1 <html devsite> 2 <head> 3 <title>Android - 2016 9 </title> 4 <meta name="project_path" value="/_project.yaml" /> 5 <meta name="book_path" value="/_book.yaml" /> 6 </head> 7 <body> 8 <!-- 9 Copyright 2017 The Android Open Source Project 10 11 Licensed under the Apache License, Version 2.0 (the "License"); 12 you may not use this file except in compliance with the License. 13 You may obtain a copy of the License at 14 15 http://www.apache.org/licenses/LICENSE-2.0 16 17 Unless required by applicable law or agreed to in writing, software 18 distributed under the License is distributed on an "AS IS" BASIS, 19 WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 20 See the License for the specific language governing permissions and 21 limitations under the License. 22 --> 23 24 25 <p><em>2016 9 6 | 2016 9 12 </em> 26 </p> 27 28 <p> 29 Android Android Nexus OTANexus <a href="https://developers.google.com/android/nexus/images">Google </a>2016 9 6 <a href="https://support.google.com/nexus/answer/4457705#nexus_devices"></a> Nexus 2016 9 6 1 OTA 30 </p> 31 32 <p> 33 2016 8 5 Android AOSP AOSP 34 </p> 35 36 <p> 37 MMS 38 </p> 39 40 <p> 41 <a href="/security/enhancements/index.html">Android </a> SafetyNet <a href="#mitigations">Android Google </a>Android 42 </p> 43 44 <p> 45 </p> 46 47 <h2 id="announcements"></h2> 48 <ul> 49 <li>3 Android Android <a href="#common-questions-and-answers"></a> 50 <ul> 51 <li><strong>2016-09-01</strong>: 2016-09-01 52 <li><strong>2016-09-05</strong>: 2016-09-01 2016-09-05 53 <li><strong>2016-09-06</strong>: 2016-09-012016-09-052016-09-06 54 <li> Nexus 2016 9 6 1 OTA </li> 55 </li></li></li></ul> 56 </li> 57 </ul> 58 <h2></h2> 59 <p> 60 CVENexus <a href="/security/overview/updates-resources.html#severity"></a> 61 </p> 62 63 <h3 id="2016-09-01-summary"> 2016-09-01 </h3> 64 <p> 65 2016-09-01 66 </p> 67 68 <table> 69 <col width="55%"> 70 <col width="20%"> 71 <col width="13%"> 72 <col width="12%"> 73 <tr> 74 <th></th> 75 <th>CVE</th> 76 <th></th> 77 <th>Nexus </th> 78 </tr> 79 <tr> 80 <td>LibUtils </td> 81 <td>CVE-2016-3861</td> 82 <td></td> 83 <td></td> 84 </tr> 85 <tr> 86 <td></td> 87 <td>CVE-2016-3862</td> 88 <td></td> 89 <td></td> 90 </tr> 91 <tr> 92 <td>MediaMuxer </td> 93 <td>CVE-2016-3863</td> 94 <td></td> 95 <td></td> 96 </tr> 97 <tr> 98 <td></td> 99 <td>CVE-2016-3870CVE-2016-3871CVE-2016-3872</td> 100 <td></td> 101 <td></td> 102 </tr> 103 <tr> 104 <td></td> 105 <td>CVE-2016-3875</td> 106 <td></td> 107 <td>*</td> 108 </tr> 109 <tr> 110 <td></td> 111 <td>CVE-2016-3876</td> 112 <td></td> 113 <td></td> 114 </tr> 115 <tr> 116 <td></td> 117 <td>CVE-2016-3899CVE-2016-3878CVE-2016-3879CVE-2016-3880CVE-2016-3881</td> 118 <td></td> 119 <td></td> 120 </tr> 121 <tr> 122 <td>Telephony </td> 123 <td>CVE-2016-3883</td> 124 <td></td> 125 <td></td> 126 </tr> 127 <tr> 128 <td> </td> 129 <td>CVE-2016-3884</td> 130 <td></td> 131 <td></td> 132 </tr> 133 <tr> 134 <td>Debuggerd </td> 135 <td>CVE-2016-3885</td> 136 <td></td> 137 <td></td> 138 </tr> 139 <tr> 140 <td> UI </td> 141 <td>CVE-2016-3886</td> 142 <td></td> 143 <td></td> 144 </tr> 145 <tr> 146 <td></td> 147 <td>CVE-2016-3887</td> 148 <td></td> 149 <td></td> 150 </tr> 151 <tr> 152 <td>SMS </td> 153 <td>CVE-2016-3888</td> 154 <td></td> 155 <td></td> 156 </tr> 157 <tr> 158 <td></td> 159 <td>CVE-2016-3889</td> 160 <td></td> 161 <td></td> 162 </tr> 163 <tr> 164 <td>Java Debug Wire Protocol </td> 165 <td>CVE-2016-3890</td> 166 <td></td> 167 <td>*</td> 168 </tr> 169 <tr> 170 <td></td> 171 <td>CVE-2016-3895</td> 172 <td></td> 173 <td></td> 174 </tr> 175 <tr> 176 <td>AOSP </td> 177 <td>CVE-2016-3896</td> 178 <td></td> 179 <td>*</td> 180 </tr> 181 <tr> 182 <td>Wi-Fi </td> 183 <td>CVE-2016-3897</td> 184 <td></td> 185 <td>*</td> 186 </tr> 187 <tr> 188 <td>Telephony </td> 189 <td>CVE-2016-3898</td> 190 <td></td> 191 <td></td> 192 </tr> 193 </table> 194 <p> 195 * Android 7.0 Nexus 196 </p> 197 198 <h3 id="2016-09-05-summary"> 2016-09-05 </h3> 199 <p> 200 2016-09-05 2016-09-01 201 </p> 202 203 <table> 204 <col width="55%"> 205 <col width="20%"> 206 <col width="13%"> 207 <col width="12%"> 208 <tr> 209 <th></th> 210 <th>CVE</th> 211 <th></th> 212 <th>Nexus </th> 213 </tr> 214 <tr> 215 <td> </td> 216 <td>CVE-2014-9529CVE-2016-4470</td> 217 <td></td> 218 <td></td> 219 </tr> 220 <tr> 221 <td> </td> 222 <td>CVE-2013-7446</td> 223 <td></td> 224 <td></td> 225 </tr> 226 <tr> 227 <td> netfilter </td> 228 <td>CVE-2016-3134</td> 229 <td></td> 230 <td></td> 231 </tr> 232 <tr> 233 <td> USB </td> 234 <td>CVE-2016-3951</td> 235 <td></td> 236 <td></td> 237 </tr> 238 <tr> 239 <td> </td> 240 <td>CVE-2014-4655</td> 241 <td></td> 242 <td></td> 243 </tr> 244 <tr> 245 <td> ASN.1 </td> 246 <td>CVE-2016-2053</td> 247 <td></td> 248 <td></td> 249 </tr> 250 <tr> 251 <td>Qualcomm </td> 252 <td>CVE-2016-3864</td> 253 <td></td> 254 <td></td> 255 </tr> 256 <tr> 257 <td>Qualcomm </td> 258 <td>CVE-2016-3858</td> 259 <td></td> 260 <td></td> 261 </tr> 262 <tr> 263 <td> </td> 264 <td>CVE-2016-4805</td> 265 <td></td> 266 <td></td> 267 </tr> 268 <tr> 269 <td>Synaptics </td> 270 <td>CVE-2016-3865</td> 271 <td></td> 272 <td></td> 273 </tr> 274 <tr> 275 <td>Qualcomm </td> 276 <td>CVE-2016-3859</td> 277 <td></td> 278 <td></td> 279 </tr> 280 <tr> 281 <td>Qualcomm </td> 282 <td>CVE-2016-3866</td> 283 <td></td> 284 <td></td> 285 </tr> 286 <tr> 287 <td>Qualcomm IPA </td> 288 <td>CVE-2016-3867</td> 289 <td></td> 290 <td></td> 291 </tr> 292 <tr> 293 <td>Qualcomm </td> 294 <td>CVE-2016-3868</td> 295 <td></td> 296 <td></td> 297 </tr> 298 <tr> 299 <td>Broadcom Wi-Fi </td> 300 <td>CVE-2016-3869</td> 301 <td></td> 302 <td></td> 303 </tr> 304 <tr> 305 <td> eCryptfs </td> 306 <td>CVE-2016-1583</td> 307 <td></td> 308 <td></td> 309 </tr> 310 <tr> 311 <td>NVIDIA </td> 312 <td>CVE-2016-3873</td> 313 <td></td> 314 <td></td> 315 </tr> 316 <tr> 317 <td>Qualcomm Wi-Fi </td> 318 <td>CVE-2016-3874</td> 319 <td></td> 320 <td></td> 321 </tr> 322 <tr> 323 <td> </td> 324 <td>CVE-2015-1465CVE-2015-5364</td> 325 <td></td> 326 <td></td> 327 </tr> 328 <tr> 329 <td> ext4 </td> 330 <td>CVE-2015-8839</td> 331 <td></td> 332 <td></td> 333 </tr> 334 <tr> 335 <td>Qualcomm SPMI </td> 336 <td>CVE-2016-3892</td> 337 <td></td> 338 <td></td> 339 </tr> 340 <tr> 341 <td>Qualcomm </td> 342 <td>CVE-2016-3893</td> 343 <td></td> 344 <td></td> 345 </tr> 346 <tr> 347 <td>Qualcomm DMA </td> 348 <td>CVE-2016-3894</td> 349 <td></td> 350 <td></td> 351 </tr> 352 <tr> 353 <td> </td> 354 <td>CVE-2016-4998</td> 355 <td></td> 356 <td></td> 357 </tr> 358 <tr> 359 <td> </td> 360 <td>CVE-2015-2922</td> 361 <td></td> 362 <td></td> 363 </tr> 364 <tr> 365 <td>Qualcomm </td> 366 <td>CVE-2016-2469</td> 367 <td></td> 368 <td></td> 369 </tr> 370 </table> 371 <h3 id="2016-09-06-summary"> 2016-09-06 </h3> 372 <p> 373 2016-09-06 2016-09-05 2016-09-01 374 </p> 375 376 <table> 377 <col width="55%"> 378 <col width="20%"> 379 <col width="13%"> 380 <col width="12%"> 381 <tr> 382 <th></th> 383 <th>CVE</th> 384 <th></th> 385 <th>Nexus </th> 386 </tr> 387 <tr> 388 <td> </td> 389 <td>CVE-2016-5340</td> 390 <td></td> 391 <td></td> 392 </tr> 393 <tr> 394 <td>Qualcomm </td> 395 <td>CVE-2016-2059</td> 396 <td></td> 397 <td></td> 398 </tr> 399 </table> 400 <h2 id="mitigations">Android Google </h2> 401 <p> 402 <a href="/security/enhancements/index.html">Android </a> SafetyNet Android 403 </p> 404 <ul> 405 <li>Android Android Google Android </li> 406 <li>Android <a href="http://static.googleusercontent.com/media/source.android.com/en//security/reports/Google_Android_Security_2015_Report_Final.pdf"> SafetyNet</a> <a href="http://static.googleusercontent.com/media/source.android.com/en//security/reports/Google_Android_Security_PHA_classifications.pdf"></a><a href="http://www.android.com/gms">Google </a>Google Play Google Play </li> 407 <li>Google </li> 408 </ul> 409 410 <h2 id="acknowledgements"></h2> 411 <p> 412 413 </p> 414 415 416 <ul> 417 <li> Cory Pruce: CVE-2016-3897</li> 418 <li>Qihoo 360 Technology Co. Ltd. IceSword Lab Gengjia Chen<a href="https://twitter.com/chengjia4574">@chengjia4574</a> <a href="http://weibo.com/jfpan">pjf</a>: CVE-2016-3869CVE-2016-3865CVE-2016-3866CVE-2016-3867</li> 419 <li><a href="http://www.cmcm.com">Cheetah Mobile</a> Security Research Lab Hao Qin: CVE-2016-3863</li> 420 <li>Google Project Zero Jann Horn: CVE-2016-3885</li> 421 <li>Qihoo 360 IceSword Lab Jianqiang Zhao<a href="https://twitter.com/jianqiangzhao">@jianqiangzhao</a> <a href="http://weibo.com/jfpan">pjf</a>: CVE-2016-3858</li> 422 <li>Joshua Drake<a href="https://twitter.com/jduck">@jduck</a>: CVE-2016-3861</li> 423 <li> CISPA Madhu Priya Murugan: CVE-2016-3896</li> 424 <li>Google : CVE-2016-3876</li> 425 <li>Google Project Zero Mark Brand: CVE-2016-3861</li> 426 <li>Android Max Spector: CVE-2016-3888</li> 427 <li>Android Max Spector Quan To: CVE-2016-3889</li> 428 <li><a href="http://c0reteam.org">C0RE Team</a> Mingjian Zhou<a href="https://twitter.com/Mingjian_Zhou">@Mingjian_Zhou</a>Chiachih Wu<a href="https://twitter.com/chiachih_wu">@chiachih_wu</a>Xuxian Jiang: CVE-2016-3895</li> 429 <li>Tesla Motors Product Security Team Nathan Crandall<a href="https://twitter.com/natecray">@natecray</a>: CVE-2016-2446 </li> 430 <li>Google Oleksiy Vyalov: CVE-2016-3890</li> 431 <li>Google Chrome Oliver Chang: CVE-2016-3880</li> 432 <li>Alibaba Mobile Security Group Peng XiaoChengming YangNing YouChao YangYang song: CVE-2016-3859</li> 433 <li>TEAM Lv51 Ronald L. Loor Vargas<a href="https://twitter.com/loor_rlv">@loor_rlv</a>: CVE-2016-3886</li> 434 <li>IBM Security X-Force Researcher Sagi Kedmi: CVE-2016-3873</li> 435 <li><a href="mailto:sbauer (a] plzdonthack.me">Scott Bauer</a><a href="https://twitter.com/ScottyBauer1">@ScottyBauer1</a>: CVE-2016-3893CVE-2016-3868CVE-2016-3867</li> 436 <li>TrendMicro Seven Shen<a href="https://twitter.com/lingtongshen">@lingtongshen</a>: CVE-2016-3894</li> 437 <li>SentinelOne / RedNaga Tim Strazzere<a href="https://twitter.com/timstrazz">@timstrazz</a>: CVE-2016-3862</li> 438 <li>trotmaster<a href="https://twitter.com/trotmaster99">@trotmaster99</a>: CVE-2016-3883</li> 439 <li>Google Victor Chang: CVE-2016-3887</li> 440 <li>Google Vignesh Venkatasubramanian: CVE-2016-3881</li> 441 <li>Alibaba Inc Weichao Sun<a href="https://twitter.com/sunblate">@sunblate</a>: CVE-2016-3878</li> 442 <li><a href="http://c0reteam.org">C0RE Team</a> <a href="mailto:vancouverdou (a] gmail.com">Wenke Dou</a>Mingjian Zhou<a href="https://twitter.com/Mingjian_Zhou">@Mingjian_Zhou</a>Chiachih Wu<a href="https://twitter.com/chiachih_wu">@chiachih_wu</a>Xuxian Jiang: CVE-2016-3870CVE-2016-3871CVE-2016-3872</li> 443 <li><a href="http://blog.trendmicro.com/trendlabs-security-intelligence/author/wishwu/">Trend Micro Inc</a>. Wish Wu<a href="http://weibo.com/wishlinux"></a><a href="https://twitter.com/wish_wu">@wish_wu</a>: CVE-2016-3892</li> 444 <li><a href="http://www.alibaba.com/">Alibaba Inc</a> Xingyu He<a href="https://twitter.com/Spid3r_">@Spid3r_</a>: CVE-2016-3879</li> 445 <li>Chinese Academy of SciencesInstitute of SoftwareTCA Lab Yacong Gu: CVE-2016-3884</li> 446 <li> <a href="http://yurushao.info">Yuru Shao</a>: CVE-2016-3898</li> 447 </ul> 448 449 <h2 id="2016-09-01-details"> 2016-09-01 </h2> 450 <p> 451 <a href="#2016-09-01-summary"> 2016-09-01 </a>CVE Nexus AOSP AOSP ID ID 452 </p> 453 454 <h3>LibUtils </h3> 455 <p> 456 LibUtils 457 </p> 458 459 <table> 460 <col width="18%"> 461 <col width="16%"> 462 <col width="10%"> 463 <col width="19%"> 464 <col width="19%"> 465 <col width="17%"> 466 <tr> 467 <th>CVE</th> 468 <th></th> 469 <th></th> 470 <th> Nexus </th> 471 <th> AOSP </th> 472 <th></th> 473 </tr> 474 <tr> 475 <td>CVE-2016-3861</td> 476 <td><a href="https://android.googlesource.com/platform/system/core/+/ecf5fd58a8f50362ce9e8d4245a33d56f29f142b"> 477 A-29250543</a> 478 [<a href="https://android.googlesource.com/platform/frameworks/av/+/3944c65637dfed14a5a895685edfa4bacaf9f76e">2</a>] 479 [<a href="https://android.googlesource.com/platform/frameworks/base/+/866dc26ad4a98cc835d075b627326e7d7e52ffa1">3</a>] 480 [<a href="https://android.googlesource.com/platform/frameworks/native/+/1f4b49e64adf4623eefda503bca61e253597b9bf">4</a>] 481 </td> 482 <td></td> 483 <td> Nexus</td> 484 <td>4.4.45.0.25.1.16.06.0.17.0</td> 485 <td>2016 6 9 </td> 486 </tr> 487 </table> 488 <h3></h3> 489 <p> 490 491 </p> 492 493 <table> 494 <col width="18%"> 495 <col width="18%"> 496 <col width="10%"> 497 <col width="19%"> 498 <col width="17%"> 499 <col width="17%"> 500 <tr> 501 <th>CVE</th> 502 <th></th> 503 <th></th> 504 <th> Nexus </th> 505 <th> AOSP </th> 506 <th></th> 507 </tr> 508 <tr> 509 <td>CVE-2016-3862</td> 510 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/e739d9ca5469ed30129d0fa228e3d0f2878671ac"> 511 A-29270469</a></td> 512 <td></td> 513 <td> Nexus</td> 514 <td>4.4.45.0.25.1.16.06.0.1</td> 515 <td>2016 6 10 </td> 516 </tr> 517 </table> 518 <h3>MediaMuxer </h3> 519 <p> 520 MediaMuxer MediaMuxer 521 </p> 522 523 <table> 524 <col width="18%"> 525 <col width="16%"> 526 <col width="10%"> 527 <col width="19%"> 528 <col width="19%"> 529 <col width="17%"> 530 <tr> 531 <th>CVE</th> 532 <th></th> 533 <th></th> 534 <th> Nexus </th> 535 <th> AOSP </th> 536 <th></th> 537 </tr> 538 <tr> 539 <td>CVE-2016-3863</td> 540 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/119a012b2a9a186655da4bef3ed4ed8dd9b94c26"> 541 A-29161888</a></td> 542 <td></td> 543 <td> Nexus</td> 544 <td>4.4.45.0.25.1.16.06.0.17.0</td> 545 <td>2016 6 6 </td> 546 </tr> 547 </table> 548 <h3></h3> 549 <p> 550 551 </p> 552 553 <table> 554 <col width="18%"> 555 <col width="16%"> 556 <col width="10%"> 557 <col width="19%"> 558 <col width="19%"> 559 <col width="17%"> 560 <tr> 561 <th>CVE</th> 562 <th></th> 563 <th></th> 564 <th> Nexus </th> 565 <th> AOSP </th> 566 <th></th> 567 </tr> 568 <tr> 569 <td>CVE-2016-3870</td> 570 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/1e9801783770917728b7edbdeff3d0ec09c621ac"> 571 A-29421804</a> 572 <td></td> 573 <td> Nexus</td> 574 <td>4.4.45.0.25.1.16.06.0.17.0</td> 575 <td>2016 6 15 </td> 576 </td></tr> 577 <tr> 578 <td>CVE-2016-3871</td> 579 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/c2639afac631f5c1ffddf70ee8a6fe943d0bedf9"> 580 A-29422022</a> 581 [<a href="https://android.googlesource.com/platform/frameworks/av/+/3c4edac2a5b00dec6c8579a0ee658cfb3bb16d94">2</a>] 582 [<a href="https://android.googlesource.com/platform/frameworks/av/+/c17ad2f0c7e00fd1bbf01d0dfed41f72d78267ad">3</a>] 583 </td> 584 <td></td> 585 <td> Nexus</td> 586 <td>4.4.45.0.25.1.16.06.0.17.0</td> 587 <td>2016 6 15 </td> 588 </tr> 589 <tr> 590 <td>CVE-2016-3872</td> 591 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/630ed150f7201ddadb00b8b8ce0c55c4cc6e8742"> 592 A-29421675</a> 593 [<a href="https://android.googlesource.com/platform/frameworks/av/+/9f9ba255a0c59544f3555c9c45512c3a2fac5fad">2</a>] 594 </td> 595 <td></td> 596 <td> Nexus</td> 597 <td>4.4.45.0.25.1.16.06.0.17.0</td> 598 <td>2016 6 15 </td> 599 </tr> 600 </table> 601 <h3></h3> 602 <p> 603 604 </p> 605 606 <table> 607 <col width="18%"> 608 <col width="18%"> 609 <col width="10%"> 610 <col width="19%"> 611 <col width="17%"> 612 <col width="17%"> 613 <tr> 614 <th>CVE</th> 615 <th></th> 616 <th></th> 617 <th> Nexus </th> 618 <th> AOSP </th> 619 <th></th> 620 </tr> 621 <tr> 622 <td>CVE-2016-3875</td> 623 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/69729fa8b13cadbf3173fe1f389fe4f3b7bd0f9c"> 624 A-26251884</a></td> 625 <td></td> 626 <td>*</td> 627 <td>6.06.0.1</td> 628 <td>Google </td> 629 </tr> 630 </table> 631 <p> 632 * Android 7.0 Nexus 633 </p> 634 635 <h3></h3> 636 <p> 637 638 </p> 639 640 <table> 641 <col width="18%"> 642 <col width="18%"> 643 <col width="10%"> 644 <col width="19%"> 645 <col width="17%"> 646 <col width="17%"> 647 <tr> 648 <th>CVE</th> 649 <th></th> 650 <th></th> 651 <th> Nexus </th> 652 <th> AOSP </th> 653 <th></th> 654 </tr> 655 <tr> 656 <td>CVE-2016-3876</td> 657 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/91fc934bb2e5ea59929bb2f574de6db9b5100745"> 658 A-29900345</a></td> 659 <td></td> 660 <td> Nexus</td> 661 <td>6.06.0.17.0</td> 662 <td>Google </td> 663 </tr> 664 </table> 665 <h3></h3> 666 <p> 667 668 </p> 669 670 <table> 671 <col width="18%"> 672 <col width="16%"> 673 <col width="10%"> 674 <col width="19%"> 675 <col width="19%"> 676 <col width="17%"> 677 <tr> 678 <th>CVE</th> 679 <th></th> 680 <th></th> 681 <th> Nexus </th> 682 <th> AOSP </th> 683 <th></th> 684 </tr> 685 <tr> 686 <td>CVE-2016-3899</td> 687 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/97837bb6cbac21ea679843a0037779d3834bed64"> 688 A-29421811</a></td> 689 <td></td> 690 <td> Nexus</td> 691 <td>4.4.45.0.25.1.16.06.0.17.0</td> 692 <td>2016 6 16 </td> 693 </tr> 694 <tr> 695 <td>CVE-2016-3878</td> 696 <td><a href="https://android.googlesource.com/platform/external/libavc/+/7109ce3f8f90a28ca9f0ee6e14f6ac5e414c62cf"> 697 A-29493002</a></td> 698 <td></td> 699 <td> Nexus*</td> 700 <td>6.06.0.1</td> 701 <td>2016 6 17 </td> 702 </tr> 703 <tr> 704 <td>CVE-2016-3879</td> 705 <td><a href="https://android.googlesource.com/platform/external/sonivox/+/cadfb7a3c96d4fef06656cf37143e1b3e62cae86"> 706 A-29770686</a></td> 707 <td></td> 708 <td> Nexus*</td> 709 <td>4.4.45.0.25.1.16.06.0.1</td> 710 <td>2016 6 25 </td> 711 </tr> 712 <tr> 713 <td>CVE-2016-3880</td> 714 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/68f67ef6cf1f41e77337be3bc4bff91f3a3c6324"> 715 A-25747670</a></td> 716 <td></td> 717 <td> Nexus</td> 718 <td>4.4.45.0.25.1.16.06.0.17.0</td> 719 <td>Google </td> 720 </tr> 721 <tr> 722 <td>CVE-2016-3881</td> 723 <td><a href="https://android.googlesource.com/platform/external/libvpx/+/4974dcbd0289a2530df2ee2a25b5f92775df80da"> 724 A-30013856</a></td> 725 <td></td> 726 <td> Nexus</td> 727 <td>4.4.45.0.25.1.16.06.0.17.0</td> 728 <td>Google </td> 729 </tr> 730 </table> 731 <p> 732 * Android 7.0 Nexus 733 </p> 734 735 <h3>Telephony </h3> 736 <p> 737 Telephony SMS 738 </p> 739 740 <table> 741 <col width="18%"> 742 <col width="16%"> 743 <col width="10%"> 744 <col width="19%"> 745 <col width="19%"> 746 <col width="17%"> 747 <tr> 748 <th>CVE</th> 749 <th></th> 750 <th></th> 751 <th> Nexus </th> 752 <th> AOSP </th> 753 <th></th> 754 </tr> 755 <tr> 756 <td>CVE-2016-3883</td> 757 <td><a href="https://android.googlesource.com/platform/frameworks/opt/telephony/+/b2c89e6f8962dc7aff88cb38aa3ee67d751edda9"> 758 A-28557603</a></td> 759 <td></td> 760 <td> Nexus</td> 761 <td>4.4.45.0.25.1.16.06.0.17.0</td> 762 <td>2016 5 3 </td> 763 </tr> 764 </table> 765 <h3> </h3> 766 <p> 767 768 </p> 769 770 <table> 771 <col width="18%"> 772 <col width="18%"> 773 <col width="10%"> 774 <col width="19%"> 775 <col width="17%"> 776 <col width="17%"> 777 <tr> 778 <th>CVE</th> 779 <th></th> 780 <th></th> 781 <th> Nexus </th> 782 <th> AOSP </th> 783 <th></th> 784 </tr> 785 <tr> 786 <td>CVE-2016-3884</td> 787 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/61e9103b5725965568e46657f4781dd8f2e5b623"> 788 A-29421441</a></td> 789 <td></td> 790 <td> Nexus</td> 791 <td>6.06.0.17.0</td> 792 <td>2016 6 15 </td> 793 </tr> 794 </table> 795 <h3>Debuggerd </h3> 796 <p> 797 Android Android 798 </p> 799 800 <table> 801 <col width="18%"> 802 <col width="18%"> 803 <col width="10%"> 804 <col width="19%"> 805 <col width="17%"> 806 <col width="17%"> 807 <tr> 808 <th>CVE</th> 809 <th></th> 810 <th></th> 811 <th> Nexus </th> 812 <th> AOSP </th> 813 <th></th> 814 </tr> 815 <tr> 816 <td>CVE-2016-3885</td> 817 <td><a href="https://android.googlesource.com/platform/system/core/+/d7603583f90c2bc6074a4ee2886bd28082d7c65b"> 818 A-29555636</a></td> 819 <td></td> 820 <td> Nexus</td> 821 <td>5.0.25.1.16.06.0.17.0</td> 822 <td>2016 6 21 </td> 823 </tr> 824 </table> 825 <h3> UI </h3> 826 <p> 827 UI 828 </p> 829 830 <table> 831 <col width="18%"> 832 <col width="18%"> 833 <col width="10%"> 834 <col width="19%"> 835 <col width="17%"> 836 <col width="17%"> 837 <tr> 838 <th>CVE</th> 839 <th></th> 840 <th></th> 841 <th> Nexus </th> 842 <th> AOSP </th> 843 <th></th> 844 </tr> 845 <tr> 846 <td>CVE-2016-3886</td> 847 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/6ca6cd5a50311d58a1b7bf8fbef3f9aa29eadcd5"> 848 A-30107438</a></td> 849 <td></td> 850 <td> Nexus</td> 851 <td>7.0</td> 852 <td>2016 6 23 </td> 853 </tr> 854 </table> 855 <h3></h3> 856 <p> 857 VPN 858 </p> 859 860 <table> 861 <col width="18%"> 862 <col width="17%"> 863 <col width="10%"> 864 <col width="19%"> 865 <col width="17%"> 866 <col width="18%"> 867 <tr> 868 <th>CVE</th> 869 <th></th> 870 <th></th> 871 <th> Nexus </th> 872 <th> AOSP </th> 873 <th></th> 874 </tr> 875 <tr> 876 <td>CVE-2016-3887</td> 877 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/335702d106797bce8a88044783fa1fc1d5f751d0"> 878 A-29899712</a></td> 879 <td></td> 880 <td> Nexus</td> 881 <td>7.0</td> 882 <td>Google </td> 883 </tr> 884 </table> 885 <h3>SMS </h3> 886 <p> 887 SMS SMS 888 </p> 889 890 <table> 891 <col width="18%"> 892 <col width="16%"> 893 <col width="10%"> 894 <col width="19%"> 895 <col width="19%"> 896 <col width="17%"> 897 <tr> 898 <th>CVE</th> 899 <th></th> 900 <th></th> 901 <th> Nexus </th> 902 <th> AOSP </th> 903 <th></th> 904 </tr> 905 <tr> 906 <td>CVE-2016-3888</td> 907 <td><a href="https://android.googlesource.com/platform/frameworks/opt/telephony/+/b8d1aee993dcc565e6576b2f2439a8f5a507cff6"> 908 A-29420123</a></td> 909 <td></td> 910 <td> Nexus</td> 911 <td>4.4.45.0.25.1.16.06.0.17.0</td> 912 <td>Google </td> 913 </tr> 914 </table> 915 <h3></h3> 916 <p> 917 918 </p> 919 920 <table> 921 <col width="18%"> 922 <col width="17%"> 923 <col width="10%"> 924 <col width="19%"> 925 <col width="17%"> 926 <col width="18%"> 927 <tr> 928 <th>CVE</th> 929 <th></th> 930 <th></th> 931 <th> Nexus </th> 932 <th> AOSP </th> 933 <th></th> 934 </tr> 935 <tr> 936 <td>CVE-2016-3889</td> 937 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/e206f02d46ae5e38c74d138b51f6e1637e261abe"> 938 A-29194585</a> 939 [<a href="https://android.googlesource.com/platform/packages/apps/Settings/+/bd5d5176c74021e8cf4970f93f273ba3023c3d72">2</a>] 940 </td> 941 <td></td> 942 <td> Nexus</td> 943 <td>6.06.0.17.0</td> 944 <td>Google </td> 945 </tr> 946 </table> 947 <h3>Java Debug Wire Protocol </h3> 948 <p> 949 Java Debug Wire Protocol 950 </p> 951 952 <table> 953 <col width="18%"> 954 <col width="16%"> 955 <col width="10%"> 956 <col width="19%"> 957 <col width="18%"> 958 <col width="18%"> 959 <tr> 960 <th>CVE</th> 961 <th></th> 962 <th></th> 963 <th> Nexus </th> 964 <th> AOSP </th> 965 <th></th> 966 </tr> 967 <tr> 968 <td>CVE-2016-3890</td> 969 <td><a href="https://android.googlesource.com/platform/system/core/+/268068f25673242d1d5130d96202d3288c91b700"> 970 A-28347842</a> 971 [<a href="https://android.googlesource.com/platform/system/core/+/014b01706cc64dc9c2ad94a96f62e07c058d0b5d">2</a>] 972 </td> 973 <td></td> 974 <td>*</td> 975 <td>4.4.45.0.25.1.16.06.0.1</td> 976 <td>Google </td> 977 </tr> 978 </table> 979 <p> 980 * Android 7.0 Nexus 981 </p> 982 983 <h3></h3> 984 <p> 985 986 </p> 987 988 <table> 989 <col width="18%"> 990 <col width="18%"> 991 <col width="10%"> 992 <col width="19%"> 993 <col width="17%"> 994 <col width="17%"> 995 <tr> 996 <th>CVE</th> 997 <th></th> 998 <th></th> 999 <th> Nexus </th> 1000 <th> AOSP </th> 1001 <th></th> 1002 </tr> 1003 <tr> 1004 <td>CVE-2016-3895</td> 1005 <td><a href="https://android.googlesource.com/platform/frameworks/native/+/363247929c35104b3e5ee9e637e9dcf579080aee"> 1006 A-29983260</a></td> 1007 <td></td> 1008 <td> Nexus</td> 1009 <td>6.06.0.17.0</td> 1010 <td>2016 7 4 </td> 1011 </tr> 1012 </table> 1013 <h3>AOSP </h3> 1014 <p> 1015 AOSP 1016 </p> 1017 1018 <table> 1019 <col width="18%"> 1020 <col width="16%"> 1021 <col width="10%"> 1022 <col width="19%"> 1023 <col width="19%"> 1024 <col width="17%"> 1025 <tr> 1026 <th>CVE</th> 1027 <th></th> 1028 <th></th> 1029 <th> Nexus </th> 1030 <th> AOSP </th> 1031 <th></th> 1032 </tr> 1033 <tr> 1034 <td>CVE-2016-3896</td> 1035 <td><a href="https://android.googlesource.com/platform/packages/apps/Email/+/cb2dfe43f25cb0c32cc73aa4569c0a5186a4ef43"> 1036 A-29767043</a></td> 1037 <td></td> 1038 <td>*</td> 1039 <td>4.4.45.0.25.1.16.06.0.1</td> 1040 <td>2016 7 24 </td> 1041 </tr> 1042 </table> 1043 <p> 1044 * Android 7.0 Nexus 1045 </p> 1046 1047 <h3>Wi-Fi </h3> 1048 <p> 1049 Wi-Fi 1050 </p> 1051 1052 <table> 1053 <col width="18%"> 1054 <col width="16%"> 1055 <col width="10%"> 1056 <col width="19%"> 1057 <col width="19%"> 1058 <col width="17%"> 1059 <tr> 1060 <th>CVE</th> 1061 <th></th> 1062 <th></th> 1063 <th> Nexus </th> 1064 <th> AOSP </th> 1065 <th></th> 1066 </tr> 1067 <tr> 1068 <td>CVE-2016-3897</td> 1069 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/55271d454881b67ff38485fdd97598c542cc2d55"> 1070 A-25624963</a> 1071 [<a href="https://android.googlesource.com/platform/frameworks/base/+/81be4e3aac55305cbb5c9d523cf5c96c66604b39">2</a>] 1072 </td> 1073 <td></td> 1074 <td>*</td> 1075 <td>4.4.45.0.25.1.16.06.0.1</td> 1076 <td>2015 11 5 </td> 1077 </tr> 1078 </table> 1079 <p> 1080 * Android 7.0 Nexus 1081 </p> 1082 1083 <h3>Telephony </h3> 1084 <p> 1085 Telephony 911 TTY 1086 </p> 1087 1088 <table> 1089 <col width="18%"> 1090 <col width="18%"> 1091 <col width="10%"> 1092 <col width="19%"> 1093 <col width="17%"> 1094 <col width="17%"> 1095 <tr> 1096 <th>CVE</th> 1097 <th></th> 1098 <th></th> 1099 <th> Nexus </th> 1100 <th> AOSP </th> 1101 <th></th> 1102 </tr> 1103 <tr> 1104 <td>CVE-2016-3898</td> 1105 <td><a href="https://android.googlesource.com/platform/packages/services/Telephony/+/d1d248d10cf03498efb7041f1a8c9c467482a19d"> 1106 A-29832693</a></td> 1107 <td></td> 1108 <td> Nexus</td> 1109 <td>5.0.25.1.16.06.0.17.0</td> 1110 <td>2016 6 28 </td> 1111 </tr> 1112 </table> 1113 <h2 id="2016-09-05-details"> 2016-09-05 </h2> 1114 <p> 1115 <a href="#2016-09-05-summary"> 2016-09-05 </a>CVE Nexus AOSP AOSP ID ID 1116 </p> 1117 1118 <h3> </h3> 1119 <p> 1120 1121 </p> 1122 1123 <table> 1124 <col width="19%"> 1125 <col width="20%"> 1126 <col width="10%"> 1127 <col width="23%"> 1128 <col width="17%"> 1129 <tr> 1130 <th>CVE</th> 1131 <th></th> 1132 <th></th> 1133 <th> Nexus </th> 1134 <th></th> 1135 </tr> 1136 <tr> 1137 <td>CVE-2014-9529</td> 1138 <td>A-29510361 1139 <p> 1140 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=a3a8784454692dd72e5d5d34dcdab17b4420e74c"> </a></p></td> 1141 <td></td> 1142 <td>Nexus 5Nexus 6Nexus 9Nexus PlayerAndroid One</td> 1143 <td>2015 1 6 </td> 1144 </tr> 1145 <tr> 1146 <td>CVE-2016-4470</td> 1147 <td>A-29823941 1148 <p> 1149 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=38327424b40bcebe2de92d07312c89360ac9229a"> </a></p></td> 1150 <td></td> 1151 <td>Nexus 5Nexus 5XNexus 6Nexus 6PNexus 9Nexus Player</td> 1152 <td>2016 6 15 </td> 1153 </tr> 1154 </table> 1155 <h3> </h3> 1156 <p> 1157 1158 </p> 1159 1160 <table> 1161 <col width="19%"> 1162 <col width="20%"> 1163 <col width="10%"> 1164 <col width="23%"> 1165 <col width="17%"> 1166 <tr> 1167 <th>CVE</th> 1168 <th></th> 1169 <th></th> 1170 <th> Nexus </th> 1171 <th></th> 1172 </tr> 1173 <tr> 1174 <td>CVE-2013-7446</td> 1175 <td>A-29119002 1176 <p> 1177 <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/net/unix/af_unix.c?id=7d267278a9ece963d77eefec61630223fce08c6c"> </a></p></td> 1178 <td></td> 1179 <td>Nexus 5Nexus 5XNexus 6Nexus 6PNexus 9Nexus PlayerPixel CAndroid One</td> 1180 <td>2015 11 18 </td> 1181 </tr> 1182 </table> 1183 <h3> netfilter </h3> 1184 <p> 1185 netfilter 1186 </p> 1187 1188 <table> 1189 <col width="19%"> 1190 <col width="20%"> 1191 <col width="10%"> 1192 <col width="23%"> 1193 <col width="17%"> 1194 <tr> 1195 <th>CVE</th> 1196 <th></th> 1197 <th></th> 1198 <th> Nexus </th> 1199 <th></th> 1200 </tr> 1201 <tr> 1202 <td>CVE-2016-3134</td> 1203 <td>A-28940694 1204 <p> 1205 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=54d83fc74aa9ec72794373cb47432c5f7fb1a309"> </a></p></td> 1206 <td></td> 1207 <td>Nexus 5Nexus 5XNexus 6Nexus 6PNexus 9Nexus PlayerPixel CAndroid One</td> 1208 <td>2016 3 9 </td> 1209 </tr> 1210 </table> 1211 <h3> USB </h3> 1212 <p> 1213 USB 1214 </p> 1215 1216 <table> 1217 <col width="19%"> 1218 <col width="20%"> 1219 <col width="10%"> 1220 <col width="23%"> 1221 <col width="17%"> 1222 <tr> 1223 <th>CVE</th> 1224 <th></th> 1225 <th></th> 1226 <th> Nexus </th> 1227 <th></th> 1228 </tr> 1229 <tr> 1230 <td>CVE-2016-3951</td> 1231 <td>A-28744625 1232 <p> 1233 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=4d06dd537f95683aba3651098ae288b7cbff8274"> </a> 1234 [<a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=1666984c8625b3db19a9abc298931d35ab7bc64b">2</a>]</p></td> 1235 <td></td> 1236 <td>Nexus 5Nexus 5XNexus 6Nexus 6PNexus 9Nexus PlayerPixel CAndroid One</td> 1237 <td>2016 4 6 </td> 1238 </tr> 1239 </table> 1240 <h3> </h3> 1241 <p> 1242 1243 </p> 1244 1245 <table> 1246 <col width="19%"> 1247 <col width="20%"> 1248 <col width="10%"> 1249 <col width="23%"> 1250 <col width="17%"> 1251 <tr> 1252 <th>CVE</th> 1253 <th></th> 1254 <th></th> 1255 <th> Nexus </th> 1256 <th></th> 1257 </tr> 1258 <tr> 1259 <td>CVE-2014-4655</td> 1260 <td>A-29916012 1261 <p> 1262 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=82262a46627bebb0febcc26664746c25cef08563"> </a></p></td> 1263 <td></td> 1264 <td>Nexus 5Nexus 6Nexus 9Nexus Player</td> 1265 <td>2014 6 26 </td> 1266 </tr> 1267 </table> 1268 <h3> ASN.1 </h3> 1269 <p> 1270 ASN.1 1271 </p> 1272 1273 <table> 1274 <col width="19%"> 1275 <col width="20%"> 1276 <col width="10%"> 1277 <col width="23%"> 1278 <col width="17%"> 1279 <tr> 1280 <th>CVE</th> 1281 <th></th> 1282 <th></th> 1283 <th> Nexus </th> 1284 <th></th> 1285 </tr> 1286 <tr> 1287 <td>CVE-2016-2053</td> 1288 <td>A-28751627 1289 <p> 1290 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=0d62e9dd6da45bbf0f33a8617afc5fe774c8f45f"> </a></p></td> 1291 <td></td> 1292 <td>Nexus 5XNexus 6P</td> 1293 <td>2016 1 25 </td> 1294 </tr> 1295 </table> 1296 <h3>Qualcomm </h3> 1297 <p> 1298 Qualcomm 1299 </p> 1300 1301 <table> 1302 <col width="19%"> 1303 <col width="18%"> 1304 <col width="10%"> 1305 <col width="25%"> 1306 <col width="17%"> 1307 <tr> 1308 <th>CVE</th> 1309 <th></th> 1310 <th></th> 1311 <th> Nexus </th> 1312 <th></th> 1313 </tr> 1314 <tr> 1315 <td>CVE-2016-3864</td> 1316 <td>A-28823714*<br> 1317 QC-CR#913117</td> 1318 <td></td> 1319 <td>Nexus 5Nexus 5XNexus 6Nexus 6PAndroid One</td> 1320 <td>2016 4 29 </td> 1321 </tr> 1322 </table> 1323 <p> 1324 * <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1325 </p> 1326 1327 <h3>Qualcomm </h3> 1328 <p> 1329 Qualcomm 1330 </p> 1331 1332 <table> 1333 <col width="19%"> 1334 <col width="20%"> 1335 <col width="10%"> 1336 <col width="23%"> 1337 <col width="17%"> 1338 <tr> 1339 <th>CVE</th> 1340 <th></th> 1341 <th></th> 1342 <th> Nexus </th> 1343 <th></th> 1344 </tr> 1345 <tr> 1346 <td>CVE-2016-3858</td> 1347 <td>A-28675151<br> 1348 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?id=0c148b9a9028c566eac680f19e5d664b483cdee3">QC-CR#1022641</a></td> 1349 <td></td> 1350 <td>Nexus 5XNexus 6P</td> 1351 <td>2016 5 9 </td> 1352 </tr> 1353 </table> 1354 <h3> </h3> 1355 <p> 1356 1357 </p> 1358 1359 <table> 1360 <col width="19%"> 1361 <col width="20%"> 1362 <col width="10%"> 1363 <col width="23%"> 1364 <col width="17%"> 1365 <tr> 1366 <th>CVE</th> 1367 <th></th> 1368 <th></th> 1369 <th> Nexus </th> 1370 <th></th> 1371 </tr> 1372 <tr> 1373 <td>CVE-2016-4805</td> 1374 <td>A-28979703 1375 <p> 1376 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=1f461dcdd296eecedaffffc6bae2bfa90bd7eb89"> </a></p></td> 1377 <td></td> 1378 <td>Nexus 5Nexus 5XNexus 6Nexus 6PNexus 9</td> 1379 <td>2016 5 15 </td> 1380 </tr> 1381 </table> 1382 <h3>Synaptics </h3> 1383 <p> 1384 Synaptics 1385 </p> 1386 1387 <table> 1388 <col width="19%"> 1389 <col width="20%"> 1390 <col width="10%"> 1391 <col width="23%"> 1392 <col width="17%"> 1393 <tr> 1394 <th>CVE</th> 1395 <th></th> 1396 <th></th> 1397 <th> Nexus </th> 1398 <th></th> 1399 </tr> 1400 <tr> 1401 <td>CVE-2016-3865</td> 1402 <td>A-28799389*</td> 1403 <td></td> 1404 <td>Nexus 5XNexus 9</td> 1405 <td>2016 5 16 </td> 1406 </tr> 1407 </table> 1408 <p> 1409 * <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1410 </p> 1411 1412 <h3>Qualcomm </h3> 1413 <p> 1414 Qualcomm 1415 </p> 1416 1417 <table> 1418 <col width="19%"> 1419 <col width="20%"> 1420 <col width="10%"> 1421 <col width="23%"> 1422 <col width="17%"> 1423 <tr> 1424 <th>CVE</th> 1425 <th></th> 1426 <th></th> 1427 <th> Nexus </th> 1428 <th></th> 1429 </tr> 1430 <tr> 1431 <td>CVE-2016-3859</td> 1432 <td>A-28815326*<br> 1433 QC-CR#1034641</td> 1434 <td></td> 1435 <td>Nexus 5Nexus 5XNexus 6Nexus 6P</td> 1436 <td>2016 5 17 </td> 1437 </tr> 1438 </table> 1439 <p> 1440 * <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1441 </p> 1442 1443 <h3>Qualcomm </h3> 1444 <p> 1445 Qualcomm 1446 </p> 1447 1448 <table> 1449 <col width="19%"> 1450 <col width="20%"> 1451 <col width="10%"> 1452 <col width="23%"> 1453 <col width="17%"> 1454 <tr> 1455 <th>CVE</th> 1456 <th></th> 1457 <th></th> 1458 <th> Nexus </th> 1459 <th></th> 1460 </tr> 1461 <tr> 1462 <td>CVE-2016-3866</td> 1463 <td>A-28868303*<br> 1464 QC-CR#1032820</td> 1465 <td></td> 1466 <td>Nexus 5XNexus 6Nexus 6P</td> 1467 <td>2016 5 18 </td> 1468 </tr> 1469 </table> 1470 <p> 1471 * <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1472 </p> 1473 1474 <h3>Qualcomm IPA </h3> 1475 <p> 1476 Qualcomm IPA 1477 </p> 1478 1479 <table> 1480 <col width="19%"> 1481 <col width="20%"> 1482 <col width="10%"> 1483 <col width="23%"> 1484 <col width="17%"> 1485 <tr> 1486 <th>CVE</th> 1487 <th></th> 1488 <th></th> 1489 <th> Nexus </th> 1490 <th></th> 1491 </tr> 1492 <tr> 1493 <td>CVE-2016-3867</td> 1494 <td>A-28919863*<br> 1495 QC-CR#1037897</td> 1496 <td></td> 1497 <td>Nexus 5XNexus 6P</td> 1498 <td>2016 5 21 </td> 1499 </tr> 1500 </table> 1501 <p> 1502 * <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1503 </p> 1504 1505 <h3>Qualcomm </h3> 1506 <p> 1507 Qualcomm 1508 </p> 1509 1510 <table> 1511 <col width="19%"> 1512 <col width="20%"> 1513 <col width="10%"> 1514 <col width="23%"> 1515 <col width="17%"> 1516 <tr> 1517 <th>CVE</th> 1518 <th></th> 1519 <th></th> 1520 <th> Nexus </th> 1521 <th></th> 1522 </tr> 1523 <tr> 1524 <td>CVE-2016-3868</td> 1525 <td>A-28967028*<br> 1526 QC-CR#1032875</td> 1527 <td></td> 1528 <td>Nexus 5XNexus 6P</td> 1529 <td>2016 5 25 </td> 1530 </tr> 1531 </table> 1532 <p> 1533 * <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1534 </p> 1535 1536 <h3>Broadcom Wi-Fi </h3> 1537 <p> 1538 Broadcom Wi-Fi 1539 </p> 1540 1541 <table> 1542 <col width="19%"> 1543 <col width="20%"> 1544 <col width="10%"> 1545 <col width="23%"> 1546 <col width="17%"> 1547 <tr> 1548 <th>CVE</th> 1549 <th></th> 1550 <th></th> 1551 <th> Nexus </th> 1552 <th></th> 1553 </tr> 1554 <tr> 1555 <td>CVE-2016-3869</td> 1556 <td>A-29009982*<br> 1557 B-RB#96070</td> 1558 <td></td> 1559 <td>Nexus 5Nexus 6Nexus 6PNexus 9Nexus PlayerPixel C</td> 1560 <td>2016 5 27 </td> 1561 </tr> 1562 </table> 1563 <p> 1564 * <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1565 </p> 1566 1567 <h3> eCryptfs </h3> 1568 <p> 1569 eCryptfs 1570 </p> 1571 1572 <table> 1573 <col width="17%"> 1574 <col width="22%"> 1575 <col width="10%"> 1576 <col width="23%"> 1577 <col width="17%"> 1578 <tr> 1579 <th>CVE</th> 1580 <th></th> 1581 <th></th> 1582 <th> Nexus </th> 1583 <th></th> 1584 </tr> 1585 <tr> 1586 <td>CVE-2016-1583</td> 1587 <td>A-29444228<br> 1588 <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=e54ad7f1ee263ffa5a2de9c609d58dfa27b21cd9"> </a> 1589 [<a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=2f36db71009304b3f0b95afacd8eba1f9f046b87">2</a>] 1590 [<a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=29d6455178a09e1dc340380c582b13356227e8df">3</a>]</td> 1591 <td></td> 1592 <td>Pixel C</td> 1593 <td>2016 6 1 </td> 1594 </tr> 1595 </table> 1596 <h3>NVIDIA </h3> 1597 <p> 1598 NVIDIA 1599 </p> 1600 1601 <table> 1602 <col width="19%"> 1603 <col width="20%"> 1604 <col width="10%"> 1605 <col width="23%"> 1606 <col width="17%"> 1607 <tr> 1608 <th>CVE</th> 1609 <th></th> 1610 <th></th> 1611 <th> Nexus </th> 1612 <th></th> 1613 </tr> 1614 <tr> 1615 <td>CVE-2016-3873</td> 1616 <td>A-29518457*<br> 1617 N-CVE-2016-3873</td> 1618 <td></td> 1619 <td>Nexus 9</td> 1620 <td>2016 6 20 </td> 1621 </tr> 1622 </table> 1623 <p> 1624 * <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1625 </p> 1626 1627 <h3>Qualcomm Wi-Fi </h3> 1628 <p> 1629 Qualcomm Wi-Fi 1630 </p> 1631 1632 <table> 1633 <col width="19%"> 1634 <col width="20%"> 1635 <col width="10%"> 1636 <col width="23%"> 1637 <col width="17%"> 1638 <tr> 1639 <th>CVE</th> 1640 <th></th> 1641 <th></th> 1642 <th> Nexus </th> 1643 <th></th> 1644 </tr> 1645 <tr> 1646 <td>CVE-2016-3874</td> 1647 <td>A-29944562<br> 1648 <a href="https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-2.0/commit/?id=50e8f265b3f7926aeb4e49c33f7301ace89faa77">QC-CR#997797</a> 1649 [<a href="https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-2.0/commit/?id=a3974e61c960aadcc147c3c5704a67309171642d">2</a>]</td> 1650 <td></td> 1651 <td>Nexus 5X</td> 1652 <td>2016 7 1 </td> 1653 </tr> 1654 </table> 1655 <h3> </h3> 1656 <p> 1657 1658 </p> 1659 1660 <table> 1661 <col width="19%"> 1662 <col width="18%"> 1663 <col width="10%"> 1664 <col width="25%"> 1665 <col width="17%"> 1666 <tr> 1667 <th>CVE</th> 1668 <th></th> 1669 <th></th> 1670 <th> Nexus </th> 1671 <th></th> 1672 </tr> 1673 <tr> 1674 <td>CVE-2015-1465</td> 1675 <td>A-29506807 1676 <p> 1677 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=df4d92549f23e1c037e83323aff58a21b3de7fe0"> </a></p></td> 1678 <td></td> 1679 <td>Nexus 5Nexus 6Nexus 9Nexus PlayerPixel CAndroid One</td> 1680 <td>2015 2 3 </td> 1681 </tr> 1682 <tr> 1683 <td>CVE-2015-5364</td> 1684 <td>A-29507402 1685 <p> 1686 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=beb39db59d14990e401e235faf66a6b9b31240b0"> </a></p></td> 1687 <td></td> 1688 <td>Nexus 5Nexus 5XNexus 6Nexus 6PNexus 9Nexus PlayerPixel CAndroid One</td> 1689 <td>2015 6 30 </td> 1690 </tr> 1691 </table> 1692 <h3> ext4 </h3> 1693 <p> 1694 ext4 1695 </p> 1696 1697 <table> 1698 <col width="19%"> 1699 <col width="16%"> 1700 <col width="10%"> 1701 <col width="27%"> 1702 <col width="17%"> 1703 <tr> 1704 <th>CVE</th> 1705 <th></th> 1706 <th></th> 1707 <th> Nexus </th> 1708 <th></th> 1709 </tr> 1710 <tr> 1711 <td>CVE-2015-8839</td> 1712 <td>A-28760453*</td> 1713 <td></td> 1714 <td>Nexus 5XNexus 6Nexus 6PNexus 9Nexus PlayerPixel CAndroid One</td> 1715 <td>2016 4 4 </td> 1716 </tr> 1717 </table> 1718 <p> 1719 * <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1720 </p> 1721 1722 <h3>Qualcomm SPMI </h3> 1723 <p> 1724 Qualcomm SPMI 1725 </p> 1726 1727 <table> 1728 <col width="19%"> 1729 <col width="20%"> 1730 <col width="10%"> 1731 <col width="23%"> 1732 <col width="17%"> 1733 <tr> 1734 <th>CVE</th> 1735 <th></th> 1736 <th></th> 1737 <th> Nexus </th> 1738 <th></th> 1739 </tr> 1740 <tr> 1741 <td>CVE-2016-3892</td> 1742 <td>A-28760543*<br> 1743 QC-CR#1024197</td> 1744 <td></td> 1745 <td>Nexus 5Nexus 5XNexus 6Nexus 6P</td> 1746 <td>2016 5 13 </td> 1747 </tr> 1748 </table> 1749 <p> 1750 * <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1751 </p> 1752 1753 <h3>Qualcomm </h3> 1754 <p> 1755 Qualcomm 1756 </p> 1757 1758 <table> 1759 <col width="19%"> 1760 <col width="20%"> 1761 <col width="10%"> 1762 <col width="23%"> 1763 <col width="17%"> 1764 <tr> 1765 <th>CVE</th> 1766 <th></th> 1767 <th></th> 1768 <th> Nexus </th> 1769 <th></th> 1770 </tr> 1771 <tr> 1772 <td>CVE-2016-3893</td> 1773 <td>A-29512527<br> 1774 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?id=a7a6ddc91cce7ad5ad55c9709b24bfc80f5ac873">QC-CR#856400</a></td> 1775 <td></td> 1776 <td>Nexus 6P</td> 1777 <td>2016 6 20 </td> 1778 </tr> 1779 </table> 1780 <h3>Qualcomm DMA </h3> 1781 <p> 1782 Qualcomm DMA 1783 </p> 1784 1785 <table> 1786 <col width="19%"> 1787 <col width="20%"> 1788 <col width="10%"> 1789 <col width="23%"> 1790 <col width="17%"> 1791 <tr> 1792 <th>CVE</th> 1793 <th></th> 1794 <th></th> 1795 <th> Nexus </th> 1796 <th></th> 1797 </tr> 1798 <tr> 1799 <td>CVE-2016-3894</td> 1800 <td>A-29618014*<br> 1801 QC-CR#1042033</td> 1802 <td></td> 1803 <td>Nexus 6</td> 1804 <td>2016 6 23 </td> 1805 </tr> 1806 </table> 1807 <p> 1808 * <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1809 </p> 1810 1811 <h3> </h3> 1812 <p> 1813 1814 </p> 1815 1816 <table> 1817 <col width="19%"> 1818 <col width="20%"> 1819 <col width="10%"> 1820 <col width="23%"> 1821 <col width="17%"> 1822 <tr> 1823 <th>CVE</th> 1824 <th></th> 1825 <th></th> 1826 <th> Nexus </th> 1827 <th></th> 1828 </tr> 1829 <tr> 1830 <td>CVE-2016-4998</td> 1831 <td>A-29637687<br> 1832 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=bdf533de6968e9686df777dc178486f600c6e617"> </a> 1833 [<a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=6e94e0cfb0887e4013b3b930fa6ab1fe6bb6ba91">2</a>]</td> 1834 <td></td> 1835 <td>Nexus 5Nexus 5XNexus 6Nexus 6PNexus 9Nexus PlayerPixel CAndroid One</td> 1836 <td>2016 6 24 </td> 1837 </tr> 1838 </table> 1839 <h3> </h3> 1840 <p> 1841 Wi-Fi 1842 </p> 1843 1844 <table> 1845 <col width="19%"> 1846 <col width="20%"> 1847 <col width="10%"> 1848 <col width="23%"> 1849 <col width="17%"> 1850 <tr> 1851 <th>CVE</th> 1852 <th></th> 1853 <th></th> 1854 <th> Nexus </th> 1855 <th></th> 1856 </tr> 1857 <tr> 1858 <td>CVE-2015-2922</td> 1859 <td>A-29409847 1860 <p> 1861 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=6fd99094de2b83d1d4c8457f2c83483b2828e75a"> </a></p></td> 1862 <td></td> 1863 <td>Nexus 5Nexus 5XNexus 6Nexus 6PNexus 9Nexus PlayerPixel CAndroid One</td> 1864 <td>2015 4 4 </td> 1865 </tr> 1866 </table> 1867 <h3>Qualcomm </h3> 1868 <p> 1869 Qualcomm 1870 </p> 1871 1872 <table> 1873 <col width="19%"> 1874 <col width="20%"> 1875 <col width="10%"> 1876 <col width="23%"> 1877 <col width="17%"> 1878 <tr> 1879 <th>CVE</th> 1880 <th></th> 1881 <th></th> 1882 <th> Nexus </th> 1883 <th></th> 1884 </tr> 1885 <tr> 1886 <td>CVE-2016-2469</td> 1887 <td><a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=7eb824e8e1ebbdbfad896b090a9f048ca6e63c9e">QC-CR#997025</a></td> 1888 <td></td> 1889 <td></td> 1890 <td>2016 6 </td> 1891 </tr> 1892 <tr> 1893 <td>CVE-2016-2469</td> 1894 <td><a href="https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?id=e7369163162e7773bc887f7a264d6aa46cfcc665">QC-CR#997015</a></td> 1895 <td></td> 1896 <td></td> 1897 <td>2016 6 </td> 1898 </tr> 1899 </table> 1900 <h2 id="2016-09-06-details"> 2016-09-06 </h2> 1901 <p> 1902 <a href="#2016-09-06-summary"> 2016-09-06 </a>CVE Nexus AOSP AOSP ID ID 1903 </p> 1904 1905 <h3> </h3> 1906 <p> 1907 1908 </p> 1909 1910 <table> 1911 <col width="19%"> 1912 <col width="20%"> 1913 <col width="10%"> 1914 <col width="23%"> 1915 <col width="17%"> 1916 <tr> 1917 <th>CVE</th> 1918 <th></th> 1919 <th></th> 1920 <th> Nexus </th> 1921 <th></th> 1922 </tr> 1923 <tr> 1924 <td>CVE-2016-5340</td> 1925 <td>A-30652312<br> 1926 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?id=06e51489061e5473b4e2035c79dcf7c27a6f75a6">QC-CR#1008948</a></td> 1927 <td></td> 1928 <td>Nexus 5Nexus 5XNexus 6Nexus 6PAndroid One</td> 1929 <td>2016 7 26 </td> 1930 </tr> 1931 </table> 1932 <h3>Qualcomm </h3> 1933 <p> 1934 Qualcomm 1935 </p> 1936 1937 <table> 1938 <col width="19%"> 1939 <col width="20%"> 1940 <col width="10%"> 1941 <col width="23%"> 1942 <col width="17%"> 1943 <tr> 1944 <th>CVE</th> 1945 <th></th> 1946 <th></th> 1947 <th> Nexus </th> 1948 <th></th> 1949 </tr> 1950 <tr> 1951 <td>CVE-2016-2059</td> 1952 <td>A-27045580<br> 1953 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=9e8bdd63f7011dff5523ea435433834b3702398d">QC-CR#974577</a></td> 1954 <td></td> 1955 <td>Nexus 5Nexus 5XNexus 6Nexus 6PAndroid One</td> 1956 <td>2016 2 4 </td> 1957 </tr> 1958 </table> 1959 <h2 id="common-questions-and-answers"></h2> 1960 <p> 1961 1962 </p> 1963 1964 <p> 1965 <strong>1. 1966 </strong> 1967 </p> 1968 1969 <p> 1970 2016-09-01 2016-09-01 2016-09-05 2016-09-05 2016-09-06 2016-09-06 <a href="https://support.google.com/nexus/answer/4457705"></a> [ro.build.version.security_patch]:[2016-09-01][ro.build.version.security_patch]:[2016-09-05][ro.build.version.security_patch]:[2016-09-06] 1971 </p> 1972 1973 <p> 1974 <strong>2. 3 </strong> 1975 </p> 1976 1977 <p> 1978 3 Android Android Android 1979 </p> 1980 1981 <p> 1982 2016 9 6 1983 </p> 1984 1985 <p> 1986 2016 9 5 2016 9 1 2016 9 5 2016 9 6 1987 </p> 1988 1989 <p> 1990 2016 9 1 2016 9 1 2016 9 5 2016 9 6 1991 </p> 1992 1993 <p> 1994 3<strong>. Nexus </strong> 1995 </p> 1996 1997 <p> 1998 <a href="#2016-09-01-details">2016-09-01</a><a href="#2016-09-05-details">2016-09-05</a><a href="#2016-09-06-details">2016-09-06</a> Nexus Nexus <em></em></p> 1999 2000 <ul> 2001 <li><strong> Nexus </strong>: Nexus Nexus Nexus<em></em> Nexus<a href="https://support.google.com/nexus/answer/4457705#nexus_devices"></a>Nexus 5Nexus 5XNexus 6Nexus 6PNexus 72013Nexus 9Android OneNexus PlayerPixel C</li> 2002 <li><strong> Nexus </strong>: Nexus Nexus Nexus <em></em></li> 2003 <li><strong> Nexus </strong>: Android 7.0 Nexus Nexus <em></em></li> 2004 </ul> 2005 <p> 2006 <strong>4. </strong> 2007 </p> 2008 2009 <p> 2010 <em></em> 2011 </p> 2012 2013 <table> 2014 <tr> 2015 <th></th> 2016 <th></th> 2017 </tr> 2018 <tr> 2019 <td>A-</td> 2020 <td>Android ID</td> 2021 </tr> 2022 <tr> 2023 <td>QC-</td> 2024 <td>Qualcomm </td> 2025 </tr> 2026 <tr> 2027 <td>M-</td> 2028 <td>MediaTek </td> 2029 </tr> 2030 <tr> 2031 <td>N-</td> 2032 <td>NVIDIA </td> 2033 </tr> 2034 <tr> 2035 <td>B-</td> 2036 <td>Broadcom </td> 2037 </tr> 2038 </table> 2039 2040 <h2 id="revisions"></h2> 2041 <ul> 2042 <li>2016 9 6 : </li> 2043 <li>2016 9 7 : AOSP </li> 2044 <li>2016 9 12 : CVE-2016-3861 CVE-2016-3877 </li> 2045 </ul> 2046 2047 </body> 2048 </html> 2049
