1 <html devsite> 2 <head> 3 <title>Android - 2016 11 </title> 4 <meta name="project_path" value="/_project.yaml" /> 5 <meta name="book_path" value="/_book.yaml" /> 6 </head> 7 <body> 8 <!-- 9 Copyright 2017 The Android Open Source Project 10 11 Licensed under the Apache License, Version 2.0 (the "License"); 12 you may not use this file except in compliance with the License. 13 You may obtain a copy of the License at 14 15 http://www.apache.org/licenses/LICENSE-2.0 16 17 Unless required by applicable law or agreed to in writing, software 18 distributed under the License is distributed on an "AS IS" BASIS, 19 WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 20 See the License for the specific language governing permissions and 21 limitations under the License. 22 --> 23 24 25 26 <p><em>2016 11 7 | 2016 11 8 </em></p> 27 <p> 28 Android Android Google OTAGoogle <a href="https://developers.google.com/android/nexus/images">Google </a>2016 11 6 <a href="https://support.google.com/pixelphone/answer/4457705#pixel_phones&nexus_devices">Pixel Nexus </a></p> 29 <p> 30 2016 10 20 Android AOSP AOSP 31 </p> 32 <p> 33 MMS </p> 34 <p> 35 <a href="/security/enhancements/index.html">Android </a> <a href="https://developer.android.com/training/safetynet/index.html">SafetyNet</a> <a href="#mitigations">Android Google </a>Android </p> 36 <p></p> 37 <h2 id="announcements"></h2> 38 <ul> 39 <li>Pixel Pixel XL <a href="#google-devices">Google </a>Nexus Google 40 </li> 41 <li>3 Android Android <a href="#common-questions-and-answers"></a> 42 <ul> 43 <li><strong>2016-11-01</strong>: 2016-11-01 </li> 44 <li><strong>2016-11-05</strong>: 2016-11-01 2016-11-05 </li> 45 <li><strong> </strong> 46 <p> 2016-12-01 47 </p> 48 <ul> 49 <li><strong>2016-11-06</strong>: 2016-11-05 CVE-2016-51952016 10 19 </li> 50 </ul> 51 </li> 52 </ul> 53 </li> 54 <li> Google 2016 11 5 1 OTA </li> 55 </ul> 56 57 <h2 id="security-vulnerability-summary"></h2> 58 <p> 59 CVEGoogle <a href="/security/overview/updates-resources.html#severity"></a></p> 60 <h3 id="2016-11-01-summary"> 2016-11-01 </h3> 61 <p> 62 2016-11-01 </p> 63 <table> 64 <col width="55%"> 65 <col width="20%"> 66 <col width="13%"> 67 <col width="12%"> 68 <tr> 69 <th></th> 70 <th>CVE</th> 71 <th></th> 72 <th>Google </th> 73 </tr> 74 <tr> 75 <td></td> 76 <td>CVE-2016-6699</td> 77 <td></td> 78 <td></td> 79 </tr> 80 <tr> 81 <td>libzipfile </td> 82 <td>CVE-2016-6700</td> 83 <td></td> 84 <td>*</td> 85 </tr> 86 <tr> 87 <td>Skia </td> 88 <td>CVE-2016-6701</td> 89 <td></td> 90 <td></td> 91 </tr> 92 <tr> 93 <td>libjpeg </td> 94 <td>CVE-2016-6702</td> 95 <td></td> 96 <td>*</td> 97 </tr> 98 <tr> 99 <td>Android </td> 100 <td>CVE-2016-6703</td> 101 <td></td> 102 <td>*</td> 103 </tr> 104 <tr> 105 <td></td> 106 <td>CVE-2016-6704CVE-2016-6705CVE-2016-6706</td> 107 <td></td> 108 <td></td> 109 </tr> 110 <tr> 111 <td> </td> 112 <td>CVE-2016-6707</td> 113 <td></td> 114 <td></td> 115 </tr> 116 <tr> 117 <td> 118 UI </td> 119 <td>CVE-2016-6708</td> 120 <td></td> 121 <td></td> 122 </tr> 123 <tr> 124 <td>Conscrypt </td> 125 <td>CVE-2016-6709</td> 126 <td></td> 127 <td></td> 128 </tr> 129 <tr> 130 <td> </td> 131 <td>CVE-2016-6710</td> 132 <td></td> 133 <td></td> 134 </tr> 135 <tr> 136 <td>Bluetooth </td> 137 <td>CVE-2014-9908</td> 138 <td></td> 139 <td>*</td> 140 </tr> 141 <tr> 142 <td>OpenJDK </td> 143 <td>CVE-2015-0410</td> 144 <td></td> 145 <td></td> 146 </tr> 147 <tr> 148 <td></td> 149 <td>CVE-2016-6711CVE-2016-6712CVE-2016-6713CVE-2016-6714</td> 150 <td></td> 151 <td></td> 152 </tr> 153 <tr> 154 <td> API </td> 155 <td>CVE-2016-6715</td> 156 <td></td> 157 <td></td> 158 </tr> 159 <tr> 160 <td>AOSP </td> 161 <td>CVE-2016-6716</td> 162 <td></td> 163 <td></td> 164 </tr> 165 <tr> 166 <td></td> 167 <td>CVE-2016-6717</td> 168 <td></td> 169 <td></td> 170 </tr> 171 <tr> 172 <td> </td> 173 <td>CVE-2016-6718</td> 174 <td></td> 175 <td></td> 176 </tr> 177 <tr> 178 <td>Bluetooth </td> 179 <td>CVE-2016-6719</td> 180 <td></td> 181 <td></td> 182 </tr> 183 <tr> 184 <td></td> 185 <td>CVE-2016-6720CVE-2016-6721CVE-2016-6722</td> 186 <td></td> 187 <td></td> 188 </tr> 189 <tr> 190 <td></td> 191 <td>CVE-2016-6723</td> 192 <td></td> 193 <td></td> 194 </tr> 195 <tr> 196 <td> </td> 197 <td>CVE-2016-6724</td> 198 <td></td> 199 <td></td> 200 </tr> 201 </table> 202 <p> 203 * Android 7.0 Google </p> 204 <h3 id="2016-11-05-summary"> 2016-11-05 </h3> 205 <p> 206 2016-11-05 2016-11-01 </p> 207 <table> 208 <col width="55%"> 209 <col width="20%"> 210 <col width="13%"> 211 <col width="12%"> 212 <tr> 213 <th></th> 214 <th>CVE</th> 215 <th></th> 216 <th>Google </th> 217 </tr> 218 <tr> 219 <td>Qualcomm crypto </td> 220 <td>CVE-2016-6725</td> 221 <td></td> 222 <td></td> 223 </tr> 224 <tr> 225 <td> </td> 226 <td>CVE-2015-8961CVE-2016-7910CVE-2016-7911</td> 227 <td></td> 228 <td></td> 229 </tr> 230 <tr> 231 <td> SCSI </td> 232 <td>CVE-2015-8962</td> 233 <td></td> 234 <td></td> 235 </tr> 236 <tr> 237 <td> </td> 238 <td>CVE-2016-7913</td> 239 <td></td> 240 <td></td> 241 </tr> 242 <tr> 243 <td> USB </td> 244 <td>CVE-2016-7912</td> 245 <td></td> 246 <td></td> 247 </tr> 248 <tr> 249 <td> ION </td> 250 <td>CVE-2016-6728</td> 251 <td></td> 252 <td></td> 253 </tr> 254 <tr> 255 <td>Qualcomm </td> 256 <td>CVE-2016-6729</td> 257 <td></td> 258 <td></td> 259 </tr> 260 <tr> 261 <td>NVIDIA GPU </td> 262 <td>CVE-2016-6730CVE-2016-6731CVE-2016-6732CVE-2016-6733CVE-2016-6734CVE-2016-6735CVE-2016-6736</td> 263 <td></td> 264 <td></td> 265 </tr> 266 <tr> 267 <td> </td> 268 <td>CVE-2016-6828</td> 269 <td></td> 270 <td></td> 271 </tr> 272 <tr> 273 <td> </td> 274 <td>CVE-2016-2184</td> 275 <td></td> 276 <td></td> 277 </tr> 278 <tr> 279 <td> ION </td> 280 <td>CVE-2016-6737</td> 281 <td></td> 282 <td></td> 283 </tr> 284 <tr> 285 <td>Qualcomm </td> 286 <td>CVE-2016-6726CVE-2016-6727</td> 287 <td></td> 288 <td></td> 289 </tr> 290 <tr> 291 <td>Expat </td> 292 <td>CVE-2016-0718CVE-2012-6702CVE-2016-5300CVE-2015-1283</td> 293 <td></td> 294 <td>*</td> 295 </tr> 296 <tr> 297 <td>Webview </td> 298 <td>CVE-2016-6754</td> 299 <td></td> 300 <td>*</td> 301 </tr> 302 <tr> 303 <td>Freetype </td> 304 <td>CVE-2014-9675</td> 305 <td></td> 306 <td>*</td> 307 </tr> 308 <tr> 309 <td> </td> 310 <td>CVE-2015-8963</td> 311 <td></td> 312 <td></td> 313 </tr> 314 <tr> 315 <td> </td> 316 <td>CVE-2016-6136</td> 317 <td></td> 318 <td></td> 319 </tr> 320 <tr> 321 <td>Qualcomm crypto </td> 322 <td>CVE-2016-6738</td> 323 <td></td> 324 <td></td> 325 </tr> 326 <tr> 327 <td>Qualcomm </td> 328 <td>CVE-2016-6739CVE-2016-6740CVE-2016-6741</td> 329 <td></td> 330 <td></td> 331 </tr> 332 <tr> 333 <td>Qualcomm </td> 334 <td>CVE-2016-3904</td> 335 <td></td> 336 <td></td> 337 </tr> 338 <tr> 339 <td>Synaptics </td> 340 <td>CVE-2016-6742CVE-2016-6744CVE-2016-6745CVE-2016-6743</td> 341 <td></td> 342 <td></td> 343 </tr> 344 <tr> 345 <td> </td> 346 <td>CVE-2015-8964CVE-2016-7914CVE-2016-7915CVE-2016-7916</td> 347 <td></td> 348 <td></td> 349 </tr> 350 <tr> 351 <td>NVIDIA GPU </td> 352 <td>CVE-2016-6746</td> 353 <td></td> 354 <td></td> 355 </tr> 356 <tr> 357 <td></td> 358 <td>CVE-2016-6747</td> 359 <td></td> 360 <td></td> 361 </tr> 362 <tr> 363 <td> </td> 364 <td>CVE-2016-6753CVE-2016-7917</td> 365 <td></td> 366 <td></td> 367 </tr> 368 <tr> 369 <td>Qualcomm </td> 370 <td>CVE-2016-6748CVE-2016-6749CVE-2016-6750CVE-2016-3906CVE-2016-3907CVE-2016-6698CVE-2016-6751CVE-2016-6752</td> 371 <td></td> 372 <td></td> 373 </tr> 374 </table> 375 <p> 376 * Android 7.0 Google </p> 377 <h3 id="2016-11-06-summary"> 2016-11-06 </h3> 378 <p> 379 2016-11-06 2016-11-05 2016-11-01 </p> 380 <table> 381 <col width="55%"> 382 <col width="20%"> 383 <col width="13%"> 384 <col width="12%"> 385 <tr> 386 <th></th> 387 <th>CVE</th> 388 <th></th> 389 <th>Google </th> 390 </tr> 391 <tr> 392 <td> </td> 393 <td>CVE-2016-5195</td> 394 <td></td> 395 <td></td> 396 </tr> 397 </table> 398 399 <h2 id="mitigations">Android Google </h2> 400 <p> 401 <a href="/security/enhancements/index.html">Android </a> SafetyNet Android </p> 402 <ul> 403 <li>Android Android Google Android </li> 404 <li>Android <a href="http://static.googleusercontent.com/media/source.android.com/en//security/reports/Google_Android_Security_2015_Report_Final.pdf"> SafetyNet </a><a href="http://static.googleusercontent.com/media/source.android.com/en//security/reports/Google_Android_Security_PHA_classifications.pdf"></a><a href="http://www.android.com/gms">Google </a>Google Play Google Play </li> 405 <li>Google </li> 406 </ul> 407 <h2 id="acknowledgements"></h2> 408 <p> 409 410 </p> 411 <ul> 412 <li>Google Chrome Abhishek AryaOliver ChangMartin Barbella: CVE-2016-6722 413 </li> 414 <li>Google Andrei KapishnikovMiriam Gershenson: CVE-2016-6703</li> 415 <li><a href="http://www.pkav.net">PKAV</a>, Silence Information Technology Ao Wang<a href="http://twitter.com/@r4y2_wa">@r4y2_wa</a> <a href="http://weibo.com/ele7enxxh">Zinuo Han</a>: CVE-2016-6700CVE-2016-6702</li> 416 <li>Security Platform Department, Tencent Askyshang: CVE-2016-6713</li> 417 <li>Android Security Billy Lau: CVE-2016-6737</li> 418 <li> <a href="mailto:kpatsak (a] unipi.gr">Constantinos Patsakis</a> <a href="mailto:talepis (a] unipi.gr">Efthimios Alepis</a>: CVE-2016-6715</li> 419 <li>Alibaba dragonltx: CVE-2016-6714</li> 420 <li>Project Zero Gal Beniamini: CVE-2016-6707CVE-2016-6717</li> 421 <li>IceSword Lab<a href="http://www.360.com">Qihoo 360 Technology Co. Ltd</a> Gengjia Chen<a href="http://twitter.com/chengjia4574">@chengjia4574</a> 422 <a href="http://weibo.com/jfpan">pjf</a>: CVE-2016-6725 423 CVE-2016-6738CVE-2016-6740CVE-2016-6741CVE-2016-6742CVE-2016-6744 424 CVE-2016-6745CVE-2016-3906</li> 425 <li>Alpha Team, <a href="http://www.360.com">Qihoo 360 Technology Co. Ltd</a> Guang Gong<a href="http://twitter.com/oldfresher">@oldfresher</a> 426 : CVE-2016-6754</li> 427 <li> IceSword Lab, 428 429 <a href="http://www.360.com">Qihoo 360 Technology Co. Ltd</a> Jianqiang Zhao<a href="http://twitter.com/jianqiangzhao">@jianqiangzhao</a> 430 <a href="http://weibo.com/jfpan">pjf</a>: CVE-2016-6739 431 CVE-2016-3904CVE-2016-3907CVE-2016-6698</li> 432 <li>Project Zero Mark Brand: CVE-2016-6706</li> 433 <li>Google Mark Renouf: CVE-2016-6724</li> 434 <li>Micha Bednarski<a href="https://github.com/michalbednarski">github.com/michalbednarski</a>: CVE-2016-6710</li> 435 <li>Android Security Min Chong: CVE-2016-6743</li> 436 <li>Trend Micro Peter Pi<a href="http://twitter.com/heisecode">@heisecode</a>: CVE-2016-6721</li> 437 <li>KeenLab, Tencent 438 Qidan He<a href="http://twitter.com/flanker_hqd">@flanker_hqd</a> 439 Gengming Liu<a href="http://twitter.com/dmxcsnsbh">@dmxcsnsbh</a> 440 : CVE-2016-6705</li> 441 <li>Google Robin Lee: CVE-2016-6708</li> 442 <li><a href="mailto:sbauer (a] plzdonthack.me">Scott Bauer</a><a href="http://twitter.com/ScottyBauer1">@ScottyBauer1</a> 443 : CVE-2016-6751</li> 444 <li>Kaspersky Lab Sergey Bobrov<a href="http://twitter.com/Black2Fan">@Black2Fan</a> 445 : CVE-2016-6716</li> 446 <li>Trend Micro Mobile Threat Research Team Seven Shen <a href="http://twitter.com/lingtongshen">@lingtongshen</a> 447 : CVE-2016-6748CVE-2016-6749 448 CVE-2016-6750CVE-2016-6753</li> 449 <li>Vrije Universiteit Amsterdam Victor van der VeenHerbert BosKaveh RazaviCristiano Giuffrida 450 Yanick FratantonioMartina Lindorfer 451 Giovanni Vigna: CVE-2016-6728</li> 452 <li>Alibaba Inc. Weichao Sun<a href="https://twitter.com/sunblate">@sunblate</a>: CVE-2016-6712CVE-2016-6699CVE-2016-6711</li> 453 <li><a href="http://c0reteam.org">C0RE Team</a> Wenke Dou<a href="mailto:vancouverdou (a] gmail.com">vancouverdou (a] gmail.com</a>Chiachih Wu<a href="https://twitter.com/chiachih_wu">@chiachih_wu</a> Xuxian Jiang: CVE-2016-6720</li> 454 <li>Trend Micro Inc. Wish Wu<a href="http://twitter.com/wish_wu">@wish_wu</a>: CVE-2016-6704</li> 455 <li><a href="https://wwws.nightwatchcybersecurity.com">Nightwatch Cybersecurity</a> Yakov Shafranovich: CVE-2016-6723</li> 456 <li><a href="http://c0reteam.org">C0RE Team</a> <a href="mailto:computernik (a] gmail.com">Yuan-Tsung Lo</a> 457 <a href="mailto:yaojun8558363 (a] gmail.com">Yao Jun</a> 458 <a href="mailto:segfault5514 (a] gmail.com">Tong Lin</a>Chiachih Wu<a href="https://twitter.com/chiachih_wu">@chiachih_wu</a>Xuxian Jiang 459 : CVE-2016-6730CVE-2016-6732, 460 CVE-2016-6734CVE-2016-6736</li> 461 <li><a href="http://c0reteam.org">C0RE Team</a> <a href="mailto:computernik (a] gmail.com">Yuan-Tsung Lo</a> 462 <a href="mailto:yaojun8558363 (a] gmail.com">Yao Jun</a> 463 <a href="mailto:wisedd (a] gmail.com">Xiaodong Wang</a>Chiachih Wu<a href="https://twitter.com/chiachih_wu">@chiachih_wu</a>Xuxian Jiang 464 : CVE-2016-6731CVE-2016-6733 465 CVE-2016-6735CVE-2016-6746</li> 466 </ul> 467 <p> 468 Android Security Zach Riggle </p> 469 470 <h2 id="2016-11-01-details"> 2016-11-01 </h2> 471 <p> 472 <a href="#2016-11-01-summary"> 2016-11-01 </a>CVE Google AOSP AOSP ID ID </p> 473 474 <h3 id="rce-in-mediaserver"></h3> 475 <p> 476 477 </p> 478 <table> 479 <col width="18%"> 480 <col width="18%"> 481 <col width="10%"> 482 <col width="19%"> 483 <col width="17%"> 484 <col width="17%"> 485 <tr> 486 <th>CVE</th> 487 <th></th> 488 <th></th> 489 <th> Google </th> 490 <th> AOSP </th> 491 <th></th> 492 </tr> 493 <tr> 494 <td>CVE-2016-6699</td> 495 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/3b1c9f692c4d4b7a683c2b358fc89e831a641b88"> 496 A-31373622</a></td> 497 <td></td> 498 <td></td> 499 <td>7.0</td> 500 <td>2016 7 27 </td> 501 </tr> 502 </table> 503 <h3 id="eop-in-libzipfile">libzipfile </h3> 504 <p> 505 libzipfile 506 </p> 507 <table> 508 <col width="18%"> 509 <col width="18%"> 510 <col width="10%"> 511 <col width="19%"> 512 <col width="17%"> 513 <col width="17%"> 514 <tr> 515 <th>CVE</th> 516 <th></th> 517 <th></th> 518 <th> Google </th> 519 <th> AOSP </th> 520 <th></th> 521 </tr> 522 <tr> 523 <td>CVE-2016-6700</td> 524 <td>A-30916186</td> 525 <td></td> 526 <td>*</td> 527 <td>4.4.45.0.25.1.1</td> 528 <td>2016 8 17 </td> 529 </tr> 530 </table> 531 <p> 532 * Android 7.0 Google 533 </p> 534 <h3 id="rce-in-skia">Skia </h3> 535 <p> 536 libskia 537 </p> 538 <table> 539 <col width="18%"> 540 <col width="18%"> 541 <col width="10%"> 542 <col width="19%"> 543 <col width="17%"> 544 <col width="17%"> 545 <tr> 546 <th>CVE</th> 547 <th></th> 548 <th></th> 549 <th> Google </th> 550 <th> AOSP </th> 551 <th></th> 552 </tr> 553 <tr> 554 <td>CVE-2016-6701</td> 555 <td><a href="https://android.googlesource.com/platform/external/skia/+/aca73722873e908633ff27375f6f93a08cbb7dd3"> 556 A-30190637</a></td> 557 <td></td> 558 <td></td> 559 <td>7.0</td> 560 <td>Google </td> 561 </tr> 562 </table> 563 <h3 id="rce-in-libjpeg">libjpeg </h3> 564 <p> 565 libjpeg libjpeg 566 </p> 567 <table> 568 <col width="18%"> 569 <col width="18%"> 570 <col width="10%"> 571 <col width="19%"> 572 <col width="17%"> 573 <col width="17%"> 574 <tr> 575 <th>CVE</th> 576 <th></th> 577 <th></th> 578 <th> Google </th> 579 <th> AOSP </th> 580 <th></th> 581 </tr> 582 <tr> 583 <td>CVE-2016-6702</td> 584 <td>A-30259087</td> 585 <td></td> 586 <td>*</td> 587 <td>4.4.45.0.25.1.1</td> 588 <td>2016 7 19 </td> 589 </tr> 590 </table> 591 <p> 592 * Android 7.0 Google 593 </p> 594 <h3 id="rce-in-android-runtime">Android </h3> 595 <p> 596 Android Android 597 </p> 598 <table> 599 <col width="18%"> 600 <col width="18%"> 601 <col width="10%"> 602 <col width="19%"> 603 <col width="17%"> 604 <col width="17%"> 605 <tr> 606 <th>CVE</th> 607 <th></th> 608 <th></th> 609 <th> Google </th> 610 <th> AOSP </th> 611 <th></th> 612 </tr> 613 <tr> 614 <td>CVE-2016-6703</td> 615 <td>A-30765246</td> 616 <td></td> 617 <td>*</td> 618 <td>4.4.45.0.25.1.16.06.0.1</td> 619 <td>Google </td> 620 </tr> 621 </table> 622 <p> 623 * Android 7.0 Google 624 </p> 625 <h3 id="eop-in-mediaserver"></h3> 626 <p> 627 628 </p> 629 <table> 630 <col width="18%"> 631 <col width="18%"> 632 <col width="10%"> 633 <col width="19%"> 634 <col width="17%"> 635 <col width="17%"> 636 <tr> 637 <th>CVE</th> 638 <th></th> 639 <th></th> 640 <th> Google </th> 641 <th> AOSP </th> 642 <th></th> 643 </tr> 644 <tr> 645 <td>CVE-2016-6704</td> 646 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/c6c446f9e022adf20064e65a17574804f8af8e7d"> 647 A-30229821</a> 648 [<a href="https://android.googlesource.com/platform/hardware/qcom/audio/+/9cb9810ecb63c8ff55ecf4bc77431dc5b0688b5f">2</a>] 649 [<a href="https://android.googlesource.com/platform/system/media/+/a6274f03b4dfe1c3a22af51e3a17ea56a314e747">3</a>] 650 </td> 651 <td></td> 652 <td></td> 653 <td>4.4.45.0.25.1.16.06.0.17.0</td> 654 <td>2016 7 19 </td> 655 </tr> 656 <tr> 657 <td>CVE-2016-6705</td> 658 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/3a03fa24d21f97e84e796ac5ef14b3f434c0e8f1"> 659 A-30907212</a> 660 [<a href="https://android.googlesource.com/platform/frameworks/av/+/bd04b47d38a89f1dada1c6da2ef4a3d235c166b8">2</a>] 661 </td> 662 <td></td> 663 <td></td> 664 <td>5.0.25.1.16.06.0.17.0</td> 665 <td>2016 8 16 </td> 666 </tr> 667 <tr> 668 <td>CVE-2016-6706</td> 669 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/1d4feebdb85db46e138530f360d9ff2490e14353"> 670 A-31385713</a> 671 </td> 672 <td></td> 673 <td></td> 674 <td>7.0</td> 675 <td>2016 9 8 </td> 676 </tr> 677 </table> 678 <h3 id="eop-in-system-server"> </h3> 679 <p> 680 </p> 681 <table> 682 <col width="18%"> 683 <col width="18%"> 684 <col width="10%"> 685 <col width="19%"> 686 <col width="17%"> 687 <col width="17%"> 688 <tr> 689 <th>CVE</th> 690 <th></th> 691 <th></th> 692 <th> Google </th> 693 <th> AOSP </th> 694 <th></th> 695 </tr> 696 <tr> 697 <td>CVE-2016-6707</td> 698 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/16024ea7c4bae08c972cf6b3734029aad33e8870"> 699 A-31350622</a> 700 </td> 701 <td></td> 702 <td></td> 703 <td>6.06.0.17.0</td> 704 <td>2016 9 7 </td> 705 </tr> 706 </table> 707 <h3 id="eop-in-system-ui"> 708 UI </h3> 709 <p> 710 UI 711 </p> 712 <table> 713 <col width="18%"> 714 <col width="18%"> 715 <col width="10%"> 716 <col width="19%"> 717 <col width="17%"> 718 <col width="17%"> 719 <tr> 720 <th>CVE</th> 721 <th></th> 722 <th></th> 723 <th> Google </th> 724 <th> AOSP </th> 725 <th></th> 726 </tr> 727 <tr> 728 <td>CVE-2016-6708</td> 729 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/c9c73fde339b4db496f2c1ff8c18df1e9db5a7c1"> 730 A-30693465</a> 731 </td> 732 <td></td> 733 <td></td> 734 <td>7.0</td> 735 <td>Google </td> 736 </tr> 737 </table> 738 <h3 id="id-in-conscrypt">Conscrypt </h3> 739 <p> 740 Conscrypt API 741 </p> 742 <table> 743 <col width="18%"> 744 <col width="18%"> 745 <col width="10%"> 746 <col width="19%"> 747 <col width="17%"> 748 <col width="17%"> 749 <tr> 750 <th>CVE</th> 751 <th></th> 752 <th></th> 753 <th> Google </th> 754 <th> AOSP </th> 755 <th></th> 756 </tr> 757 <tr> 758 <td>CVE-2016-6709</td> 759 <td><a href="https://android.googlesource.com/platform/external/conscrypt/+/44ef9535b9afb123d150d8e0362e4bb50794dd41"> 760 A-31081987</a> 761 </td> 762 <td></td> 763 <td></td> 764 <td>6.06.0.17.0</td> 765 <td>2015 10 9 </td> 766 </tr> 767 </table> 768 <h3 id="id-in-download-manager"> </h3> 769 <p> 770 771 </p> 772 <table> 773 <col width="18%"> 774 <col width="18%"> 775 <col width="10%"> 776 <col width="19%"> 777 <col width="17%"> 778 <col width="17%"> 779 <tr> 780 <th>CVE</th> 781 <th></th> 782 <th></th> 783 <th> Google </th> 784 <th> AOSP </th> 785 <th></th> 786 </tr> 787 <tr> 788 <td>CVE-2016-6710</td> 789 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/9fab683c9598d234dd8461335c276ed3e37c91e8"> 790 A-30537115</a> 791 [<a href="https://android.googlesource.com/platform/packages/providers/DownloadProvider/+/243e62949f7208d3b82eda3ee4ec22d3dbc1fb19">2</a>] 792 </td> 793 <td></td> 794 <td></td> 795 <td>5.0.25.1.16.06.0.17.0</td> 796 <td>2016 7 30 </td> 797 </tr> 798 </table> 799 <h3 id="dos-in-bluetooth"> 800 Bluetooth </h3> 801 <p> 802 Bluetooth Bluetooth 803 </p> 804 <table> 805 <col width="18%"> 806 <col width="18%"> 807 <col width="10%"> 808 <col width="19%"> 809 <col width="17%"> 810 <col width="17%"> 811 <tr> 812 <th>CVE</th> 813 <th></th> 814 <th></th> 815 <th> Google </th> 816 <th> AOSP </th> 817 <th></th> 818 </tr> 819 <tr> 820 <td>CVE-2014-9908</td> 821 <td>A-28672558</td> 822 <td></td> 823 <td>*</td> 824 <td>4.4.45.0.25.1.1</td> 825 <td>2014 5 5 </td> 826 </tr> 827 </table> 828 <p> 829 * Android 7.0 Google 830 </p> 831 <h3 id="dos-in-openjdk">OpenJDK </h3> 832 <p>OpenJDK 833 </p> 834 <table> 835 <col width="18%"> 836 <col width="18%"> 837 <col width="10%"> 838 <col width="19%"> 839 <col width="17%"> 840 <col width="17%"> 841 <tr> 842 <th>CVE</th> 843 <th></th> 844 <th></th> 845 <th> Google </th> 846 <th> AOSP </th> 847 <th></th> 848 </tr> 849 <tr> 850 <td>CVE-2015-0410</td> 851 <td><a href="https://android.googlesource.com/platform/libcore/+/21098574528bdf99dd50a74a60e161573e999108"> 852 A-30703445</a> 853 </td> 854 <td></td> 855 <td></td> 856 <td>7.0</td> 857 <td>2015 1 16 </td> 858 </tr> 859 </table> 860 <h3 id="dos-in-mediaserver"></h3> 861 <p> 862 </p> 863 <table> 864 <col width="18%"> 865 <col width="18%"> 866 <col width="10%"> 867 <col width="19%"> 868 <col width="17%"> 869 <col width="17%"> 870 <tr> 871 <th>CVE</th> 872 <th></th> 873 <th></th> 874 <th> Google </th> 875 <th> AOSP </th> 876 <th></th> 877 </tr> 878 <tr> 879 <td>CVE-2016-6711</td> 880 <td><a href="https://android.googlesource.com/platform/external/libvpx/+/063be1485e0099bc81ace3a08b0ec9186dcad693"> 881 A-30593765</a> 882 </td> 883 <td></td> 884 <td>*</td> 885 <td>4.4.45.0.25.1.16.06.0.1</td> 886 <td>2016 8 1 </td> 887 </tr> 888 <tr> 889 <td>CVE-2016-6712</td> 890 <td><a href="https://android.googlesource.com/platform/external/libvpx/+/fdb1b40e7bb147c07bda988c9501ad223795d12d"> 891 A-30593752</a> 892 </td> 893 <td></td> 894 <td>*</td> 895 <td>4.4.45.0.25.1.16.06.0.1</td> 896 <td>2016 8 1 </td> 897 </tr> 898 <tr> 899 <td>CVE-2016-6713</td> 900 <td><a href="https://android.googlesource.com/platform/external/libavc/+/8cafca0e8b1ed8125918e203118c5a4e612fd56c"> 901 A-30822755</a></td> 902 <td></td> 903 <td></td> 904 <td>6.06.0.17.0</td> 905 <td>2016 8 11 </td> 906 </tr> 907 <tr> 908 <td>CVE-2016-6714</td> 909 <td><a href="https://android.googlesource.com/platform/external/libavc/+/5bdb0a6b72782e505671a387bb5f83222d891d6a"> 910 A-31092462</a> 911 </td> 912 <td></td> 913 <td></td> 914 <td>6.06.0.17.0</td> 915 <td>2016 8 22 </td> 916 </tr> 917 </table> 918 <p> 919 * Android 7.0 Google 920 </p> 921 <h3 id="eop-in-framework-apis"> API </h3> 922 <p> API 923 </p> 924 <table> 925 <col width="18%"> 926 <col width="18%"> 927 <col width="10%"> 928 <col width="19%"> 929 <col width="17%"> 930 <col width="17%"> 931 <tr> 932 <th>CVE</th> 933 <th></th> 934 <th></th> 935 <th> Google </th> 936 <th> AOSP </th> 937 <th></th> 938 </tr> 939 <tr> 940 <td>CVE-2016-6715</td> 941 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/3de09838fb0996bb4b420630800ad34e828fd1b6"> 942 A-29833954</a> 943 </td> 944 <td></td> 945 <td></td> 946 <td>4.4.45.0.25.1.16.06.0.17.0</td> 947 <td>2016 6 28 </td> 948 </tr> 949 </table> 950 <h3 id="eop-in-aosp-launcher">AOSP </h3> 951 <p> 952 AOSP 953 </p> 954 <table> 955 <col width="18%"> 956 <col width="18%"> 957 <col width="10%"> 958 <col width="19%"> 959 <col width="17%"> 960 <col width="17%"> 961 <tr> 962 <th>CVE</th> 963 <th></th> 964 <th></th> 965 <th> Google </th> 966 <th> AOSP </th> 967 <th></th> 968 </tr> 969 <tr> 970 <td>CVE-2016-6716</td> 971 <td><a href="https://android.googlesource.com/platform/packages/apps/Launcher3/+/e83fc11c982e67dd0181966f5f3a239ea6b14924"> 972 A-30778130</a> 973 </td> 974 <td></td> 975 <td></td> 976 <td>7.0</td> 977 <td>2016 8 5 </td> 978 </tr> 979 </table> 980 <h3 id="eop-in-mediaserver-1"></h3> 981 <p> 982 983 </p> 984 <table> 985 <col width="18%"> 986 <col width="18%"> 987 <col width="10%"> 988 <col width="19%"> 989 <col width="17%"> 990 <col width="17%"> 991 <tr> 992 <th>CVE</th> 993 <th></th> 994 <th></th> 995 <th> Google </th> 996 <th> AOSP </th> 997 <th></th> 998 </tr> 999 <tr> 1000 <td>CVE-2016-6717</td> 1001 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/45d9bbabbe7920bf4e0a68074b97d8260aef2e07"> 1002 A-31350239</a> 1003 </td> 1004 <td></td> 1005 <td></td> 1006 <td>4.4.45.0.25.1.16.06.0.17.0</td> 1007 <td>2016 9 7 </td> 1008 </tr> 1009 </table> 1010 <h3 id="eop-in-account-manager-service"> </h3> 1011 <p> 1012 1013 </p> 1014 <table> 1015 <col width="18%"> 1016 <col width="18%"> 1017 <col width="10%"> 1018 <col width="19%"> 1019 <col width="17%"> 1020 <col width="17%"> 1021 <tr> 1022 <th>CVE</th> 1023 <th></th> 1024 <th></th> 1025 <th> Google </th> 1026 <th> AOSP </th> 1027 <th></th> 1028 </tr> 1029 <tr> 1030 <td>CVE-2016-6718</td> 1031 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/fecfd550edeca422c0d9f32a9c0abe73398a1ff1"> 1032 A-30455516</a> 1033 </td> 1034 <td></td> 1035 <td></td> 1036 <td>7.0</td> 1037 <td>Google </td> 1038 </tr> 1039 </table> 1040 <h3 id="eop-in-bluetooth">Bluetooth </h3> 1041 <p> 1042 Bluetooth Bluetooth 1043 </p> 1044 <table> 1045 <col width="18%"> 1046 <col width="18%"> 1047 <col width="10%"> 1048 <col width="19%"> 1049 <col width="17%"> 1050 <col width="17%"> 1051 <tr> 1052 <th>CVE</th> 1053 <th></th> 1054 <th></th> 1055 <th> Google </th> 1056 <th> AOSP </th> 1057 <th></th> 1058 </tr> 1059 <tr> 1060 <td>CVE-2016-6719</td> 1061 <td><a href="https://android.googlesource.com/platform/packages/apps/Bluetooth/+/e1b6db10e913c09d0b695368336137f6aabee462"> 1062 A-29043989</a> 1063 [<a href="https://android.googlesource.com/platform/frameworks/base/+/b1dc1757071ba46ee653d68f331486e86778b8e4">2</a>] 1064 </td> 1065 <td></td> 1066 <td></td> 1067 <td>4.4.45.0.25.1.16.06.0.17.0</td> 1068 <td>Google </td> 1069 </tr> 1070 </table> 1071 <h3 id="id-in-mediaserver"></h3> 1072 <p> 1073 1074 </p> 1075 <table> 1076 <col width="18%"> 1077 <col width="18%"> 1078 <col width="10%"> 1079 <col width="19%"> 1080 <col width="17%"> 1081 <col width="17%"> 1082 <tr> 1083 <th>CVE</th> 1084 <th></th> 1085 <th></th> 1086 <th> Google </th> 1087 <th> AOSP </th> 1088 <th></th> 1089 </tr> 1090 <tr> 1091 <td>CVE-2016-6720</td> 1092 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/0f177948ae2640bfe4d70f8e4248e106406b3b0a"> 1093 A-29422020</a> 1094 [<a href="https://android.googlesource.com/platform/frameworks/av/+/2c75e1c3b98e4e94f50c63e2b7694be5f948477c">2</a>] 1095 [<a href="https://android.googlesource.com/platform/frameworks/av/+/7c88b498fda1c2b608a9dd73960a2fd4d7b7e3f7">3</a>] 1096 [<a href="https://android.googlesource.com/platform/frameworks/av/+/640b04121d7cd2cac90e2f7c82b97fce05f074a5">4</a>]</td> 1097 <td></td> 1098 <td></td> 1099 <td>4.4.45.0.25.1.16.06.0.17.0</td> 1100 <td>2016 6 15 </td> 1101 </tr> 1102 <tr> 1103 <td>CVE-2016-6721</td> 1104 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/f6bf0102bdc1adff973e08d8ce9c869c4e2efade"> 1105 A-30875060</a></td> 1106 <td></td> 1107 <td></td> 1108 <td>6.06.0.17.0</td> 1109 <td>2016 8 13 </td> 1110 </tr> 1111 <tr> 1112 <td>CVE-2016-6722</td> 1113 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/89c03b3b9ff74a507a8b8334c50b08b334483556"> 1114 A-31091777</a></td> 1115 <td></td> 1116 <td></td> 1117 <td>4.4.45.0.25.1.16.06.0.17.0</td> 1118 <td>2016 8 23 </td> 1119 </tr> 1120 </table> 1121 <h3 id="dos-in-proxy-auto-config"></h3> 1122 <p> 1123 1124 </p> 1125 <table> 1126 <col width="18%"> 1127 <col width="18%"> 1128 <col width="10%"> 1129 <col width="19%"> 1130 <col width="17%"> 1131 <col width="17%"> 1132 <tr> 1133 <th>CVE</th> 1134 <th></th> 1135 <th></th> 1136 <th> Google </th> 1137 <th> AOSP </th> 1138 <th></th> 1139 </tr> 1140 <tr> 1141 <td>CVE-2016-6723</td> 1142 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/d5b0d0b1df2e1a7943a4bb2034fd21487edd0264"> 1143 A-30100884</a> 1144 [<a href="https://android.googlesource.com/platform/frameworks/base/+/31f351160cdfd9dbe9919682ebe41bde3bcf91c6">2</a>] 1145 </td> 1146 <td></td> 1147 <td></td> 1148 <td>4.4.45.0.25.1.16.06.0.17.0</td> 1149 <td>2016 7 11 </td> 1150 </tr> 1151 </table> 1152 <h3 id="dos-in-input-manager-service"> </h3> 1153 <p> 1154 1155 </p> 1156 <table> 1157 <col width="18%"> 1158 <col width="18%"> 1159 <col width="10%"> 1160 <col width="19%"> 1161 <col width="17%"> 1162 <col width="17%"> 1163 <tr> 1164 <th>CVE</th> 1165 <th></th> 1166 <th></th> 1167 <th> Google </th> 1168 <th> AOSP </th> 1169 <th></th> 1170 </tr> 1171 <tr> 1172 <td>CVE-2016-6724</td> 1173 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/7625010a2d22f8c3f1aeae2ef88dde37cbebd0bf"> 1174 A-30568284</a> 1175 </td> 1176 <td></td> 1177 <td></td> 1178 <td>4.4.45.0.25.1.16.06.0.17.0</td> 1179 <td>Google </td> 1180 </tr> 1181 </table> 1182 <h2 id="2016-11-05-details"> 2016-11-05 </h2> 1183 <p> 1184 <a href="#2016-11-05-summary"> 2016-11-05 </a>CVE Google AOSP AOSP ID ID 1185 </p> 1186 <h3 id="rce-in-qualcomm-crypto-driver"> 1187 Qualcomm crypto </h3> 1188 <p> 1189 Qualcomm crypto 1190 </p> 1191 <table> 1192 <col width="19%"> 1193 <col width="20%"> 1194 <col width="10%"> 1195 <col width="23%"> 1196 <col width="17%"> 1197 <tr> 1198 <th>CVE</th> 1199 <th></th> 1200 <th></th> 1201 <th> Google </th> 1202 <th></th> 1203 </tr> 1204 <tr> 1205 <td>CVE-2016-6725</td> 1206 <td>A-30515053<br> 1207 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.10/commit/?id=cc95d644ee8a043f2883d65dda20e16f95041de3">QC-CR#1050970</a></td> 1208 <td></td> 1209 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixelPixel XL</td> 1210 <td>2016 7 25 </td> 1211 </tr> 1212 </table> 1213 <h3 id="eop-in-kernel-file-system"> 1214 </h3> 1215 <p> 1216 1217 </p> 1218 <table> 1219 <col width="19%"> 1220 <col width="20%"> 1221 <col width="10%"> 1222 <col width="23%"> 1223 <col width="17%"> 1224 <tr> 1225 <th>CVE</th> 1226 <th></th> 1227 <th></th> 1228 <th> Google </th> 1229 <th></th> 1230 </tr> 1231 <tr> 1232 <td>CVE-2015-8961</td> 1233 <td>A-30952474 1234 <br> 1235 <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=6934da9238da947628be83635e365df41064b09b"> </a></td> 1236 <td></td> 1237 <td>PixelPixel XL</td> 1238 <td>2015 10 18 </td> 1239 </tr> 1240 <tr> 1241 <td>CVE-2016-7911</td> 1242 <td>A-30946378 1243 <br> 1244 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=8ba8682107ee2ca3347354e018865d8e1967c5f4"> </a></td> 1245 <td></td> 1246 <td>Nexus 5XNexus 6Nexus 6PNexus 9Android OnePixel CNexus PlayerPixelPixel XL</td> 1247 <td>2016 7 1 </td> 1248 </tr> 1249 <tr> 1250 <td>CVE-2016-7910</td> 1251 <td>A-30942273 1252 <br> 1253 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=77da160530dd1dc94f6ae15a981f24e5f0021e84"> </a></td> 1254 <td></td> 1255 <td>Nexus 5XNexus 6Nexus 6PNexus 9Android OnePixel CNexus PlayerPixelPixel XL</td> 1256 <td>2016 7 29 </td> 1257 </tr> 1258 </table> 1259 <h3 id="eop-in-kernel-scsi-driver"> SCSI </h3> 1260 <p> 1261 SCSI 1262 </p> 1263 <table> 1264 <col width="19%"> 1265 <col width="20%"> 1266 <col width="10%"> 1267 <col width="23%"> 1268 <col width="17%"> 1269 <tr> 1270 <th>CVE</th> 1271 <th></th> 1272 <th></th> 1273 <th> Google </th> 1274 <th></th> 1275 </tr> 1276 <tr> 1277 <td>CVE-2015-8962</td> 1278 <td>A-30951599 1279 <br> 1280 <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=f3951a3709ff50990bf3e188c27d346792103432"> </a></td> 1281 <td></td> 1282 <td>PixelPixel XL</td> 1283 <td>2015 10 30 </td> 1284 </tr> 1285 </table> 1286 <h3 id="eop-in-kernel-media-driver"> </h3> 1287 <p> 1288 1289 </p> 1290 <table> 1291 <col width="19%"> 1292 <col width="20%"> 1293 <col width="10%"> 1294 <col width="23%"> 1295 <col width="17%"> 1296 <tr> 1297 <th>CVE</th> 1298 <th></th> 1299 <th></th> 1300 <th> Google </th> 1301 <th></th> 1302 </tr> 1303 <tr> 1304 <td>CVE-2016-7913</td> 1305 <td>A-30946097 1306 <br> 1307 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=8dfbcc4351a0b6d2f2d77f367552f48ffefafe18"> </a></td> 1308 <td></td> 1309 <td>Nexus 6PAndroid OneNexus PlayerPixelPixel XL</td> 1310 <td>2016 1 28 </td> 1311 </tr> 1312 </table> 1313 <h3 id="eop-in-kernel-usb-driver"> USB </h3> 1314 <p> 1315 USB 1316 </p> 1317 <table> 1318 <col width="19%"> 1319 <col width="20%"> 1320 <col width="10%"> 1321 <col width="23%"> 1322 <col width="17%"> 1323 <tr> 1324 <th>CVE</th> 1325 <th></th> 1326 <th></th> 1327 <th> Google </th> 1328 <th></th> 1329 </tr> 1330 <tr> 1331 <td>CVE-2016-7912</td> 1332 <td>A-30950866 1333 <br> 1334 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=38740a5b87d53ceb89eb2c970150f6e94e00373a"> </a></td> 1335 <td></td> 1336 <td>Pixel CPixelPixel XL</td> 1337 <td>2016 4 14 </td> 1338 </tr> 1339 </table> 1340 <h3 id="eop-in-kernel-ion-subsystem"> ION </h3> 1341 <p> 1342 ION 1343 </p> 1344 <table> 1345 <col width="19%"> 1346 <col width="20%"> 1347 <col width="10%"> 1348 <col width="23%"> 1349 <col width="17%"> 1350 <tr> 1351 <th>CVE</th> 1352 <th></th> 1353 <th></th> 1354 <th> Google </th> 1355 <th></th> 1356 </tr> 1357 <tr> 1358 <td>CVE-2016-6728</td> 1359 <td>A-30400942*</td> 1360 <td></td> 1361 <td>Nexus 5Nexus 5XNexus 6Nexus 6PNexus 9Nexus PlayerPixel CAndroid One</td> 1362 <td>2016 7 25 </td> 1363 </tr> 1364 </table> 1365 <p> 1366 * <a href="https://developers.google.com/android/nexus/drivers">Google </a> Google 1367 </p> 1368 <h3 id="eop-in-qualcomm-bootloader">Qualcomm </h3> 1369 <p> 1370 Qualcomm 1371 </p> 1372 <table> 1373 <col width="19%"> 1374 <col width="20%"> 1375 <col width="10%"> 1376 <col width="23%"> 1377 <col width="17%"> 1378 <tr> 1379 <th>CVE</th> 1380 <th></th> 1381 <th></th> 1382 <th> Google </th> 1383 <th></th> 1384 </tr> 1385 <tr> 1386 <td>CVE-2016-6729</td> 1387 <td>A-30977990* 1388 <br> 1389 QC-CR#977684</td> 1390 <td></td> 1391 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixelPixel XL</td> 1392 <td>2016 7 25 </td> 1393 </tr> 1394 </table> 1395 <p> 1396 * <a href="https://developers.google.com/android/nexus/drivers">Google </a> Google 1397 </p> 1398 <h3 id="eop-in-nvidia-gpu-driver">NVIDIA GPU </h3> 1399 <p> 1400 NVIDIA GPU 1401 </p> 1402 <table> 1403 <col width="19%"> 1404 <col width="20%"> 1405 <col width="10%"> 1406 <col width="23%"> 1407 <col width="17%"> 1408 <tr> 1409 <th>CVE</th> 1410 <th></th> 1411 <th></th> 1412 <th> Google </th> 1413 <th></th> 1414 </tr> 1415 <tr> 1416 <td>CVE-2016-6730</td> 1417 <td>A-30904789*<br> 1418 N-CVE-2016-6730</td> 1419 <td></td> 1420 <td>Pixel C</td> 1421 <td>2016 8 16 </td> 1422 </tr> 1423 <tr> 1424 <td>CVE-2016-6731</td> 1425 <td>A-30906023*<br> 1426 N-CVE-2016-6731</td> 1427 <td></td> 1428 <td>Pixel C</td> 1429 <td>2016 8 16 </td> 1430 </tr> 1431 <tr> 1432 <td>CVE-2016-6732</td> 1433 <td>A-30906599*<br> 1434 N-CVE-2016-6732</td> 1435 <td></td> 1436 <td>Pixel C</td> 1437 <td>2016 8 16 </td> 1438 </tr> 1439 <tr> 1440 <td>CVE-2016-6733</td> 1441 <td>A-30906694*<br> 1442 N-CVE-2016-6733</td> 1443 <td></td> 1444 <td>Pixel C</td> 1445 <td>2016 8 16 </td> 1446 </tr> 1447 <tr> 1448 <td>CVE-2016-6734</td> 1449 <td>A-30907120*<br> 1450 N-CVE-2016-6734</td> 1451 <td></td> 1452 <td>Pixel C</td> 1453 <td>2016 8 16 </td> 1454 </tr> 1455 <tr> 1456 <td>CVE-2016-6735</td> 1457 <td>A-30907701*<br> 1458 N-CVE-2016-6735</td> 1459 <td></td> 1460 <td>Pixel C</td> 1461 <td>2016 8 16 </td> 1462 </tr> 1463 <tr> 1464 <td>CVE-2016-6736</td> 1465 <td>A-30953284*<br> 1466 N-CVE-2016-6736</td> 1467 <td></td> 1468 <td>Pixel C</td> 1469 <td>2016 8 18 </td> 1470 </tr> 1471 </table> 1472 <p> 1473 * <a href="https://developers.google.com/android/nexus/drivers">Google </a> Google 1474 </p> 1475 <h3 id="eop-in-kernel-networking-subsystem"> </h3> 1476 <p> 1477 1478 </p> 1479 <table> 1480 <col width="19%"> 1481 <col width="20%"> 1482 <col width="10%"> 1483 <col width="23%"> 1484 <col width="17%"> 1485 <tr> 1486 <th>CVE</th> 1487 <th></th> 1488 <th></th> 1489 <th> Google </th> 1490 <th></th> 1491 </tr> 1492 <tr> 1493 <td>CVE-2016-6828</td> 1494 <td>A-31183296 1495 <br> 1496 <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/include/net/tcp.h?id=bb1fceca22492109be12640d49f5ea5a544c6bb4"> </a></td> 1497 <td></td> 1498 <td>Nexus 5XNexus 6Nexus 6PNexus 9Android OnePixel CNexus PlayerPixelPixel XL</td> 1499 <td>2016 8 18 </td> 1500 </tr> 1501 </table> 1502 <h3 id="eop-in-kernel-sound-subsystem"> </h3> 1503 <p> 1504 1505 </p> 1506 <table> 1507 <col width="19%"> 1508 <col width="20%"> 1509 <col width="10%"> 1510 <col width="23%"> 1511 <col width="17%"> 1512 <tr> 1513 <th>CVE</th> 1514 <th></th> 1515 <th></th> 1516 <th> Google </th> 1517 <th></th> 1518 </tr> 1519 <tr> 1520 <td>CVE-2016-2184</td> 1521 <td>A-30952477 1522 <br> 1523 <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=836b34a935abc91e13e63053d0a83b24dfb5ea78"> </a></td> 1524 <td></td> 1525 <td>Nexus 5XNexus 6Nexus 6PNexus 9Android OnePixel CNexus PlayerPixelPixel XL</td> 1526 <td>2016 3 31 </td> 1527 </tr> 1528 </table> 1529 <h3 id="eop-in-kernel-ion-subsystem-1"> ION </h3> 1530 <p> 1531 ION 1532 </p> 1533 <table> 1534 <col width="19%"> 1535 <col width="20%"> 1536 <col width="10%"> 1537 <col width="23%"> 1538 <col width="17%"> 1539 <tr> 1540 <th>CVE</th> 1541 <th></th> 1542 <th></th> 1543 <th> Google </th> 1544 <th></th> 1545 </tr> 1546 <tr> 1547 <td>CVE-2016-6737</td> 1548 <td>A-30928456*</td> 1549 <td></td> 1550 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixel CNexus PlayerPixelPixel XL</td> 1551 <td>Google </td> 1552 </tr> 1553 </table> 1554 <p> 1555 * <a href="https://developers.google.com/android/nexus/drivers">Google </a> Google 1556 </p> 1557 <h3 id="vulnerabilities-in-qualcomm-components">Qualcomm </h3> 1558 <p> 1559 Qualcomm Qualcomm AMSS June 2016 80-NV606-17 1560 </p> 1561 <table> 1562 <col width="19%"> 1563 <col width="20%"> 1564 <col width="10%"> 1565 <col width="23%"> 1566 <col width="17%"> 1567 <tr> 1568 <th>CVE</th> 1569 <th></th> 1570 <th>*</th> 1571 <th> Google </th> 1572 <th></th> 1573 </tr> 1574 <tr> 1575 <td>CVE-2016-6727</td> 1576 <td>A-31092400**</td> 1577 <td></td> 1578 <td>Android One</td> 1579 <td>Qualcomm </td> 1580 </tr> 1581 <tr> 1582 <td>CVE-2016-6726</td> 1583 <td>A-30775830**</td> 1584 <td></td> 1585 <td>Nexus 6Android One</td> 1586 <td>Qualcomm </td> 1587 </tr> 1588 </table> 1589 <p>* </p> 1590 <p> 1591 ** <a href="https://developers.google.com/android/nexus/drivers">Google </a> Google 1592 </p> 1593 <h3 id="rce-in-expat">Expat </h3> 1594 <p> 1595 Expat 1596 Expat XML Expat 1597 </p> 1598 <table> 1599 <col width="18%"> 1600 <col width="18%"> 1601 <col width="10%"> 1602 <col width="19%"> 1603 <col width="17%"> 1604 <col width="17%"> 1605 <tr> 1606 <th>CVE</th> 1607 <th></th> 1608 <th></th> 1609 <th> Google </th> 1610 <th> AOSP </th> 1611 <th></th> 1612 </tr> 1613 1614 <tr> 1615 <td>CVE-2016-0718</td> 1616 <td><a href="https://android.googlesource.com/platform/external/expat/+/52ac633b73856ded34b33bd4adb4ab793bbbe963"> 1617 A-28698301</a></td> 1618 <td></td> 1619 <td>*</td> 1620 <td>4.4.45.0.25.1.16.06.0.1</td> 1621 <td>2016 5 10 </td> 1622 </tr> 1623 <tr> 1624 <td>CVE-2012-6702</td> 1625 <td><a href="https://android.googlesource.com/platform/external/expat/+/a11ff32280a863bff93df13ad643912ad9bf1302"> 1626 A-29149404</a></td> 1627 <td></td> 1628 <td>*</td> 1629 <td>4.4.45.0.25.1.16.06.0.1</td> 1630 <td>2016 3 6 </td> 1631 </tr> 1632 <tr> 1633 <td>CVE-2016-5300</td> 1634 <td><a href="https://android.googlesource.com/platform/external/expat/+/a11ff32280a863bff93df13ad643912ad9bf1302"> 1635 A-29149404</a></td> 1636 <td></td> 1637 <td>*</td> 1638 <td>4.4.45.0.25.1.16.06.0.1</td> 1639 <td>2016 6 4 </td> 1640 </tr> 1641 <tr> 1642 <td>CVE-2015-1283</td> 1643 <td><a href="https://android.googlesource.com/platform/external/expat/+/13b40c2040a17038b63a61e2b112c634da203d3b"> 1644 A-27818751</a></td> 1645 <td></td> 1646 <td>*</td> 1647 <td>4.4.45.0.25.1.16.06.0.1</td> 1648 <td>2015 7 24 </td> 1649 </tr> 1650 </table> 1651 1652 <p> 1653 * Android 7.0 Google 1654 </p> 1655 <h3 id="rce-in-webview">Webview </h3> 1656 <p> 1657 Webview 1658 </p> 1659 <table> 1660 <col width="18%"> 1661 <col width="18%"> 1662 <col width="10%"> 1663 <col width="19%"> 1664 <col width="17%"> 1665 <col width="17%"> 1666 <tr> 1667 <th>CVE</th> 1668 <th></th> 1669 <th></th> 1670 <th> Google </th> 1671 <th> AOSP </th> 1672 <th></th> 1673 </tr> 1674 <tr> 1675 <td>CVE-2016-6754</td> 1676 <td>A-31217937</td> 1677 <td></td> 1678 <td>*</td> 1679 <td>5.0.25.1.16.06.0.1</td> 1680 <td>2016 8 23 </td> 1681 </tr> 1682 </table> 1683 <p> 1684 * Android 7.0 Google 1685 </p> 1686 <h3 id="rce-in-freetype">Freetype </h3> 1687 <p> 1688 Freetype Freetype 1689 </p> 1690 <table> 1691 <col width="18%"> 1692 <col width="18%"> 1693 <col width="10%"> 1694 <col width="19%"> 1695 <col width="17%"> 1696 <col width="17%"> 1697 <tr> 1698 <th>CVE</th> 1699 <th></th> 1700 <th></th> 1701 <th> Google </th> 1702 <th> AOSP </th> 1703 <th></th> 1704 </tr> 1705 <tr> 1706 <td>CVE-2014-9675</td> 1707 <td><a href="https://android.googlesource.com/platform/external/freetype/+/f720f0dbcf012d6c984dbbefa0875ef9840458c6"> 1708 A-24296662</a> 1709 [<a href="https://android.googlesource.com/platform/external/pdfium/+/96f965ff7411f1edba72140fd70740e63cabec71">2</a>] 1710 </td> 1711 <td></td> 1712 <td>*</td> 1713 <td>4.4.45.0.25.1.16.06.0.1</td> 1714 <td>Google </td> 1715 </tr> 1716 </table> 1717 <p> 1718 * Android 7.0 Google 1719 </p> 1720 <h3 id="eop-in-kernel-performance-subsystem"> </h3> 1721 <p> 1722 1723 </p> 1724 <table> 1725 <col width="19%"> 1726 <col width="20%"> 1727 <col width="10%"> 1728 <col width="23%"> 1729 <col width="17%"> 1730 <tr> 1731 <th>CVE</th> 1732 <th></th> 1733 <th></th> 1734 <th> Google </th> 1735 <th></th> 1736 </tr> 1737 <tr> 1738 <td>CVE-2015-8963</td> 1739 <td>A-30952077 1740 <br> 1741 <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=12ca6ad2e3a896256f086497a7c7406a547ee373"> </a></td> 1742 <td></td> 1743 <td>Nexus 5XNexus 6Nexus 6PNexus 9Android OnePixel CNexus PlayerPixelPixel XL</td> 1744 <td>2015 12 15 </td> 1745 </tr> 1746 </table> 1747 <h3 id="eop-in-kernel-system-call-auditing-subsystem"> </h3> 1748 <p> 1749 1750 </p> 1751 <table> 1752 <col width="19%"> 1753 <col width="20%"> 1754 <col width="10%"> 1755 <col width="23%"> 1756 <col width="17%"> 1757 <tr> 1758 <th>CVE</th> 1759 <th></th> 1760 <th></th> 1761 <th> Google </th> 1762 <th></th> 1763 </tr> 1764 <tr> 1765 <td>CVE-2016-6136</td> 1766 <td>A-30956807 1767 <br> 1768 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=43761473c254b45883a64441dd0bc85a42f3645c"> </a></td> 1769 <td></td> 1770 <td>Android OnePixel CNexus Player</td> 1771 <td>2016 7 1 </td> 1772 </tr> 1773 </table> 1774 <h3 id="eop-in-qualcomm-crypto-engine-driver">Qualcomm crypto </h3> 1775 <p> 1776 Qualcomm crypto 1777 </p> 1778 <table> 1779 <col width="19%"> 1780 <col width="20%"> 1781 <col width="10%"> 1782 <col width="23%"> 1783 <col width="17%"> 1784 <tr> 1785 <th>CVE</th> 1786 <th></th> 1787 <th></th> 1788 <th> Google </th> 1789 <th></th> 1790 </tr> 1791 <tr> 1792 <td>CVE-2016-6738</td> 1793 <td>A-30034511 1794 <br> 1795 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=a829c54236b455885c3e9c7c77ac528b62045e79">QC-CR#1050538</a></td> 1796 <td></td> 1797 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixelPixel XL</td> 1798 <td>2016 7 7 </td> 1799 </tr> 1800 </table> 1801 <h3 id="eop-in-qualcomm-camera-driver">Qualcomm </h3> 1802 <p> 1803 Qualcomm 1804 </p> 1805 <table> 1806 <col width="19%"> 1807 <col width="20%"> 1808 <col width="10%"> 1809 <col width="23%"> 1810 <col width="17%"> 1811 <tr> 1812 <th>CVE</th> 1813 <th></th> 1814 <th></th> 1815 <th> Google </th> 1816 <th></th> 1817 </tr> 1818 <tr> 1819 <td>CVE-2016-6739</td> 1820 <td>A-30074605*<br> 1821 QC-CR#1049826</td> 1822 <td></td> 1823 <td>Nexus 5XNexus 6PPixelPixel XL</td> 1824 <td>2016 7 11 </td> 1825 </tr> 1826 <tr> 1827 <td>CVE-2016-6740</td> 1828 <td>A-30143904 1829 <br> 1830 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.10/commit/?id=ef78bd62f0c064ae4c827e158d828b2c110ebcdc">QC-CR#1056307</a></td> 1831 <td></td> 1832 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixelPixel XL</td> 1833 <td>2016 7 12 </td> 1834 </tr> 1835 <tr> 1836 <td>CVE-2016-6741</td> 1837 <td>A-30559423 1838 <br> 1839 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=d291eebd8e43bba3229ae7ef9146a132894dc293">QC-CR#1060554</a></td> 1840 <td></td> 1841 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixelPixel XL</td> 1842 <td>2016 7 28 </td> 1843 </tr> 1844 </table> 1845 <p> 1846 * <a href="https://developers.google.com/android/nexus/drivers">Google </a> Google 1847 </p> 1848 <h3 id="eop-in-qualcomm-bus-driver">Qualcomm </h3> 1849 <p> 1850 Qualcomm 1851 </p> 1852 <table> 1853 <col width="19%"> 1854 <col width="20%"> 1855 <col width="10%"> 1856 <col width="23%"> 1857 <col width="17%"> 1858 <tr> 1859 <th>CVE</th> 1860 <th></th> 1861 <th></th> 1862 <th> Google </th> 1863 <th></th> 1864 </tr> 1865 <tr> 1866 <td>CVE-2016-3904</td> 1867 <td>A-30311977 1868 <br> 1869 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=069683407ca9a820d05c914b57c587bcd3f16a3a">QC-CR#1050455</a></td> 1870 <td></td> 1871 <td>Nexus 5XNexus 6PPixelPixel XL</td> 1872 <td>2016 7 22 </td> 1873 </tr> 1874 </table> 1875 <h3 id="eop-in-synaptics-touchscreen-driver">Synaptics </h3> 1876 <p> 1877 Synaptics 1878 </p> 1879 <table> 1880 <col width="19%"> 1881 <col width="20%"> 1882 <col width="10%"> 1883 <col width="23%"> 1884 <col width="17%"> 1885 <tr> 1886 <th>CVE</th> 1887 <th></th> 1888 <th></th> 1889 <th> Google </th> 1890 <th></th> 1891 </tr> 1892 <tr> 1893 <td>CVE-2016-6742</td> 1894 <td>A-30799828*</td> 1895 <td></td> 1896 <td>Nexus 5XAndroid One</td> 1897 <td>2016 8 9 </td> 1898 </tr> 1899 <tr> 1900 <td>CVE-2016-6744</td> 1901 <td>A-30970485*</td> 1902 <td></td> 1903 <td>Nexus 5X</td> 1904 <td>2016 8 19 </td> 1905 </tr> 1906 <tr> 1907 <td>CVE-2016-6745</td> 1908 <td>A-31252388*</td> 1909 <td></td> 1910 <td>Nexus 5XNexus 6PNexus 9Android OnePixelPixel XL</td> 1911 <td>2016 9 1 </td> 1912 </tr> 1913 <tr> 1914 <td>CVE-2016-6743</td> 1915 <td>A-30937462*</td> 1916 <td></td> 1917 <td>Nexus 9Android One</td> 1918 <td>Google </td> 1919 </tr> 1920 </table> 1921 <p> 1922 * <a href="https://developers.google.com/android/nexus/drivers">Google </a> Google 1923 </p> 1924 <h3 id="id-in-kernel-components"> </h3> 1925 <p> 1926 1927 </p> 1928 <table> 1929 <col width="19%"> 1930 <col width="20%"> 1931 <col width="10%"> 1932 <col width="23%"> 1933 <col width="17%"> 1934 <tr> 1935 <th>CVE</th> 1936 <th></th> 1937 <th></th> 1938 <th> Google </th> 1939 <th></th> 1940 </tr> 1941 <tr> 1942 <td>CVE-2015-8964</td> 1943 <td>A-30951112 1944 <br> 1945 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=dd42bf1197144ede075a9d4793123f7689e164bc"> </a></td> 1946 <td></td> 1947 <td>Nexus 5XNexus 6Nexus 6PNexus 9Android OnePixel CNexus PlayerPixelPixel XL</td> 1948 <td>2015 11 27 </td> 1949 </tr> 1950 <tr> 1951 <td>CVE-2016-7915</td> 1952 <td>A-30951261 1953 <br> 1954 <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=50220dead1650609206efe91f0cc116132d59b3f"> </a></td> 1955 <td></td> 1956 <td>Nexus 5XNexus 6Nexus 6PNexus 9Android OnePixel CNexus PlayerPixelPixel XL</td> 1957 <td>2016 1 19 </td> 1958 </tr> 1959 <tr> 1960 <td>CVE-2016-7914</td> 1961 <td>A-30513364 1962 <br> 1963 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=8d4a2ec1e0b41b0cf9a0c5cd4511da7f8e4f3de2"> </a></td> 1964 <td></td> 1965 <td>Pixel CPixelPixel XL</td> 1966 <td>2016 4 6 </td> 1967 </tr> 1968 <tr> 1969 <td>CVE-2016-7916</td> 1970 <td>A-30951939 1971 <br> 1972 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=8148a73c9901a8794a50f950083c00ccf97d43b3"> </a></td> 1973 <td></td> 1974 <td>Nexus 5XNexus 6Nexus 6PNexus 9Android OnePixel CNexus PlayerPixelPixel XL</td> 1975 <td>2016 5 5 </td> 1976 </tr> 1977 </table> 1978 <h3 id="id-in-nvidia-gpu-driver">NVIDIA GPU </h3> 1979 <p> 1980 NVIDIA GPU 1981 </p> 1982 <table> 1983 <col width="19%"> 1984 <col width="20%"> 1985 <col width="10%"> 1986 <col width="23%"> 1987 <col width="17%"> 1988 <tr> 1989 <th>CVE</th> 1990 <th></th> 1991 <th></th> 1992 <th> Google </th> 1993 <th></th> 1994 </tr> 1995 <tr> 1996 <td>CVE-2016-6746</td> 1997 <td>A-30955105*<br> 1998 N-CVE-2016-6746</td> 1999 <td></td> 2000 <td>Pixel C</td> 2001 <td>2016 8 18 </td> 2002 </tr> 2003 </table> 2004 <p> 2005 * <a href="https://developers.google.com/android/nexus/drivers">Google </a> Google 2006 </p> 2007 <h3 id="dos-in-mediaserver-1"></h3> 2008 <p> 2009 2010 </p> 2011 <table> 2012 <col width="19%"> 2013 <col width="20%"> 2014 <col width="10%"> 2015 <col width="23%"> 2016 <col width="17%"> 2017 <tr> 2018 <th>CVE</th> 2019 <th></th> 2020 <th></th> 2021 <th> Google </th> 2022 <th></th> 2023 </tr> 2024 <tr> 2025 <td>CVE-2016-6747</td> 2026 <td>A-31244612*<br> 2027 N-CVE-2016-6747</td> 2028 <td></td> 2029 <td>Nexus 9</td> 2030 <td>Google </td> 2031 </tr> 2032 </table> 2033 <p> 2034 * <a href="https://developers.google.com/android/nexus/drivers">Google </a> Google 2035 </p> 2036 <h3 id="id-in-kernel-components-1"> </h3> 2037 <p> 2038 2039 </p> 2040 <table> 2041 <col width="19%"> 2042 <col width="20%"> 2043 <col width="10%"> 2044 <col width="23%"> 2045 <col width="17%"> 2046 <tr> 2047 <th>CVE</th> 2048 <th></th> 2049 <th></th> 2050 <th> Google </th> 2051 <th></th> 2052 </tr> 2053 <tr> 2054 <td>CVE-2016-7917</td> 2055 <td>A-30947055 2056 <br> 2057 <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=c58d6c93680f28ac58984af61d0a7ebf4319c241"> </a></td> 2058 <td></td> 2059 <td>Pixel CPixelPixel XL</td> 2060 <td>2016 2 2 </td> 2061 </tr> 2062 <tr> 2063 <td>CVE-2016-6753</td> 2064 <td>A-30149174*</td> 2065 <td></td> 2066 <td>Nexus 5XNexus 6Nexus 6PNexus 9Pixel CNexus PlayerPixelPixel XL</td> 2067 <td>2016 7 13 </td> 2068 </tr> 2069 </table> 2070 <p> 2071 * <a href="https://developers.google.com/android/nexus/drivers">Google </a> Google 2072 </p> 2073 <h3 id="id-in-qualcomm-components">Qualcomm </h3> 2074 <p> 2075 Qualcomm GPU SMSM 2076 </p> 2077 <table> 2078 <col width="19%"> 2079 <col width="20%"> 2080 <col width="10%"> 2081 <col width="23%"> 2082 <col width="17%"> 2083 <tr> 2084 <th>CVE</th> 2085 <th></th> 2086 <th></th> 2087 <th> Google </th> 2088 <th></th> 2089 </tr> 2090 <tr> 2091 <td>CVE-2016-6748</td> 2092 <td>A-30076504 2093 <br> 2094 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.10/commit/?id=be651d020b122a1ba9410d23ca4ebbe9f5598df6">QC-CR#987018</a></td> 2095 <td></td> 2096 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixelPixel XL</td> 2097 <td>2016 7 12 </td> 2098 </tr> 2099 <tr> 2100 <td>CVE-2016-6749</td> 2101 <td>A-30228438 2102 <br> 2103 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.10/commit/?id=f9185dc83b92e7d1ee341e32e8cf5ed00a7253a7">QC-CR#1052818</a></td> 2104 <td></td> 2105 <td>Nexus 5XNexus 6PPixelPixel XL</td> 2106 <td>2016 7 12 </td> 2107 </tr> 2108 <tr> 2109 <td>CVE-2016-6750</td> 2110 <td>A-30312054 2111 <br> 2112 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=34bda711a1c7bc7f9fd7bea3a5be439ed00577e5">QC-CR#1052825</a></td> 2113 <td></td> 2114 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixelPixel XL</td> 2115 <td>2016 7 21 </td> 2116 </tr> 2117 <tr> 2118 <td>CVE-2016-3906</td> 2119 <td>A-30445973 2120 <br> 2121 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=b333d32745fec4fb1098ee1a03d4425f3c1b4c2e">QC-CR#1054344</a></td> 2122 <td></td> 2123 <td>Nexus 5XNexus 6P</td> 2124 <td>2016 7 27 </td> 2125 </tr> 2126 <tr> 2127 <td>CVE-2016-3907</td> 2128 <td>A-30593266 2129 <br> 2130 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.10/commit/?id=744330f4e5d70dce71c4c9e03c5b6a8b59bb0cda">QC-CR#1054352</a></td> 2131 <td></td> 2132 <td>Nexus 5XNexus 6PPixelPixel XL</td> 2133 <td>2016 8 2 </td> 2134 </tr> 2135 <tr> 2136 <td>CVE-2016-6698</td> 2137 <td>A-30741851 2138 <br> 2139 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.10/commit/?id=de90beb76ad0b80da821c3b857dd30cd36319e61">QC-CR#1058826</a></td> 2140 <td></td> 2141 <td>Nexus 5XNexus 6PAndroid OnePixelPixel XL</td> 2142 <td>2016 8 2 </td> 2143 </tr> 2144 <tr> 2145 <td>CVE-2016-6751</td> 2146 <td>A-30902162*<br> 2147 QC-CR#1062271</td> 2148 <td></td> 2149 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixelPixel XL</td> 2150 <td>2016 8 15 </td> 2151 </tr> 2152 <tr> 2153 <td>CVE-2016-6752</td> 2154 <td>A-31498159 2155 <br> 2156 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?h=0de2c7600c8f1f0152a2f421c6593f931186400a">QC-CR#987051</a></td> 2157 <td></td> 2158 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixelPixel XL</td> 2159 <td>Google </td> 2160 </tr> 2161 </table> 2162 <p> 2163 * <a href="https://developers.google.com/android/nexus/drivers">Google </a> Google 2164 </p> 2165 2166 <h2 id="2016-11-06-details"> 2016-11-06 </h2> 2167 <p> 2168 <a href="#2016-11-06-summary"> 2016-11-06 </a>CVE Google AOSP AOSP ID ID 2169 </p> 2170 <h3 id="eop-in-kernel-memory-subsystem"> </h3> 2171 <p> 2172 2173 </p> 2174 <p> 2175 <strong>:</strong> 2016-11-06 2016-11-01 2016-11-05 2176 </p> 2177 <table> 2178 <tr> 2179 <th>CVE</th> 2180 <th></th> 2181 <th></th> 2182 <th> </th> 2183 <th></th> 2184 </tr> 2185 <tr> 2186 <td>CVE-2016-5195</td> 2187 <td>A-32141528<br> 2188 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=9691eac5593ff1e2f82391ad327f21d90322aec1"> </a> 2189 [<a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=e45a502bdeae5a075257c4f061d1ff4ff0821354">2</a>]</td> 2190 <td></td> 2191 <td>3.103.18</td> 2192 <td>2016 10 12 </td> 2193 </tr> 2194 </table> 2195 <h2 id="common-questions-and-answers"></h2> 2196 <p> 2197 2198 </p> 2199 <p> 2200 <strong>1. </strong> 2201 </p> 2202 <p> 2203 <a href="https://support.google.com/pixelphone/answer/4457705#pixel_phones&nexus_devices">Pixel Nexus </a> 2204 </p> 2205 <ul> 2206 <li> 2016-11-01 2016-11-01 </li> 2207 <li> 2016-11-05 2016-11-05 </li> 2208 <li> 2016-11-06 2016-11-06 </li> 2209 </ul> 2210 <p> 2211 </p> 2212 <ul> 2213 <li>[ro.build.version.security_patch]:[2016-11-01]</li> 2214 <li>[ro.build.version.security_patch]:[2016-11-05]</li> 2215 <li>[ro.build.version.security_patch]:[2016-11-06].</li> 2216 </ul> 2217 <p> 2218 <strong>2. 3 </strong> 2219 </p> 2220 <p> 2221 3 Android Android Android 2222 </p> 2223 <ul> 2224 <li>2016 11 1 </li> 2225 <li>2016 11 5 </li> 2226 <li>2016 11 6 </li> 2227 </ul> 2228 <p> 2229 1 2230 </p> 2231 <p id="google-devices"> 2232 <strong>3. Google </strong> 2233 </p> 2234 <p> 2235 <a href="#2016-11-01-details">2016-11-01</a><a href="#2016-11-05-details">2016-11-05</a><a href="#2016-11-06-details">2016-11-06</a> <em> Google </em> Google 2236 </p> 2237 <ul> 2238 <li><strong> Google :</strong> Nexus Pixel <em> Google </em><a href="https://support.google.com/pixelphone/answer/4457705#pixel_phones&nexus_devices"></a>Nexus 5Nexus 5XNexus 6Nexus 6PNexus 72013Nexus 9Android OneNexus PlayerPixel CPixelPixel XL</li> 2239 <li><strong> Google </strong>: Google <em> Google </em> Google </li> 2240 <li><strong> Google </strong>: Android 7.0 Google <em> Google </em></li> 2241 </ul> 2242 <p> 2243 <strong>4. 2244 </strong> 2245 </p> 2246 <p> 2247 <em></em> 2248 </p> 2249 <table> 2250 <tr> 2251 <th></th> 2252 <th></th> 2253 </tr> 2254 <tr> 2255 <td>A-</td> 2256 <td>Android ID</td> 2257 </tr> 2258 <tr> 2259 <td>QC-</td> 2260 <td>Qualcomm </td> 2261 </tr> 2262 <tr> 2263 <td>M-</td> 2264 <td>MediaTek </td> 2265 </tr> 2266 <tr> 2267 <td>N-</td> 2268 <td>NVIDIA </td> 2269 </tr> 2270 <tr> 2271 <td>B-</td> 2272 <td>Broadcom </td> 2273 </tr> 2274 </table> 2275 2276 <h2 id="revisions"></h2> 2277 <ul> 2278 <li>2016 11 7 : </li> 2279 <li>11 8 : AOSP CVE-2016-6709 </li> 2280 </ul> 2281 2282 </body> 2283 </html> 2284
