-31217937</td> 1621 <td></td> 1622 <td>*</td> 1623 <td>5.0.25.1.16.06.0.1</td> 1624 <td>2016 8 23 </td> 1625 </tr> 1626 </table> 1627 <p> 1628 * Android 7.0 Google () 1629 </p> 1630 <h3 id="rce-in-freetype">Freetype </h3> 1631 <p> 1632 Freetype Freetype 1633 </p> 1634 <table> 1635 <col width="18%"> 1636 <col width="18%"> 1637 <col width="10%"> 1638 <col width="19%"> 1639 <col width="17%"> 1640 <col width="17%"> 1641 <tr> 1642 <th>CVE</th> 1643 <th></th> 1644 <th></th> 1645 <th> Google </th> 1646 <th> AOSP </th> 1647 <th></th> 1648 </tr> 1649 <tr> 1650 <td>CVE-2014-9675</td> 1651 <td><a href="https://android.googlesource.com/platform/external/freetype/+/f720f0dbcf012d6c984dbbefa0875ef9840458c6"> 1652 A-24296662</a> 1653 [<a href="https://android.googlesource.com/platform/external/pdfium/+/96f965ff7411f1edba72140fd70740e63cabec71">2</a>] 1654 </td> 1655 <td></td> 1656 <td>*</td> 1657 <td>4.4.45.0.25.1.16.06.0.1</td> 1658 <td>Google </td> 1659 </tr> 1660 </table> 1661 <p> 1662 * Android 7.0 Google () 1663 </p> 1664 <h3 id="eop-in-kernel-performance-subsystem"></h3> 1665 <p> 1666 1667 </p> 1668 <table> 1669 <col width="19%"> 1670 <col width="20%"> 1671 <col width="10%"> 1672 <col width="23%"> 1673 <col width="17%"> 1674 <tr> 1675 <th>CVE</th> 1676 <th></th> 1677 <th></th> 1678 <th> Google </th> 1679 <th></th> 1680 </tr> 1681 <tr> 1682 <td>CVE-2015-8963</td> 1683 <td>A-30952077 1684 <br> 1685 <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=12ca6ad2e3a896256f086497a7c7406a547ee373"></a></td> 1686 <td></td> 1687 <td>Nexus 5XNexus 6Nexus 6PNexus 9Android OnePixel CNexus PlayerPixelPixel XL</td> 1688 <td>2015 12 15 </td> 1689 </tr> 1690 </table> 1691 <h3 id="eop-in-kernel-system-call-auditing-subsystem"></h3> 1692 <p> 1693 </p> 1694 <table> 1695 <col width="19%"> 1696 <col width="20%"> 1697 <col width="10%"> 1698 <col width="23%"> 1699 <col width="17%"> 1700 <tr> 1701 <th>CVE</th> 1702 <th></th> 1703 <th></th> 1704 <th> Google </th> 1705 <th></th> 1706 </tr> 1707 <tr> 1708 <td>CVE-2016-6136</td> 1709 <td>A-30956807 1710 <br> 1711 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=43761473c254b45883a64441dd0bc85a42f3645c"></a></td> 1712 <td></td> 1713 <td>Android OnePixel CNexus Player</td> 1714 <td>2016 7 1 </td> 1715 </tr> 1716 </table> 1717 <h3 id="eop-in-qualcomm-crypto-engine-driver">Qualcomm </h3> 1718 <p> 1719 Qualcomm 1720 </p> 1721 <table> 1722 <col width="19%"> 1723 <col width="20%"> 1724 <col width="10%"> 1725 <col width="23%"> 1726 <col width="17%"> 1727 <tr> 1728 <th>CVE</th> 1729 <th></th> 1730 <th></th> 1731 <th> Google </th> 1732 <th></th> 1733 </tr> 1734 <tr> 1735 <td>CVE-2016-6738</td> 1736 <td>A-30034511 1737 <br> 1738 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=a829c54236b455885c3e9c7c77ac528b62045e79">QC-CR#1050538</a></td> 1739 <td></td> 1740 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixelPixel XL</td> 1741 <td>2016 7 7 </td> 1742 </tr> 1743 </table> 1744 <h3 id="eop-in-qualcomm-camera-driver">Qualcomm </h3> 1745 <p> 1746 Qualcomm 1747 </p> 1748 <table> 1749 <col width="19%"> 1750 <col width="20%"> 1751 <col width="10%"> 1752 <col width="23%"> 1753 <col width="17%"> 1754 <tr> 1755 <th>CVE</th> 1756 <th></th> 1757 <th></th> 1758 <th> Google </th> 1759 <th></th> 1760 </tr> 1761 <tr> 1762 <td>CVE-2016-6739</td> 1763 <td>A-30074605*<br> 1764 QC-CR#1049826</td> 1765 <td></td> 1766 <td>Nexus 5XNexus 6PPixelPixel XL</td> 1767 <td>2016 7 11 </td> 1768 </tr> 1769 <tr> 1770 <td>CVE-2016-6740</td> 1771 <td>A-30143904 1772 <br> 1773 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.10/commit/?id=ef78bd62f0c064ae4c827e158d828b2c110ebcdc">QC-CR#1056307</a></td> 1774 <td></td> 1775 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixelPixel XL</td> 1776 <td>2016 7 12 </td> 1777 </tr> 1778 <tr> 1779 <td>CVE-2016-6741</td> 1780 <td>A-30559423 1781 <br> 1782 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=d291eebd8e43bba3229ae7ef9146a132894dc293">QC-CR#1060554</a></td> 1783 <td></td> 1784 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixelPixel XL</td> 1785 <td>2016 7 28 </td> 1786 </tr> 1787 </table> 1788 <p>* Google <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> 1789 </p> 1790 <h3 id="eop-in-qualcomm-bus-driver">Qualcomm </h3> 1791 <p> 1792 Qualcomm 1793 </p> 1794 <table> 1795 <col width="19%"> 1796 <col width="20%"> 1797 <col width="10%"> 1798 <col width="23%"> 1799 <col width="17%"> 1800 <tr> 1801 <th>CVE</th> 1802 <th></th> 1803 <th></th> 1804 <th> Google </th> 1805 <th></th> 1806 </tr> 1807 <tr> 1808 <td>CVE-2016-3904</td> 1809 <td>A-30311977 1810 <br> 1811 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=069683407ca9a820d05c914b57c587bcd3f16a3a">QC-CR#1050455</a></td> 1812 <td></td> 1813 <td>Nexus 5XNexus 6PPixelPixel XL</td> 1814 <td>2016 7 22 </td> 1815 </tr> 1816 </table> 1817 <h3 id="eop-in-synaptics-touchscreen-driver">Synaptics </h3> 1818 <p>Synaptics 1819 </p> 1820 <table> 1821 <col width="19%"> 1822 <col width="20%"> 1823 <col width="10%"> 1824 <col width="23%"> 1825 <col width="17%"> 1826 <tr> 1827 <th>CVE</th> 1828 <th></th> 1829 <th></th> 1830 <th> Google </th> 1831 <th></th> 1832 </tr> 1833 <tr> 1834 <td>CVE-2016-6742</td> 1835 <td>A-30799828*</td> 1836 <td></td> 1837 <td>Nexus 5XAndroid One</td> 1838 <td>2016 8 9 </td> 1839 </tr> 1840 <tr> 1841 <td>CVE-2016-6744</td> 1842 <td>A-30970485*</td> 1843 <td></td> 1844 <td>Nexus 5X</td> 1845 <td>2016 8 19 </td> 1846 </tr> 1847 <tr> 1848 <td>CVE-2016-6745</td> 1849 <td>A-31252388*</td> 1850 <td></td> 1851 <td>Nexus 5XNexus 6PNexus 9Android OnePixelPixel XL</td> 1852 <td>2016 9 1 </td> 1853 </tr> 1854 <tr> 1855 <td>CVE-2016-6743</td> 1856 <td>A-30937462*</td> 1857 <td></td> 1858 <td>Nexus 9Android One</td> 1859 <td>Google </td> 1860 </tr> 1861 </table> 1862 <p>* Google <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> 1863 </p> 1864 <h3 id="id-in-kernel-components"></h3> 1865 <p> 1866 () 1867 </p> 1868 <table> 1869 <col width="19%"> 1870 <col width="20%"> 1871 <col width="10%"> 1872 <col width="23%"> 1873 <col width="17%"> 1874 <tr> 1875 <th>CVE</th> 1876 <th></th> 1877 <th></th> 1878 <th> Google </th> 1879 <th></th> 1880 </tr> 1881 <tr> 1882 <td>CVE-2015-8964</td> 1883 <td>A-30951112 1884 <br> 1885 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=dd42bf1197144ede075a9d4793123f7689e164bc"></a></td> 1886 <td></td> 1887 <td>Nexus 5XNexus 6Nexus 6PNexus 9Android OnePixel CNexus PlayerPixelPixel XL</td> 1888 <td>2015 11 27 </td> 1889 </tr> 1890 <tr> 1891 <td>CVE-2016-7915</td> 1892 <td>A-30951261 1893 <br> 1894 <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=50220dead1650609206efe91f0cc116132d59b3f"></a></td> 1895 <td></td> 1896 <td>Nexus 5XNexus 6Nexus 6PNexus 9Android OnePixel CNexus PlayerPixelPixel XL</td> 1897 <td>2016 1 19 </td> 1898 </tr> 1899 <tr> 1900 <td>CVE-2016-7914</td> 1901 <td>A-30513364 1902 <br> 1903 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=8d4a2ec1e0b41b0cf9a0c5cd4511da7f8e4f3de2"></a></td> 1904 <td></td> 1905 <td>Pixel CPixelPixel XL</td> 1906 <td>2016 4 6 </td> 1907 </tr> 1908 <tr> 1909 <td>CVE-2016-7916</td> 1910 <td>A-30951939 1911 <br> 1912 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=8148a73c9901a8794a50f950083c00ccf97d43b3"></a></td> 1913 <td></td> 1914 <td>Nexus 5XNexus 6Nexus 6PNexus 9Android OnePixel CNexus PlayerPixelPixel XL</td> 1915 <td>2016 5 5 </td> 1916 </tr> 1917 </table> 1918 <h3 id="id-in-nvidia-gpu-driver">NVIDIA GPU </h3> 1919 <p> 1920 NVIDIA GPU 1921 </p> 1922 <table> 1923 <col width="19%"> 1924 <col width="20%"> 1925 <col width="10%"> 1926 <col width="23%"> 1927 <col width="17%"> 1928 <tr> 1929 <th>CVE</th> 1930 <th></th> 1931 <th></th> 1932 <th> Google </th> 1933 <th></th> 1934 </tr> 1935 <tr> 1936 <td>CVE-2016-6746</td> 1937 <td>A-30955105*<br> 1938 N-CVE-2016-6746</td> 1939 <td></td> 1940 <td>Pixel C</td> 1941 <td>2016 8 18 </td> 1942 </tr> 1943 </table> 1944 <p>* Google <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> 1945 </p> 1946 <h3 id="dos-in-mediaserver-1"></h3> 1947 <p> 1948 1949 </p> 1950 <table> 1951 <col width="19%"> 1952 <col width="20%"> 1953 <col width="10%"> 1954 <col width="23%"> 1955 <col width="17%"> 1956 <tr> 1957 <th>CVE</th> 1958 <th></th> 1959 <th></th> 1960 <th> Google </th> 1961 <th></th> 1962 </tr> 1963 <tr> 1964 <td>CVE-2016-6747</td> 1965 <td>A-31244612*<br> 1966 N-CVE-2016-6747</td> 1967 <td></td> 1968 <td>Nexus 9</td> 1969 <td>Google </td> 1970 </tr> 1971 </table> 1972 <p>* Google <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> 1973 </p> 1974 <h3 id="id-in-kernel-components-1"></h3> 1975 <p> 1976 () 1977 </p> 1978 <table> 1979 <col width="19%"> 1980 <col width="20%"> 1981 <col width="10%"> 1982 <col width="23%"> 1983 <col width="17%"> 1984 <tr> 1985 <th>CVE</th> 1986 <th></th> 1987 <th></th> 1988 <th> Google </th> 1989 <th></th> 1990 </tr> 1991 <tr> 1992 <td>CVE-2016-7917</td> 1993 <td>A-30947055 1994 <br> 1995 <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=c58d6c93680f28ac58984af61d0a7ebf4319c241"></a></td> 1996 <td></td> 1997 <td>Pixel CPixelPixel XL</td> 1998 <td>2016 2 2 </td> 1999 </tr> 2000 <tr> 2001 <td>CVE-2016-6753</td> 2002 <td>A-30149174*</td> 2003 <td></td> 2004 <td>Nexus 5XNexus 6Nexus 6PNexus 9Pixel CNexus PlayerPixelPixel XL</td> 2005 <td>2016 7 13 </td> 2006 </tr> 2007 </table> 2008 <p>* Google <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> 2009 </p> 2010 <h3 id="id-in-qualcomm-components">Qualcomm </h3> 2011 <p> 2012 Qualcomm ( GPU SMSM ) 2013 </p> 2014 <table> 2015 <col width="19%"> 2016 <col width="20%"> 2017 <col width="10%"> 2018 <col width="23%"> 2019 <col width="17%"> 2020 <tr> 2021 <th>CVE</th> 2022 <th></th> 2023 <th></th> 2024 <th> Google </th> 2025 <th></th> 2026 </tr> 2027 <tr> 2028 <td>CVE-2016-6748</td> 2029 <td>A-30076504 2030 <br> 2031 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.10/commit/?id=be651d020b122a1ba9410d23ca4ebbe9f5598df6">QC-CR#987018</a></td> 2032 <td></td> 2033 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixelPixel XL</td> 2034 <td>2016 7 12 </td> 2035 </tr> 2036 <tr> 2037 <td>CVE-2016-6749</td> 2038 <td>A-30228438 2039 <br> 2040 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.10/commit/?id=f9185dc83b92e7d1ee341e32e8cf5ed00a7253a7">QC-CR#1052818</a></td> 2041 <td></td> 2042 <td>Nexus 5XNexus 6PPixelPixel XL</td> 2043 <td>2016 7 12 </td> 2044 </tr> 2045 <tr> 2046 <td>CVE-2016-6750</td> 2047 <td>A-30312054 2048 <br> 2049 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=34bda711a1c7bc7f9fd7bea3a5be439ed00577e5">QC-CR#1052825</a></td> 2050 <td></td> 2051 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixelPixel XL</td> 2052 <td>2016 7 21 </td> 2053 </tr> 2054 <tr> 2055 <td>CVE-2016-3906</td> 2056 <td>A-30445973 2057 <br> 2058 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=b333d32745fec4fb1098ee1a03d4425f3c1b4c2e">QC-CR#1054344</a></td> 2059 <td></td> 2060 <td>Nexus 5XNexus 6P</td> 2061 <td>2016 7 27 </td> 2062 </tr> 2063 <tr> 2064 <td>CVE-2016-3907</td> 2065 <td>A-30593266 2066 <br> 2067 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.10/commit/?id=744330f4e5d70dce71c4c9e03c5b6a8b59bb0cda">QC-CR#1054352</a></td> 2068 <td></td> 2069 <td>Nexus 5XNexus 6PPixelPixel XL</td> 2070 <td>2016 8 2 </td> 2071 </tr> 2072 <tr> 2073 <td>CVE-2016-6698</td> 2074 <td>A-30741851 2075 <br> 2076 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.10/commit/?id=de90beb76ad0b80da821c3b857dd30cd36319e61">QC-CR#1058826</a></td> 2077 <td></td> 2078 <td>Nexus 5XNexus 6PAndroid OnePixelPixel XL</td> 2079 <td>2016 8 2 </td> 2080 </tr> 2081 <tr> 2082 <td>CVE-2016-6751</td> 2083 <td>A-30902162*<br> 2084 QC-CR#1062271</td> 2085 <td></td> 2086 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixelPixel XL</td> 2087 <td>2016 8 15 </td> 2088 </tr> 2089 <tr> 2090 <td>CVE-2016-6752</td> 2091 <td>A-31498159 2092 <br> 2093 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?h=0de2c7600c8f1f0152a2f421c6593f931186400a">QC-CR#987051</a></td> 2094 <td></td> 2095 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixelPixel XL</td> 2096 <td>Google </td> 2097 </tr> 2098 </table> 2099 <p>* Google <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> 2100 </p> 2101 2102 <h2 id="2016-11-06-details">2016-11-06 </h2> 2103 <p> 2104 <a href="#2016-11-06-summary">2016-11-06 </a> CVE Google AOSP () ID ( AOSP ) ID </p> 2105 <h3 id="eop-in-kernel-memory-subsystem"></h3> 2106 <p> 2107 (Re-flash) 2108 </p> 2109 <p> 2110 <strong></strong>2016 11 6 2016-11-01 2016-11-05 2111 </p> 2112 <table> 2113 <tr> 2114 <th>CVE</th> 2115 <th></th> 2116 <th></th> 2117 <th></th> 2118 <th></th> 2119 </tr> 2120 <tr> 2121 <td>CVE-2016-5195</td> 2122 <td>A-32141528<br> 2123 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=9691eac5593ff1e2f82391ad327f21d90322aec1"></a> 2124 [<a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=e45a502bdeae5a075257c4f061d1ff4ff0821354">2</a>]</td> 2125 <td></td> 2126 <td>3.103.18</td> 2127 <td>2016 10 12 </td> 2128 </tr> 2129 </table> 2130 <h2 id="common-questions-and-answers"></h2> 2131 <p> 2132 </p> 2133 <p> 2134 <strong>1. </strong> 2135 </p> 2136 <p> 2137 <a href="https://support.google.com/pixelphone/answer/4457705#pixel_phones&nexus_devices">Pixel 2138 Nexus </a> 2139 </p> 2140 <ul> 2141 <li>2016 11 1 2016-11-01 </li> 2142 <li>2016 11 5 2016-11-05 </li> 2143 <li>2016 11 6 2016-11-06 </li> 2144 </ul> 2145 <p> 2146 2147 </p> 2148 <ul> 2149 <li>[ro.build.version.security_patch]:[2016-11-01]</li> 2150 <li>[ro.build.version.security_patch]:[2016-11-05]</li> 2151 <li>[ro.build.version.security_patch]:[2016-11-06]</li> 2152 </ul> 2153 <p> 2154 <strong>2. </strong> 2155 </p> 2156 <p> 2157 Android Android Android 2158 </p> 2159 <ul> 2160 <li> 2016 11 1 </li> 2161 <li> 2016 11 5 () </li> 2162 <li> 2016 11 6 () </li> 2163 </ul> 2164 <p> 2165 2166 </p> 2167 <p id="google-devices"> 2168 <strong>3. Google </strong> 2169 </p> 2170 <p> <a href="#2016-11-01-details">2016-11-01</a><a href="#2016-11-05-details">2016-11-05</a> <a href="#2016-11-06-details">2016-11-06</a> Google <em></em> Google </p> 2171 <ul> 2172 <li><strong> Google </strong> Nexus Pixel Google <em></em><a href="https://support.google.com/pixelphone/answer/4457705#pixel_phones&nexus_devices"></a>Nexus 5Nexus 5XNexus 6Nexus 6PNexus 7 (2013)Nexus 9Android OneNexus PlayerPixel CPixel Pixel XL</li> 2173 <li><strong> Google </strong> Google Google <em></em> Google </li> 2174 <li><strong> Google </strong> Android 7.0 Google Google <em></em></li> 2175 </ul> 2176 <p> 2177 <strong>4. </strong> 2178 </p> 2179 <p><em></em> 2180 </p> 2181 <table> 2182 <tr> 2183 <th></th> 2184 <th></th> 2185 </tr> 2186 <tr> 2187 <td>A-</td> 2188 <td>Android ID</td> 2189 </tr> 2190 <tr> 2191 <td>QC-</td> 2192 <td>Qualcomm </td> 2193 </tr> 2194 <tr> 2195 <td>M-</td> 2196 <td>MediaTek </td> 2197 </tr> 2198 <tr> 2199 <td>N-</td> 2200 <td>NVIDIA </td> 2201 </tr> 2202 <tr> 2203 <td>B-</td> 2204 <td>Broadcom </td> 2205 </tr> 2206 </table> 2207 2208 <h2 id="revisions"></h2> 2209 <ul> 2210 <li>2016 11 7 </li> 2211 <li>11 8 AOSP CVE-2016-6709 </li> 2212 </ul> 2213
