1 <html devsite> 2 <head> 3 <title>Nexus - 2015 11 </title> 4 <meta name="project_path" value="/_project.yaml" /> 5 <meta name="book_path" value="/_book.yaml" /> 6 </head> 7 <body> 8 <!-- 9 Copyright 2017 The Android Open Source Project 10 11 Licensed under the Apache License, Version 2.0 (the "License"); 12 you may not use this file except in compliance with the License. 13 You may obtain a copy of the License at 14 15 http://www.apache.org/licenses/LICENSE-2.0 16 17 Unless required by applicable law or agreed to in writing, software 18 distributed under the License is distributed on an "AS IS" BASIS, 19 WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 20 See the License for the specific language governing permissions and 21 limitations under the License. 22 --> 23 24 25 26 <p> 27 <em> 28 2015 11 2 29 </em> 30 </p> 31 <p> 32 Android Nexus OTANexus 33 <a href="https://developers.google.com/android/nexus/images"> 34 Google 35 </a> 36 LMY48X Android Marshmallow 2015 11 1 37 <a href="http://source.android.com/security/bulletin/2015-11-01.html#common_questions_and_answers"> 38 39 </a> 40 41 </p> 42 <p> 43 2015 10 5 48 Android AOSPAOSP 44 </p> 45 <p> 46 MMS 47 </p> 48 <p> 49 50 <a href="http://source.android.com/security/bulletin/2015-11-01.html#mitigations"> 51 Android 52 </a> 53 SafetyNet 54 <a href="http://source.android.com/security/enhancements/index.html"> 55 56 </a> 57 Android 58 </p> 59 <h2 id="security_vulnerability_summary" style="margin-bottom:0px"> 60 61 </h2> 62 <hr/> 63 <p> 64 CVE 65 <a href="http://source.android.com/security/overview/updates-resources.html#severity"> 66 67 </a> 68 69 </p> 70 <table> 71 <tbody> 72 <tr> 73 <th> 74 75 </th> 76 <th> 77 CVE 78 </th> 79 <th> 80 81 </th> 82 </tr> 83 <tr> 84 <td> 85 86 </td> 87 <td> 88 CVE-2015-6608 89 </td> 90 <td> 91 92 </td> 93 </tr> 94 <tr> 95 <td> 96 libutils 97 </td> 98 <td> 99 CVE-2015-6609 100 </td> 101 <td> 102 103 </td> 104 </tr> 105 <tr> 106 <td> 107 108 </td> 109 <td> 110 CVE-2015-6611 111 </td> 112 <td> 113 114 </td> 115 </tr> 116 <tr> 117 <td> 118 libstagefright 119 </td> 120 <td> 121 CVE-2015-6610 122 </td> 123 <td> 124 125 </td> 126 </tr> 127 <tr> 128 <td> 129 libmedia 130 </td> 131 <td> 132 CVE-2015-6612 133 </td> 134 <td> 135 136 </td> 137 </tr> 138 <tr> 139 <td> 140 Bluetooth 141 </td> 142 <td> 143 CVE-2015-6613 144 </td> 145 <td> 146 147 </td> 148 </tr> 149 <tr> 150 <td> 151 152 </td> 153 <td> 154 CVE-2015-6614 155 </td> 156 <td> 157 158 </td> 159 </tr> 160 </tbody> 161 </table> 162 <p> 163 <a href="http://source.android.com/security/overview/updates-resources.html#severity"> 164 165 </a> 166 167 </p> 168 <h2 id="mitigations" style="margin-bottom:0px"> 169 170 </h2> 171 <hr/> 172 <p> 173 174 <a href="http://source.android.com/security/enhancements/index.html"> 175 Android 176 </a> 177 SafetyNet Android 178 </p> 179 <ul> 180 <li> 181 Android Android Android 182 </li> 183 <li> 184 Android SafetyNet Google Play Google Play 185 </li> 186 <li> 187 Google 188 </li> 189 </ul> 190 <h2 id="acknowledgements" style="margin-bottom:0px"> 191 192 </h2> 193 <hr/> 194 <p> 195 196 </p> 197 <ul> 198 <li> 199 Google Chrome Abhishek AryaOliver ChangMartin Barbella: CVE-2015-6608 200 </li> 201 <li> 202 Copperhead Security Daniel Micaydaniel.micay (a] copperhead.co: CVE-2015-6609 203 </li> 204 <li> 205 System Security LabKAIST Dongkwan Kimdkay (a] kaist.ac.kr: CVE-2015-6614 206 </li> 207 <li> 208 System Security LabKAIST Hongil Kimhongilk (a] kaist.ac.kr: CVE-2015-6614 209 </li> 210 <li> 211 Trend Micro Jack Tang@jacktang310: CVE-2015-6611 212 </li> 213 <li> 214 Trend Micro Peter Pi: CVE-2015-6611 215 </li> 216 <li> 217 Google Project Zero Natalie Silvanovich: CVE-2015-6608 218 </li> 219 <li> 220 KeenTeam@K33nTeamhttp://k33nteam.org/ Qidan He@flanker_hqdWen Xu@antlr7: CVE-2015-6612 221 </li> 222 <li> 223 Trend Micro Seven Shen: CVE-2015-6610 224 </li> 225 </ul> 226 <h2 id="security_vulnerability_details" style="margin-bottom:0px"> 227 228 </h2> 229 <hr/> 230 <p> 231 232 <a href="http://source.android.com/security/bulletin/2015-11-01.html#security_vulnerability_summary"> 233 234 </a> 235 CVE ID AOSP ID AOSP 236 </p> 237 <h3 id="remote_code_execution_vulnerabilities_in_mediaserver"> 238 239 </h3> 240 <p> 241 242 </p> 243 <p> 244 MMS 245 </p> 246 <p> 247 248 </p> 249 <table> 250 <tbody> 251 <tr> 252 <th> 253 CVE 254 </th> 255 <th> 256 AOSP 257 </th> 258 <th> 259 260 </th> 261 <th> 262 263 </th> 264 <th> 265 266 </th> 267 </tr> 268 <tr> 269 <td rowspan="6"> 270 CVE-2015-6608 271 </td> 272 <td> 273 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fav/+/8ec845c8fe0f03bc57c901bc484541bdd6a7cf80"> 274 ANDROID-19779574 275 </a> 276 </td> 277 <td rowspan="3"> 278 279 </td> 280 <td rowspan="3"> 281 5.05.16.0 282 </td> 283 <td rowspan="3"> 284 Google 285 </td> 286 </tr> 287 <tr> 288 <td> 289 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fav/+/c6a2815eadfce62702d58b3fa3887f24c49e1864"> 290 ANDROID-23680780 291 </a> 292 </td> 293 </tr> 294 <tr> 295 <td> 296 <a href="https://android.googlesource.com/platform%2Fexternal%2Faac/+/b3c5a4bb8442ab3158fa1f52b790fadc64546f46"> 297 ANDROID-23876444 298 </a> 299 </td> 300 </tr> 301 <tr> 302 <td> 303 <a href="https://android.googlesource.com/platform%2Fexternal%2Ftremolo/+/3830d0b585ada64ee75dea6da267505b19c622fd"> 304 ANDROID-23881715 305 </a> 306 </td> 307 <td> 308 309 </td> 310 <td> 311 4.45.05.16.0 312 </td> 313 <td> 314 Google 315 </td> 316 </tr> 317 <tr> 318 <td> 319 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fav/+/3878b990f7d53eae7c2cf9246b6ef2db5a049872"> 320 ANDROID-14388161 321 </a> 322 </td> 323 <td> 324 325 </td> 326 <td> 327 4.45.1 328 </td> 329 <td> 330 Google 331 </td> 332 </tr> 333 <tr> 334 <td> 335 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fav/+/f3eb82683a80341f5ac23057aab733a57963cab2"> 336 ANDROID-23658148 337 </a> 338 </td> 339 <td> 340 341 </td> 342 <td> 343 5.05.16.0 344 </td> 345 <td> 346 Google 347 </td> 348 </tr> 349 </tbody> 350 </table> 351 <h3 id="remote_code_execution_vulnerability_in_libutils"> 352 libutils 353 </h3> 354 <p> 355 libutils 356 </p> 357 <p> 358 API MMS 359 </p> 360 <table> 361 <tbody> 362 <tr> 363 <th> 364 CVE 365 </th> 366 <th> 367 AOSP 368 </th> 369 <th> 370 371 </th> 372 <th> 373 374 </th> 375 <th> 376 377 </th> 378 </tr> 379 <tr> 380 <td> 381 CVE-2015-6609 382 </td> 383 <td> 384 <a href="https://android.googlesource.com/platform%2Fbootable%2Frecovery/+/ec63d564a86ad5b30f75aa307b4bd271f6a96a56"> 385 ANDROID-22953624 386 </a> 387 [ 388 <a href="https://android.googlesource.com/platform%2Fsystem%2Fcore/+/419e6c3c68413bd6dbb6872340b2ae0d69a0fd60"> 389 2 390 </a> 391 ] 392 </td> 393 <td> 394 395 </td> 396 <td> 397 6.0 398 </td> 399 <td> 400 2015 8 3 401 </td> 402 </tr> 403 </tbody> 404 </table> 405 <h3 id="information_disclosure_vulnerabilities_in_mediaserver"> 406 407 </h3> 408 <p> 409 410 </p> 411 <table> 412 <tbody> 413 <tr> 414 <th> 415 CVE 416 </th> 417 <th> 418 AOSP 419 </th> 420 <th> 421 422 </th> 423 <th> 424 425 </th> 426 <th> 427 428 </th> 429 </tr> 430 <tr> 431 <td rowspan="12"> 432 CVE-2015-6611 433 </td> 434 <td> 435 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fav/+/1c7719820359f4190cd4bfd1a24d521face7b4f8"> 436 ANDROID-23905951 437 </a> 438 [ 439 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fav/+/3b76870d146b1350db8a2f7797e06897c8c92dc2"> 440 2 441 </a> 442 ] 443 [ 444 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fav/+/40715a2ee896edd2df4023d9f6f586977887d34c"> 445 3 446 </a> 447 ] 448 </td> 449 <td rowspan="3"> 450 451 </td> 452 <td rowspan="3"> 453 6.0 454 </td> 455 <td rowspan="3"> 456 2015 9 7 457 </td> 458 </tr> 459 <tr> 460 <td> 461 ANDROID-23912202* 462 </td> 463 </tr> 464 <tr> 465 <td> 466 ANDROID-23953967* 467 </td> 468 </tr> 469 <tr> 470 <td> 471 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fnative/+/b414255f53b560a06e642251535b019327ba0d7b"> 472 ANDROID-23696300 473 </a> 474 </td> 475 <td> 476 477 </td> 478 <td> 479 6.0 480 </td> 481 <td> 482 2015 8 31 483 </td> 484 </tr> 485 <tr> 486 <td> 487 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fav/+/09ed70fab1f1424971ccc105dcdf5be5ce2e2643"> 488 ANDROID-23600291 489 </a> 490 </td> 491 <td> 492 493 </td> 494 <td> 495 6.0 496 </td> 497 <td> 498 2015 8 26 499 </td> 500 </tr> 501 <tr> 502 <td> 503 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fav/+/892354335d49f0b9fcd10e20e0c13e3cd0f1f1cb"> 504 ANDROID-23756261 505 </a> 506 [ 507 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fav/+/a946d844a77906072f5eb7093d41db465d6514bb"> 508 2 509 </a> 510 ] 511 </td> 512 <td> 513 514 </td> 515 <td> 516 6.0 517 </td> 518 <td> 519 2015 8 26 520 </td> 521 </tr> 522 <tr> 523 <td> 524 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fav/+/57bed83a539535bb64a33722fb67231119cb0618"> 525 ANDROID-23540907 526 </a> 527 [ 528 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fav/+/25a634427dec455b79d73562131985ae85b98c43"> 529 2 530 </a> 531 ] 532 </td> 533 <td> 534 535 </td> 536 <td> 537 5.1 538 </td> 539 <td> 540 2015 8 25 541 </td> 542 </tr> 543 <tr> 544 <td> 545 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fav/+/d53aced041b7214a92b1f2fd5970d895bb9934e5"> 546 ANDROID-23541506 547 </a> 548 </td> 549 <td rowspan="4"> 550 551 </td> 552 <td rowspan="4"> 553 6.0 554 </td> 555 <td rowspan="4"> 556 2015 8 25 557 </td> 558 </tr> 559 <tr> 560 <td> 561 ANDROID-23284974* 562 </td> 563 </tr> 564 <tr> 565 <td> 566 ANDROID-23542351* 567 </td> 568 </tr> 569 <tr> 570 <td> 571 ANDROID-23542352* 572 </td> 573 </tr> 574 <tr> 575 <td> 576 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fav/+/0981df6e3db106bfb7a56a2b668c012fcc34dd2c"> 577 ANDROID-23515142 578 </a> 579 </td> 580 <td> 581 582 </td> 583 <td> 584 5.1 585 </td> 586 <td> 587 2015 8 19 588 </td> 589 </tr> 590 </tbody> 591 </table> 592 <p> 593 * AOSP 594 </p> 595 <h3 id="elevation_of_privilege_vulnerability_in_libstagefright"> 596 libstagefright 597 </h3> 598 <p> 599 libstagefright 600 </p> 601 <table> 602 <tbody> 603 <tr> 604 <th> 605 CVE 606 </th> 607 <th> 608 AOSP 609 </th> 610 <th> 611 612 </th> 613 <th> 614 615 </th> 616 <th> 617 618 </th> 619 </tr> 620 <tr> 621 <td> 622 CVE-2015-6610 623 </td> 624 <td> 625 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fav/+/d26052738f7b095b7e318c8dde7f32db0a48450c"> 626 ANDROID-23707088 627 </a> 628 [ 629 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fav/+/820c105f7a4dc0971ee563caea4c9b346854a2f7"> 630 2 631 </a> 632 ] 633 </td> 634 <td> 635 636 </td> 637 <td> 638 6.0 639 </td> 640 <td> 641 2015 8 19 642 </td> 643 </tr> 644 </tbody> 645 </table> 646 <h3 id="elevation_of_privilege_vulnerability_in_libmedia"> 647 libmedia 648 </h3> 649 <p> 650 libmedia 651 </p> 652 <table> 653 <tbody> 654 <tr> 655 <th> 656 CVE 657 </th> 658 <th> 659 AOSP 660 </th> 661 <th> 662 663 </th> 664 <th> 665 666 </th> 667 <th> 668 669 </th> 670 </tr> 671 <tr> 672 <td> 673 CVE-2015-6612 674 </td> 675 <td> 676 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fav/+/4b219e9e5ab237eec9931497cf10db4d78982d84"> 677 ANDROID-23540426 678 </a> 679 </td> 680 <td> 681 682 </td> 683 <td> 684 6.0 685 </td> 686 <td> 687 2015 8 23 688 </td> 689 </tr> 690 </tbody> 691 </table> 692 <h3 id="elevation_of_privilege_vulnerability_in_bluetooth"> 693 Bluetooth 694 </h3> 695 <p> 696 Bluetooth 697 <a href="http://developer.android.com/guide/topics/manifest/permission-element.html#plevel"> 698 signature 699 </a> 700 701 <a href="http://developer.android.com/guide/topics/manifest/permission-element.html#plevel"> 702 signatureOrSystem 703 </a> 704 705 </p> 706 <table> 707 <tbody> 708 <tr> 709 <th> 710 CVE 711 </th> 712 <th> 713 AOSP 714 </th> 715 <th> 716 717 </th> 718 <th> 719 720 </th> 721 <th> 722 723 </th> 724 </tr> 725 <tr> 726 <td> 727 CVE-2015-6613 728 </td> 729 <td> 730 <a href="https://android.googlesource.com/platform%2Fsystem%2Fbt/+/74dad51510f7d7b05c6617ef88168bf0bbdf3fcd"> 731 ANDROID-24371736 732 </a> 733 </td> 734 <td> 735 736 </td> 737 <td> 738 6.0 739 </td> 740 <td> 741 Google 742 </td> 743 </tr> 744 </tbody> 745 </table> 746 <h3 id="elevation_of_privilege_vulnerability_in_telephony"> 747 748 </h3> 749 <p> 750 751 <a href="http://developer.android.com/guide/topics/manifest/permission-element.html#plevel"> 752 753 </a> 754 755 </p> 756 <table> 757 <tbody> 758 <tr> 759 <th> 760 CVE 761 </th> 762 <th> 763 AOSP 764 </th> 765 <th> 766 767 </th> 768 <th> 769 770 </th> 771 <th> 772 773 </th> 774 </tr> 775 <tr> 776 <td> 777 CVE-2015-6614 778 </td> 779 <td> 780 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fopt%2Ftelephony/+/70dd1f77873913635288e513564a6c93ae4d0a26"> 781 ANDROID-21900139 782 </a> 783 [ 784 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fbase/+/a12044215b1148826ea9a88d5d1102378b13922f"> 785 2 786 </a> 787 ] 788 [ 789 <a href="https://android.googlesource.com/platform%2Fframeworks%2Fbase/+/2b6af396ad14def9a967f62cccc87ee715823bb1"> 790 3 791 </a> 792 ] 793 </td> 794 <td> 795 796 </td> 797 <td> 798 5.05.1 799 </td> 800 <td> 801 2015 6 8 802 </td> 803 </tr> 804 </tbody> 805 </table> 806 <h3 id="common_questions_and_answers"> 807 808 </h3> 809 <p> 810 811 </p> 812 <p> 813 <strong> 814 1. 815 </strong> 816 </p> 817 <p> 818 LMY48X Android Marshmallow 2015 11 1 819 <a href="https://support.google.com/nexus/answer/4457705"> 820 Nexus 821 </a> 822 [ro.build.version.security_patch]:[2015-11-01] 823 </p> 824 <h2 id="revisions" style="margin-bottom:0px"> 825 826 </h2> 827 <hr/> 828 <ul> 829 <li> 830 2015 11 2 : 831 </li> 832 </ul> 833 </div> 834 <div class="content-footer-sac" itemscope="" itemtype="http://schema.org/SiteNavigationElement"> 835 <div class="layout-content-col col-9" style="padding-top:4px"> 836 </div> 837 <div class="paging-links layout-content-col col-4"> 838 </div> 839 </div> 840 </div> 841 842 </body> 843 </html> 844
