1 <html devsite><head> 2 <title>Android - 2017 4 </title> 3 <meta name="project_path" value="/_project.yaml"/> 4 <meta name="book_path" value="/_book.yaml"/> 5 </head> 6 <body> 7 <!-- 8 Copyright 2017 The Android Open Source Project 9 10 Licensed under the Apache License, Version 2.0 (the "License"); 11 you may not use this file except in compliance with the License. 12 You may obtain a copy of the License at 13 14 http://www.apache.org/licenses/LICENSE-2.0 15 16 Unless required by applicable law or agreed to in writing, software 17 distributed under the License is distributed on an "AS IS" BASIS, 18 WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 19 See the License for the specific language governing permissions and 20 limitations under the License. 21 --> 22 <p><em>2017 4 3 | 2017 4 5 </em></p> 23 <p>Android Android Nexus OTAGoogle <a href="https://developers.google.com/android/nexus/images">Google </a>2017 4 5 <a href="https://support.google.com/pixelphone/answer/4457705#pixel_phones&nexus_devices">Pixel Nexus </a></p> 24 <p> 2017 3 6 Android AOSPAOSP </p> 25 <p>MMS <a href="/security/overview/updates-resources.html#severity"></a></p> 26 <p><a href="/security/enhancements/index.html">Android </a> <a href="https://developer.android.com/training/safetynet/index.html">SafetyNet</a> <a href="#mitigations">Android Google </a>Android </p> 27 <p></p> 28 29 <h2 id="announcements"></h2> 30 <ul> 31 <li>2 Android Android <a href="#common-questions-and-answers"></a> 32 <ul> 33 <li><strong>2017-04-01</strong>: 2017-04-01 </li> 34 <li><strong>2017-04-05</strong>: 2017-04-01 2017-04-05 </li> 35 </ul> 36 </li> 37 <li> Google 2017 4 5 1 OTA </li> 38 </ul> 39 40 <h2 id="mitigations">Android Google </h2> 41 <p><a href="/security/enhancements/index.html">Android </a> SafetyNet Android </p> 42 <ul> 43 <li>Android Android Google Android </li> 44 <li>Android <a href="http://static.googleusercontent.com/media/source.android.com/en//security/reports/Google_Android_Security_2016_Report_Final.pdf"> SafetyNet</a> <a href="http://static.googleusercontent.com/media/source.android.com/en//security/reports/Google_Android_Security_PHA_classifications.pdf"></a><a href="http://www.android.com/gms">Google </a>Google Play Google Play </li> 45 <li>Google </li> 46 </ul> 47 48 <h2 id="acknowledgements"></h2> 49 <p></p> 50 <ul> 51 <li>Shellphish Grill Aravind Machirydonfos: CVE-2016-5349</li> 52 <li>TencentXuanwu Lab Daxing Guo<a href="https://twitter.com/freener0">@freener0</a>: CVE-2017-0585CVE-2017-0553</li> 53 <li><a href="mailto:derrek.haxx (a] gmail.com">Derrek</a><a href="https://twitter.com/derrekr6">@derrekr6</a> Scott Bauer: CVE-2017-0576</li> 54 <li>Project Zero Gal Beniamini: CVE-2017-0571CVE-2017-0570CVE-2017-0572CVE-2017-0569CVE-2017-0561</li> 55 <li>Qihoo 360 Technology Co. Ltd.IceSword Lab Gengjia Chen<a href="https://twitter.com/chengjia4574">@chengjia4574</a> <a href="http://weibo.com/jfpan">pjf</a>: CVE-2017-6426CVE-2017-0581CVE-2017-0329CVE-2017-0332CVE-2017-0566</li> 56 <li>Qihoo 360 Technology Co. Ltd.Alpha Team Guang Gong<a href="https://twitter.com/oldfresher">@oldfresher</a>: CVE-2017-0547</li> 57 <li>Qihoo 360 Technology Co. Ltd.Alpha Team Hao Chen Guang Gong: CVE-2017-6424CVE-2017-0584CVE-2017-0454CVE-2017-0575CVE-2017-0567</li> 58 <li>Ian Foster<a href="https://twitter.com/lanrat">@lanrat</a>: CVE-2017-0554</li> 59 <li>Trend Micro Inc. Jack Tang: CVE-2017-0579</li> 60 <li><a href="https://skyeye.360safe.com">Qihoo 360 Skyeye Labs</a> Jianjun Dai<a href="https://twitter.com/Jioun_dai">@Jioun_dai</a>: CVE-2017-0559CVE-2017-0541</li> 61 <li>Qihoo 360IceSword Lab Jianqiang Zhao<a href="https://twitter.com/jianqiangzhao">@jianqiangzhao</a> <a href="http://weibo.com/jfpan">pjf</a>: CVE-2017-6425CVE-2016-5346</li> 62 <li><a href="http://c0reteam.org">C0RE Team</a> Lubo Zhang<a href="mailto:zlbzlb815 (a] 163.com">zlbzlb815 (a] 163.com</a> Qihoo 360 Technology Co. Ltd.IceSword Lab Yonggang Guo<a href="https://twitter.com/guoygang">@guoygang</a>: CVE-2017-0564</li> 63 <li>Google <a href="mailto:salyzyn (a] android.com">Mark Salyzyn</a>: CVE-2017-0558</li> 64 <li>TeslaProduct Security Team Mike Anderson<a href="https://twitter.com/manderbot">@manderbot</a> Nathan Crandall<a href="https://twitter.com/natecray">@natecray</a>: CVE-2017-0327CVE-2017-0328</li> 65 <li>Alibaba Mobile Security Group Peng XiaoChengming YangNing YouChao YangYang song: CVE-2017-0565</li> 66 <li>Baidu X-Lab Pengfei DingChenfu BaoLenx Wei: CVE-2016-10236</li> 67 <li>TencentKeenLab Qidan He - <a href="https://twitter.com/flanker_hqd">@flanker_hqd</a>: CVE-2017-0544CVE-2016-10231CVE-2017-0325</li> 68 <li>HCL TechnologiesAleph Research Roee Hay<a href="https://twitter.com/roeehay">@roeehay</a>: CVE-2017-0582CVE-2017-0563</li> 69 <li><a href="mailto:sbauer (a] plzdonthack.me">Scott Bauer</a><a href="https://twitter.com/ScottyBauer1">@ScottyBauer1</a>: CVE-2017-0562CVE-2017-0339</li> 70 <li>Trend MicroMobile Threat Research Team Seven Shen<a href="https://twitter.com/lingtongshen">@lingtongshen</a>: CVE-2017-0578</li> 71 <li>Tim Becker: CVE-2017-0546</li> 72 <li>Uma Sankar Pradhan<a href="https://twitter.com/umasankar_iitd">@umasankar_iitd</a>: CVE-2017-0560</li> 73 <li><a href="http://www.trendmicro.com">Trend Micro</a><a href="http://blog.trendmicro.com/trendlabs-security-intelligence/category/mobile">Mobile Threat Response Team</a> V.E.O<a href="https://twitter.com/vysea">@VYSEa</a>: CVE-2017-0555CVE-2017-0538CVE-2017-0539CVE-2017-0540CVE-2017-0557CVE-2017-0556</li> 74 <li>Alibaba Inc Weichao Sun<a href="https://twitter.com/sunblate">@sunblate</a>: CVE-2017-0549</li> 75 <li>Qihoo 360 Technology Co. Ltd.Chen of Alpha Team Wenlin Yang<a href="https://twitter.com/wenlin_yang">@wenlin_yang</a>Guang Gong<a href="https://twitter.com/oldfresher">@oldfresher</a>Hao Chen: CVE-2017-0580CVE-2017-0577</li> 76 <li>Qihoo 360 Technology Co. Ltd.IceSword Lab Yonggang Guo<a href="https://twitter.com/guoygang">@guoygang</a>: CVE-2017-0586</li> 77 <li>Qihoo 360 Technology Co. Ltd.Chengdu Security Response Center <a href="http://weibo.com/ele7enxxh">Zinuo Han</a>: CVE-2017-0548</li> 78 <li>Google Zubin Mithra: CVE-2017-0462</li> 79 </ul> 80 81 <h2 id="2017-04-01-details"> 2017-04-01 </h2> 82 <p> 2017-04-01 CVE Google AOSP AOSP ID ID </p> 83 84 <h3 id="rce-in-mediaserver"></h3> 85 <p> </p> 86 87 <table> 88 <colgroup><col width="18%" /> 89 <col width="17%" /> 90 <col width="10%" /> 91 <col width="19%" /> 92 <col width="18%" /> 93 <col width="17%" /> 94 </colgroup><tbody><tr> 95 <th>CVE</th> 96 <th></th> 97 <th></th> 98 <th> Google </th> 99 <th> AOSP </th> 100 <th></th> 101 </tr> 102 <tr> 103 <td>CVE-2017-0538</td> 104 <td><a href="https://android.googlesource.com/platform/external/libavc/+/494561291a503840f385fbcd11d9bc5f4dc502b8">A-33641588</a></td> 105 <td></td> 106 <td></td> 107 <td>6.06.0.17.07.1.1</td> 108 <td>2016 12 13 </td> 109 </tr> 110 <tr> 111 <td>CVE-2017-0539</td> 112 <td><a href="https://android.googlesource.com/platform/external/libhevc/+/1ab5ce7e42feccd49e49752e6f58f9097ac5d254">A-33864300</a></td> 113 <td></td> 114 <td></td> 115 <td>5.0.25.1.16.06.0.17.07.1.1</td> 116 <td>2016 12 23 </td> 117 </tr> 118 <tr> 119 <td>CVE-2017-0540</td> 120 <td><a href="https://android.googlesource.com/platform/external/libhevc/+/01ca88bb6c5bdd44e071f8effebe12f1d7da9853">A-33966031</a></td> 121 <td></td> 122 <td></td> 123 <td>5.0.25.1.16.06.0.17.07.1.1</td> 124 <td>2016 12 29 </td> 125 </tr> 126 <tr> 127 <td>CVE-2017-0541</td> 128 <td><a href="https://android.googlesource.com/platform/external/sonivox/+/56d153259cc3e16a6a0014199a2317dde333c978">A-34031018</a></td> 129 <td></td> 130 <td></td> 131 <td>4.4.45.0.25.1.16.06.0.17.07.1.1</td> 132 <td>2017 1 1 </td> 133 </tr> 134 <tr> 135 <td>CVE-2017-0542</td> 136 <td><a href="https://android.googlesource.com/platform/external/libavc/+/33ef7de9ddc8ea7eb9cbc440d1cf89957a0c267b">A-33934721</a></td> 137 <td></td> 138 <td></td> 139 <td>6.06.0.17.07.1.1</td> 140 <td>Google </td> 141 </tr> 142 <tr> 143 <td>CVE-2017-0543</td> 144 <td><a href="https://android.googlesource.com/platform/external/libavc/+/f634481e940421020e52f511c1fb34aac1db4b2f">A-34097866</a></td> 145 <td></td> 146 <td></td> 147 <td>6.06.0.17.07.1.1</td> 148 <td>Google </td> 149 </tr> 150 </tbody></table> 151 152 <h3 id="eop-in-camerabase">CameraBase </h3> 153 <p>CameraBase </p> 154 155 <table> 156 <colgroup><col width="18%" /> 157 <col width="17%" /> 158 <col width="10%" /> 159 <col width="19%" /> 160 <col width="18%" /> 161 <col width="17%" /> 162 </colgroup><tbody><tr> 163 <th>CVE</th> 164 <th></th> 165 <th></th> 166 <th> Google </th> 167 <th> AOSP </th> 168 <th></th> 169 </tr> 170 <tr> 171 <td>CVE-2017-0544</td> 172 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/4b49489c12e6862e9a320ebcb53872e809ed20ec">A-31992879</a></td> 173 <td></td> 174 <td></td> 175 <td>4.4.45.0.25.1.16.06.0.17.07.1.1</td> 176 <td>2016 10 6 </td> 177 </tr> 178 </tbody></table> 179 180 <h3 id="eop-in-audioserver"></h3> 181 <p></p> 182 183 <table> 184 <colgroup><col width="18%" /> 185 <col width="17%" /> 186 <col width="10%" /> 187 <col width="19%" /> 188 <col width="18%" /> 189 <col width="17%" /> 190 </colgroup><tbody><tr> 191 <th>CVE</th> 192 <th></th> 193 <th></th> 194 <th> Google </th> 195 <th> AOSP </th> 196 <th></th> 197 </tr> 198 <tr> 199 <td>CVE-2017-0545</td> 200 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/e5a54485e08400a976092cd5b1c6d909d0e1a4ab">A-32591350</a></td> 201 <td></td> 202 <td></td> 203 <td>5.0.25.1.16.06.0.17.07.1.1</td> 204 <td>2016 10 31 </td> 205 </tr> 206 </tbody></table> 207 208 <h3 id="eop-in-surfaceflinger">SurfaceFlinger </h3> 209 <p>SurfaceFlinger </p> 210 211 <table> 212 <colgroup><col width="18%" /> 213 <col width="17%" /> 214 <col width="10%" /> 215 <col width="19%" /> 216 <col width="18%" /> 217 <col width="17%" /> 218 </colgroup><tbody><tr> 219 <th>CVE</th> 220 <th></th> 221 <th></th> 222 <th> Google </th> 223 <th> AOSP </th> 224 <th></th> 225 </tr> 226 <tr> 227 <td>CVE-2017-0546</td> 228 <td><a href="https://android.googlesource.com/platform/frameworks/native/+/45b202513ba7440beaefbf9928f73fb6683dcfbd">A-32628763</a></td> 229 <td></td> 230 <td></td> 231 <td>4.4.45.0.25.1.16.06.0.17.07.1.1</td> 232 <td>2016 11 2 </td> 233 </tr> 234 </tbody></table> 235 236 <h3 id="id-in-mediaserver"></h3> 237 <p> </p> 238 239 <table> 240 <colgroup><col width="18%" /> 241 <col width="17%" /> 242 <col width="10%" /> 243 <col width="19%" /> 244 <col width="18%" /> 245 <col width="17%" /> 246 </colgroup><tbody><tr> 247 <th>CVE</th> 248 <th></th> 249 <th></th> 250 <th> Google </th> 251 <th> AOSP </th> 252 <th></th> 253 </tr> 254 <tr> 255 <td>CVE-2017-0547</td> 256 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/9667e3eff2d34c3797c3b529370de47b2c1f1bf6">A-33861560</a></td> 257 <td></td> 258 <td></td> 259 <td>4.4.45.0.25.1.16.06.0.17.07.1.1</td> 260 <td>2016 12 22 </td> 261 </tr> 262 </tbody></table> 263 264 <h3 id="dos-in-libskia">libskia </h3> 265 <p>libiskia </p> 266 267 <table> 268 <colgroup><col width="18%" /> 269 <col width="17%" /> 270 <col width="10%" /> 271 <col width="19%" /> 272 <col width="18%" /> 273 <col width="17%" /> 274 </colgroup><tbody><tr> 275 <th>CVE</th> 276 <th></th> 277 <th></th> 278 <th> Google </th> 279 <th> AOSP </th> 280 <th></th> 281 </tr> 282 <tr> 283 <td>CVE-2017-0548</td> 284 <td><a href="https://android.googlesource.com/platform/external/skia/+/318e3505ac2436c62ec19fd27ebe9f8e7d174544">A-33251605</a></td> 285 <td></td> 286 <td></td> 287 <td>7.07.1.1</td> 288 <td>2016 11 29 </td> 289 </tr> 290 </tbody></table> 291 292 <h3 id="dos-in-mediaserver"></h3> 293 <p></p> 294 295 <table> 296 <colgroup><col width="18%" /> 297 <col width="17%" /> 298 <col width="10%" /> 299 <col width="19%" /> 300 <col width="18%" /> 301 <col width="17%" /> 302 </colgroup><tbody><tr> 303 <th>CVE</th> 304 <th></th> 305 <th></th> 306 <th> Google </th> 307 <th> AOSP </th> 308 <th></th> 309 </tr> 310 <tr> 311 <td>CVE-2017-0549</td> 312 <td><a href="https://android.googlesource.com/platform/external/libavc/+/37345554fea84afd446d6d8fbb87feea5a0dde3f">A-33818508</a></td> 313 <td></td> 314 <td></td> 315 <td>6.06.0.17.07.1.1</td> 316 <td>2016 12 20 </td> 317 </tr> 318 <tr> 319 <td>CVE-2017-0550</td> 320 <td><a href="https://android.googlesource.com/platform/external/libavc/+/7950bf47b6944546a0aff11a7184947de9591b51">A-33933140</a></td> 321 <td></td> 322 <td></td> 323 <td>6.06.0.17.07.1.1</td> 324 <td>Google </td> 325 </tr> 326 <tr> 327 <td>CVE-2017-0551</td> 328 <td><a href="https://android.googlesource.com/platform/external/libavc/+/8b5fd8f24eba5dd19ab2f80ea11a9125aa882ae2">A-34097231</a> 329 [<a href="https://android.googlesource.com/platform/external/libavc/+/494561291a503840f385fbcd11d9bc5f4dc502b8">2</a>]</td> 330 <td></td> 331 <td></td> 332 <td>6.06.0.17.07.1.1</td> 333 <td>Google </td> 334 </tr> 335 <tr> 336 <td>CVE-2017-0552</td> 337 <td><a href="https://android.googlesource.com/platform/external/libavc/+/9a00f562a612d56e7b2b989d168647db900ba6cf">A-34097915</a></td> 338 <td></td> 339 <td></td> 340 <td>6.06.0.17.07.1.1</td> 341 <td>Google </td> 342 </tr> 343 </tbody></table> 344 345 <h3 id="eop-in-libnl">libnl </h3> 346 <p>libnl Wi-Fi </p> 347 348 <table> 349 <colgroup><col width="18%" /> 350 <col width="17%" /> 351 <col width="10%" /> 352 <col width="19%" /> 353 <col width="18%" /> 354 <col width="17%" /> 355 </colgroup><tbody><tr> 356 <th>CVE</th> 357 <th></th> 358 <th></th> 359 <th> Google </th> 360 <th> AOSP </th> 361 <th></th> 362 </tr> 363 <tr> 364 <td>CVE-2017-0553</td> 365 <td><a href="https://android.googlesource.com/platform/external/libnl/+/f83d9c1c67b6be69a96995e384f50b572b667df0">A-32342065</a></td> 366 <td></td> 367 <td></td> 368 <td>5.0.25.1.16.06.0.17.07.1.1</td> 369 <td>2016 10 21 </td> 370 </tr> 371 </tbody></table> 372 373 <h3 id="eop-in-telephony">Telephony </h3> 374 <p>Telephony </p> 375 376 <table> 377 <colgroup><col width="18%" /> 378 <col width="17%" /> 379 <col width="10%" /> 380 <col width="19%" /> 381 <col width="18%" /> 382 <col width="17%" /> 383 </colgroup><tbody><tr> 384 <th>CVE</th> 385 <th></th> 386 <th></th> 387 <th> Google </th> 388 <th> AOSP </th> 389 <th></th> 390 </tr> 391 <tr> 392 <td>CVE-2017-0554</td> 393 <td><a href="https://android.googlesource.com/platform/packages/services/Telephony/+/aeb795ef2290af1a0e4b14909363bc574e6b3ee7">A-33815946</a> 394 [<a href="https://android.googlesource.com/platform/frameworks/base/+/3294256ba5b9e2ba2d8619d617e3d900e5386564">2</a>]</td> 395 <td></td> 396 <td></td> 397 <td>4.4.45.0.25.1.16.06.0.17.07.1.1</td> 398 <td>2016 12 20 </td> 399 </tr> 400 </tbody></table> 401 402 <h3 id="id-in-mediaserver-2"></h3> 403 <p></p> 404 405 <table> 406 <colgroup><col width="18%" /> 407 <col width="17%" /> 408 <col width="10%" /> 409 <col width="19%" /> 410 <col width="18%" /> 411 <col width="17%" /> 412 </colgroup><tbody><tr> 413 <th>CVE</th> 414 <th></th> 415 <th></th> 416 <th> Google </th> 417 <th> AOSP </th> 418 <th></th> 419 </tr> 420 <tr> 421 <td>CVE-2017-0555</td> 422 <td><a href="https://android.googlesource.com/platform/external/libavc/+/0b23c81c3dd9ec38f7e6806a3955fed1925541a0">A-33551775</a></td> 423 <td></td> 424 <td></td> 425 <td>6.06.0.17.07.1.1</td> 426 <td>2016 12 12 </td> 427 </tr> 428 <tr> 429 <td>CVE-2017-0556</td> 430 <td><a href="https://android.googlesource.com/platform/external/libmpeg2/+/f301cff2c1ddd880d9a2c77b22602a137519867b">A-34093952</a></td> 431 <td></td> 432 <td></td> 433 <td>6.06.0.17.07.1.1</td> 434 <td>2017 1 4 </td> 435 </tr> 436 <tr> 437 <td>CVE-2017-0557</td> 438 <td><a href="https://android.googlesource.com/platform/external/libmpeg2/+/227c1f829127405e21dab1664393050c652ef71e">A-34093073</a></td> 439 <td></td> 440 <td></td> 441 <td>6.06.0.17.07.1.1</td> 442 <td>2017 1 4 </td> 443 </tr> 444 <tr> 445 <td>CVE-2017-0558</td> 446 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/50358a80b1724f6cf1bcdf003e1abf9cc141b122">A-34056274</a></td> 447 <td></td> 448 <td></td> 449 <td>4.4.45.0.25.1.16.06.0.17.07.1.1</td> 450 <td>Google </td> 451 </tr> 452 </tbody></table> 453 454 <h3 id="id-in-libskia">libskia </h3> 455 <p>libskia </p> 456 457 <table> 458 <colgroup><col width="18%" /> 459 <col width="17%" /> 460 <col width="10%" /> 461 <col width="19%" /> 462 <col width="18%" /> 463 <col width="17%" /> 464 </colgroup><tbody><tr> 465 <th>CVE</th> 466 <th></th> 467 <th></th> 468 <th> Google </th> 469 <th> AOSP </th> 470 <th></th> 471 </tr> 472 <tr> 473 <td>CVE-2017-0559</td> 474 <td><a href="https://android.googlesource.com/platform/external/skia/+/16882f721279a82a1c860ac689ce570b16fe26a0">A-33897722</a></td> 475 <td></td> 476 <td></td> 477 <td>4.4.45.0.25.1.16.06.0.17.07.1.1</td> 478 <td>2016 12 25 </td> 479 </tr> 480 </tbody></table> 481 482 <h3 id="id-in-factory-reset"></h3> 483 <p></p> 484 485 <table> 486 <colgroup><col width="18%" /> 487 <col width="17%" /> 488 <col width="10%" /> 489 <col width="19%" /> 490 <col width="18%" /> 491 <col width="17%" /> 492 </colgroup><tbody><tr> 493 <th>CVE</th> 494 <th></th> 495 <th></th> 496 <th> Google </th> 497 <th> AOSP </th> 498 <th></th> 499 </tr> 500 <tr> 501 <td>CVE-2017-0560</td> 502 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/efdec8f5688ce6b0a287eddb6d5dad93ffa0e1ee">A-30681079</a></td> 503 <td></td> 504 <td></td> 505 <td>4.4.45.0.25.1.16.06.0.17.07.1.1</td> 506 <td>Google </td> 507 </tr> 508 </tbody></table> 509 510 <h2 id="2017-04-05-details"> 2017-04-05 </h2> 511 <p> 2017-04-05 CVE Google AOSP AOSP ID ID </p> 512 513 <h3 id="rce-in-broadcom-wi-fi-firmware">Broadcom Wi-Fi </h3> 514 <p>Broadcom Wi-Fi Wi-Fi SoC Wi-Fi SoC </p> 515 516 <table> 517 <colgroup><col width="19%" /> 518 <col width="20%" /> 519 <col width="10%" /> 520 <col width="23%" /> 521 <col width="17%" /> 522 </colgroup><tbody><tr> 523 <th>CVE</th> 524 <th></th> 525 <th></th> 526 <th> Google </th> 527 <th></th> 528 </tr> 529 <tr> 530 <td>CVE-2017-0561</td> 531 <td>A-34199105*<br /> 532 B-RB#110814</td> 533 <td></td> 534 <td>Nexus 6Nexus 6PNexus 9Pixel CNexus Player</td> 535 <td>2017 1 9 </td> 536 </tr> 537 </tbody></table> 538 <p>* <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus </p> 539 540 <h3 id="rce-in-qualcomm-crypto-engine-driver">Qualcomm crypto </h3> 541 <p>Qualcomm crypto </p> 542 543 <table> 544 <colgroup><col width="19%" /> 545 <col width="20%" /> 546 <col width="10%" /> 547 <col width="23%" /> 548 <col width="17%" /> 549 </colgroup><tbody><tr> 550 <th>CVE</th> 551 <th></th> 552 <th></th> 553 <th> Google </th> 554 <th></th> 555 </tr> 556 <tr> 557 <td>CVE-2016-10230</td> 558 <td>A-34389927<br /> 559 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=bd9a8fc6d7f6bd1a0b936994630006de450df657"> 560 QC-CR#1091408</a></td> 561 <td></td> 562 <td>Nexus 5XNexus 6Nexus 6PPixelPixel XLAndroid One</td> 563 <td>2017 1 10 </td> 564 </tr> 565 </tbody></table> 566 567 <h3 id="rce-in-kernel-networking-subsystem"> </h3> 568 <p> </p> 569 570 <table> 571 <colgroup><col width="19%" /> 572 <col width="20%" /> 573 <col width="10%" /> 574 <col width="23%" /> 575 <col width="17%" /> 576 </colgroup><tbody><tr> 577 <th>CVE</th> 578 <th></th> 579 <th></th> 580 <th> Google </th> 581 <th></th> 582 </tr> 583 <tr> 584 <td>CVE-2016-10229</td> 585 <td>A-32813456<br /> 586 <a href="http://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=197c949e7798fbf28cfadc69d9ca0c2abbf93191"> 587 </a></td> 588 <td></td> 589 <td>Nexus 5XNexus 6Nexus 6PPixelPixel XLPixel CAndroid OneNexus Player</td> 590 <td>Google </td> 591 </tr> 592 </tbody></table> 593 594 <h3 id="eop-in-mediatek-touchscreen-driver">MediaTek </h3> 595 <p>MediaTek </p> 596 597 <table> 598 <colgroup><col width="19%" /> 599 <col width="20%" /> 600 <col width="10%" /> 601 <col width="23%" /> 602 <col width="17%" /> 603 </colgroup><tbody><tr> 604 <th>CVE</th> 605 <th></th> 606 <th></th> 607 <th> Google </th> 608 <th></th> 609 </tr> 610 <tr> 611 <td>CVE-2017-0562</td> 612 <td>A-30202425*<br /> 613 M-ALPS02898189</td> 614 <td>*</td> 615 <td>**</td> 616 <td>2016 7 16 </td> 617 </tr> 618 </tbody></table> 619 <p>* <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus </p> 620 <p>** Android 7.0 Google </p> 621 622 <h3 id="eop-in-htc-touchscreen-driver">HTC </h3> 623 <p>HTC </p> 624 625 <table> 626 <colgroup><col width="19%" /> 627 <col width="20%" /> 628 <col width="10%" /> 629 <col width="23%" /> 630 <col width="17%" /> 631 </colgroup><tbody><tr> 632 <th>CVE</th> 633 <th></th> 634 <th></th> 635 <th> Google </th> 636 <th></th> 637 </tr> 638 <tr> 639 <td>CVE-2017-0563</td> 640 <td>A-32089409*<br /> 641 </td> 642 <td></td> 643 <td>Nexus 9</td> 644 <td>2016 10 9 </td> 645 </tr> 646 </tbody></table> 647 <p>* <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus </p> 648 649 <h3 id="eop-in-kernel-ion-subsystem"> ION </h3> 650 <p> ION </p> 651 652 <table> 653 <colgroup><col width="19%" /> 654 <col width="20%" /> 655 <col width="10%" /> 656 <col width="23%" /> 657 <col width="17%" /> 658 </colgroup><tbody><tr> 659 <th>CVE</th> 660 <th></th> 661 <th></th> 662 <th> Google </th> 663 <th></th> 664 </tr> 665 <tr> 666 <td>CVE-2017-0564</td> 667 <td>A-34276203*<br /> 668 </td> 669 <td></td> 670 <td>Nexus 5XNexus 6Nexus 6PPixelPixel XLPixel CAndroid OneNexus Player</td> 671 <td>2017 1 12 </td> 672 </tr> 673 </tbody></table> 674 <p>* <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus </p> 675 676 <h3 id="vulnerabilities-in-qualcomm-components">Qualcomm </h3> 677 <p>Qualcomm Qualcomm AMSS 2016 10 </p> 678 679 <table> 680 <colgroup><col width="19%" /> 681 <col width="20%" /> 682 <col width="10%" /> 683 <col width="23%" /> 684 <col width="17%" /> 685 </colgroup><tbody><tr> 686 <th>CVE</th> 687 <th></th> 688 <th></th> 689 <th> Google </th> 690 <th></th> 691 </tr> 692 <tr> 693 <td>CVE-2016-10237</td> 694 <td>A-31628601**<br /> 695 QC-CR#1046751</td> 696 <td></td> 697 <td>**</td> 698 <td>Qualcomm </td> 699 </tr> 700 <tr> 701 <td>CVE-2016-10238</td> 702 <td>A-35358527**<br /> 703 QC-CR#1042558</td> 704 <td></td> 705 <td>***</td> 706 <td>Qualcomm </td> 707 </tr> 708 <tr> 709 <td>CVE-2016-10239</td> 710 <td>A-31624618**<br /> 711 QC-CR#1032929</td> 712 <td></td> 713 <td>PixelPixel XL</td> 714 <td>Qualcomm </td> 715 </tr> 716 </tbody></table> 717 <p>* </p> 718 <p>* <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus </p> 719 <p>*** Android 7.0 Google </p> 720 721 <h3 id="rce-in-v8">v8 </h3> 722 <p>v8 </p> 723 724 <table> 725 <colgroup><col width="18%" /> 726 <col width="17%" /> 727 <col width="10%" /> 728 <col width="19%" /> 729 <col width="18%" /> 730 <col width="17%" /> 731 </colgroup><tbody><tr> 732 <th>CVE</th> 733 <th></th> 734 <th></th> 735 <th> Google </th> 736 <th> AOSP </th> 737 <th></th> 738 </tr> 739 <tr> 740 <td>CVE-2016-5129</td> 741 <td>A-29178923</td> 742 <td></td> 743 <td>*</td> 744 <td>6.06.0.17.0</td> 745 <td>2016 7 20 </td> 746 </tr> 747 </tbody></table> 748 <p>* Android 7.0 Google </p> 749 750 <h3 id="rce-in-freetype">Freetype </h3> 751 <p>Freetype </p> 752 753 <table> 754 <colgroup><col width="18%" /> 755 <col width="17%" /> 756 <col width="10%" /> 757 <col width="19%" /> 758 <col width="18%" /> 759 <col width="17%" /> 760 </colgroup><tbody><tr> 761 <th>CVE</th> 762 <th></th> 763 <th></th> 764 <th> Google </th> 765 <th> AOSP </th> 766 <th></th> 767 </tr> 768 <tr> 769 <td>CVE-2016-10244</td> 770 <td>A-31470908</td> 771 <td></td> 772 <td>*</td> 773 <td>4.4.45.0.25.1.16.06.0.17.0</td> 774 <td>2016 9 13 </td> 775 </tr> 776 </tbody></table> 777 <p>* Android 7.0 Google </p> 778 779 <h3 id="eop-in-kernel-sound-subsystem"> </h3> 780 <p> </p> 781 782 <table> 783 <colgroup><col width="19%" /> 784 <col width="20%" /> 785 <col width="10%" /> 786 <col width="23%" /> 787 <col width="17%" /> 788 </colgroup><tbody><tr> 789 <th>CVE</th> 790 <th></th> 791 <th></th> 792 <th> Google </th> 793 <th></th> 794 </tr> 795 <tr> 796 <td>CVE-2014-4656</td> 797 <td>A-34464977<br /> 798 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=883a1d49f0d77d30012f114b2e19fc141beb3e8e"> 799 </a></td> 800 <td></td> 801 <td>Nexus 6Nexus Player</td> 802 <td>2014 6 26 </td> 803 </tr> 804 </tbody></table> 805 806 <h3 id="eop-in-nvidia-crypto-driver">NVIDIA crypto </h3> 807 <p>NVIDIA crypto </p> 808 809 <table> 810 <colgroup><col width="19%" /> 811 <col width="20%" /> 812 <col width="10%" /> 813 <col width="23%" /> 814 <col width="17%" /> 815 </colgroup><tbody><tr> 816 <th>CVE</th> 817 <th></th> 818 <th></th> 819 <th> Google </th> 820 <th></th> 821 </tr> 822 <tr> 823 <td>CVE-2017-0339</td> 824 <td>A-27930566*<br /> 825 N-CVE-2017-0339</td> 826 <td></td> 827 <td>Nexus 9</td> 828 <td>2016 3 29 </td> 829 </tr> 830 <tr> 831 <td>CVE-2017-0332</td> 832 <td>A-33812508*<br /> 833 N-CVE-2017-0332</td> 834 <td></td> 835 <td>Nexus 9</td> 836 <td>2016 12 21 </td> 837 </tr> 838 <tr> 839 <td>CVE-2017-0327</td> 840 <td>A-33893669*<br /> 841 N-CVE-2017-0327</td> 842 <td></td> 843 <td>Nexus 9</td> 844 <td>2016 12 24 </td> 845 </tr> 846 </tbody></table> 847 <p>* <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus </p> 848 849 <h3 id="eop-in-mediatek-thermal-driver">MediaTek </h3> 850 <p>MediaTek </p> 851 852 <table> 853 <colgroup><col width="19%" /> 854 <col width="20%" /> 855 <col width="10%" /> 856 <col width="23%" /> 857 <col width="17%" /> 858 </colgroup><tbody><tr> 859 <th>CVE</th> 860 <th></th> 861 <th></th> 862 <th> Google </th> 863 <th></th> 864 </tr> 865 <tr> 866 <td>CVE-2017-0565</td> 867 <td>A-28175904*<br /> 868 M-ALPS02696516</td> 869 <td></td> 870 <td>**</td> 871 <td>2016 4 11 </td> 872 </tr> 873 </tbody></table> 874 <p>* <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus </p> 875 <p>** Android 7.0 Google </p> 876 877 <h3 id="eop-in-mediatek-camera-driver">MediaTek </h3> 878 <p>MediaTek </p> 879 880 <table> 881 <colgroup><col width="19%" /> 882 <col width="20%" /> 883 <col width="10%" /> 884 <col width="23%" /> 885 <col width="17%" /> 886 </colgroup><tbody><tr> 887 <th>CVE</th> 888 <th></th> 889 <th></th> 890 <th> Google </th> 891 <th></th> 892 </tr> 893 <tr> 894 <td>CVE-2017-0566</td> 895 <td>A-28470975*<br /> 896 M-ALPS02696367</td> 897 <td></td> 898 <td>**</td> 899 <td>2016 4 29 </td> 900 </tr> 901 </tbody></table> 902 <p>* <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus </p> 903 <p>** Android 7.0 Google </p> 904 905 <h3 id="eop-in-broadcom-wi-fi-driver">Broadcom Wi-Fi </h3> 906 <p>Broadcom Wi-Fi </p> 907 908 <table> 909 <colgroup><col width="19%" /> 910 <col width="20%" /> 911 <col width="10%" /> 912 <col width="23%" /> 913 <col width="17%" /> 914 </colgroup><tbody><tr> 915 <th>CVE</th> 916 <th></th> 917 <th></th> 918 <th> Google </th> 919 <th></th> 920 </tr> 921 <tr> 922 <td>CVE-2017-0567</td> 923 <td>A-32125310*<br /> 924 B-RB#112575</td> 925 <td></td> 926 <td>Nexus 6Nexus 6PNexus 9Pixel CNexus Player</td> 927 <td>2016 10 12 </td> 928 </tr> 929 <tr> 930 <td>CVE-2017-0568</td> 931 <td>A-34197514*<br /> 932 B-RB#112600</td> 933 <td></td> 934 <td>Nexus 6Nexus 6PNexus 9Pixel CNexus Player</td> 935 <td>2017 1 9 </td> 936 </tr> 937 <tr> 938 <td>CVE-2017-0569</td> 939 <td>A-34198729*<br /> 940 B-RB#110666</td> 941 <td></td> 942 <td>Nexus 6Nexus 6PNexus 9Pixel CNexus Player</td> 943 <td>2017 1 9 </td> 944 </tr> 945 <tr> 946 <td>CVE-2017-0570</td> 947 <td>A-34199963*<br /> 948 B-RB#110688</td> 949 <td></td> 950 <td>Nexus 6Nexus 6PNexus 9Pixel CNexus Player</td> 951 <td>2017 1 9 </td> 952 </tr> 953 <tr> 954 <td>CVE-2017-0571</td> 955 <td>A-34203305*<br /> 956 B-RB#111541</td> 957 <td></td> 958 <td>Nexus 6Nexus 6PPixel CNexus Player</td> 959 <td>2017 1 9 </td> 960 </tr> 961 <tr> 962 <td>CVE-2017-0572</td> 963 <td>A-34198931*<br /> 964 B-RB#112597</td> 965 <td></td> 966 <td>**</td> 967 <td>2017 1 9 </td> 968 </tr> 969 <tr> 970 <td>CVE-2017-0573</td> 971 <td>A-34469904*<br /> 972 B-RB#91539</td> 973 <td></td> 974 <td>Nexus 6Nexus 6PNexus 9Pixel CNexus Player</td> 975 <td>2017 1 18 </td> 976 </tr> 977 <tr> 978 <td>CVE-2017-0574</td> 979 <td>A-34624457*<br /> 980 B-RB#113189</td> 981 <td></td> 982 <td>Nexus 6Nexus 6PNexus 9Pixel C</td> 983 <td>2017 1 22 </td> 984 </tr> 985 </tbody></table> 986 <p>* <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus </p> 987 <p>** Android 7.0 Google </p> 988 989 <h3 id="eop-in-qualcomm-wi-fi-driver">Qualcomm Wi-Fi </h3> 990 <p>Qualcomm Wi-Fi </p> 991 992 <table> 993 <colgroup><col width="19%" /> 994 <col width="20%" /> 995 <col width="10%" /> 996 <col width="23%" /> 997 <col width="17%" /> 998 </colgroup><tbody><tr> 999 <th>CVE</th> 1000 <th></th> 1001 <th></th> 1002 <th> Google </th> 1003 <th></th> 1004 </tr> 1005 <tr> 1006 <td>CVE-2017-0575</td> 1007 <td>A-32658595*<br /> 1008 QC-CR#1103099</td> 1009 <td></td> 1010 <td>Nexus 5XPixelPixel XL</td> 1011 <td>2016 11 3 </td> 1012 </tr> 1013 </tbody></table> 1014 <p>* <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus </p> 1015 1016 <h3 id="eop-in-nvidia-i2c-hid-driver">NVIDIA I2C HID </h3> 1017 <p>NVIDIA I2C HID </p> 1018 1019 <table> 1020 <colgroup><col width="19%" /> 1021 <col width="20%" /> 1022 <col width="10%" /> 1023 <col width="23%" /> 1024 <col width="17%" /> 1025 </colgroup><tbody><tr> 1026 <th>CVE</th> 1027 <th></th> 1028 <th></th> 1029 <th> Google </th> 1030 <th></th> 1031 </tr> 1032 <tr> 1033 <td>CVE-2017-0325</td> 1034 <td>A-33040280*<br /> 1035 N-CVE-2017-0325</td> 1036 <td></td> 1037 <td>Nexus 9Pixel C</td> 1038 <td>2016 11 20 </td> 1039 </tr> 1040 </tbody></table> 1041 <p>* <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus </p> 1042 1043 <h3 id="eop-in-qualcomm-audio-driver">Qualcomm </h3> 1044 <p>Qualcomm </p> 1045 1046 <table> 1047 <colgroup><col width="19%" /> 1048 <col width="20%" /> 1049 <col width="10%" /> 1050 <col width="23%" /> 1051 <col width="17%" /> 1052 </colgroup><tbody><tr> 1053 <th>CVE</th> 1054 <th></th> 1055 <th></th> 1056 <th> Google </th> 1057 <th></th> 1058 </tr> 1059 <tr> 1060 <td>CVE-2017-0454</td> 1061 <td>A-33353700<br /> 1062 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=cb0701a2f99fa19f01fbd4249bda9a8eadb0241f"> 1063 QC-CR#1104067</a></td> 1064 <td></td> 1065 <td>Nexus 5XNexus 6PPixelPixel XL</td> 1066 <td>2016 12 5 </td> 1067 </tr> 1068 </tbody></table> 1069 1070 <h3 id="eop-in-qualcomm-crypto-engine-driver">Qualcomm crypto </h3> 1071 <p>Qualcomm crypto </p> 1072 1073 <table> 1074 <colgroup><col width="19%" /> 1075 <col width="20%" /> 1076 <col width="10%" /> 1077 <col width="23%" /> 1078 <col width="17%" /> 1079 </colgroup><tbody><tr> 1080 <th>CVE</th> 1081 <th></th> 1082 <th></th> 1083 <th> Google </th> 1084 <th></th> 1085 </tr> 1086 <tr> 1087 <td>CVE-2017-0576</td> 1088 <td>A-33544431<br /> 1089 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=2b09507d78b25637df6879cd2ee2031b208b3532"> 1090 QC-CR#1103089</a></td> 1091 <td></td> 1092 <td>Nexus 5XNexus 6Nexus 6PPixelPixel XLAndroid One</td> 1093 <td>2016 12 9 </td> 1094 </tr> 1095 </tbody></table> 1096 1097 <h3 id="eop-in-htc-touchscreen-driver-2">HTC </h3> 1098 <p>HTC </p> 1099 1100 <table> 1101 <colgroup><col width="19%" /> 1102 <col width="20%" /> 1103 <col width="10%" /> 1104 <col width="23%" /> 1105 <col width="17%" /> 1106 </colgroup><tbody><tr> 1107 <th>CVE</th> 1108 <th></th> 1109 <th></th> 1110 <th> Google </th> 1111 <th></th> 1112 </tr> 1113 <tr> 1114 <td>CVE-2017-0577</td> 1115 <td>A-33842951*<br /> 1116 </td> 1117 <td></td> 1118 <td>**</td> 1119 <td>2016 12 21 </td> 1120 </tr> 1121 </tbody></table> 1122 <p>* <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus </p> 1123 <p>** Android 7.0 Google </p> 1124 1125 <h3 id="eop-in-dts-sound-driver">DTS </h3> 1126 <p>DTS </p> 1127 1128 <table> 1129 <colgroup><col width="19%" /> 1130 <col width="20%" /> 1131 <col width="10%" /> 1132 <col width="23%" /> 1133 <col width="17%" /> 1134 </colgroup><tbody><tr> 1135 <th>CVE</th> 1136 <th></th> 1137 <th></th> 1138 <th> Google </th> 1139 <th></th> 1140 </tr> 1141 <tr> 1142 <td>CVE-2017-0578</td> 1143 <td>A-33964406*<br /> 1144 </td> 1145 <td></td> 1146 <td>**</td> 1147 <td>2016 12 28 </td> 1148 </tr> 1149 </tbody></table> 1150 <p>* <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus </p> 1151 <p>** Android 7.0 Google </p> 1152 1153 <h3 id="eop-in-qualcomm-sound-codec-driver">Qualcomm </h3> 1154 <p>Qualcomm </p> 1155 1156 <table> 1157 <colgroup><col width="19%" /> 1158 <col width="20%" /> 1159 <col width="10%" /> 1160 <col width="23%" /> 1161 <col width="17%" /> 1162 </colgroup><tbody><tr> 1163 <th>CVE</th> 1164 <th></th> 1165 <th></th> 1166 <th> Google </th> 1167 <th></th> 1168 </tr> 1169 <tr> 1170 <td>CVE-2016-10231</td> 1171 <td>A-33966912<br /> 1172 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=3bfe5a89916f7d29492e9f6d941d108b688cb804"> 1173 QC-CR#1096799</a></td> 1174 <td></td> 1175 <td>PixelPixel XL</td> 1176 <td>2016 12 29 </td> 1177 </tr> 1178 </tbody></table> 1179 1180 <h3 id="eop-in-qualcomm-video-driver">Qualcomm </h3> 1181 <p>Qualcomm </p> 1182 1183 <table> 1184 <colgroup><col width="19%" /> 1185 <col width="20%" /> 1186 <col width="10%" /> 1187 <col width="23%" /> 1188 <col width="17%" /> 1189 </colgroup><tbody><tr> 1190 <th>CVE</th> 1191 <th></th> 1192 <th></th> 1193 <th> Google </th> 1194 <th></th> 1195 </tr> 1196 <tr> 1197 <td>CVE-2017-0579</td> 1198 <td>A-34125463*<br /> 1199 QC-CR#1115406</td> 1200 <td></td> 1201 <td>Nexus 5XNexus 6PPixelPixel XL</td> 1202 <td>2017 1 5 </td> 1203 </tr> 1204 <tr> 1205 <td>CVE-2016-10232</td> 1206 <td>A-34386696<br /> 1207 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.10/commit/?id=21e0ead58e47798567d846b84f16f89cf69a57ae"> 1208 QC-CR#1024872</a> <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=27f7b3b3059f6181e2786f886f4cd92f413bc30c"> 1209 [2]</a></td> 1210 <td></td> 1211 <td>Nexus 5XNexus 6PPixelPixel XLAndroid One</td> 1212 <td>2017 1 10 </td> 1213 </tr> 1214 <tr> 1215 <td>CVE-2016-10233</td> 1216 <td>A-34389926<br /> 1217 <a href="https://source.codeaurora.org/quic/la/kernel/msm/commit/?id=d793c6d91ecba2a1fd206ad47a4fd408d290addf"> 1218 QC-CR#897452</a></td> 1219 <td></td> 1220 <td>**</td> 1221 <td>2017 1 10 </td> 1222 </tr> 1223 </tbody></table> 1224 <p>* <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus </p> 1225 <p>** Android 7.0 Google </p> 1226 1227 <h3 id="eop-in-nvidia-boot-and-power-management-processor-driver">NVIDIA </h3> 1228 <p>NVIDIA </p> 1229 1230 <table> 1231 <colgroup><col width="19%" /> 1232 <col width="20%" /> 1233 <col width="10%" /> 1234 <col width="23%" /> 1235 <col width="17%" /> 1236 </colgroup><tbody><tr> 1237 <th>CVE</th> 1238 <th></th> 1239 <th></th> 1240 <th> Google </th> 1241 <th></th> 1242 </tr> 1243 <tr> 1244 <td>CVE-2017-0329</td> 1245 <td>A-34115304*<br /> 1246 N-CVE-2017-0329</td> 1247 <td></td> 1248 <td>Pixel C</td> 1249 <td>2017 1 5 </td> 1250 </tr> 1251 </tbody></table> 1252 <p>* <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus </p> 1253 1254 <h3 id="eop-in-synaptics-touchscreen-driver">Synaptics </h3> 1255 <p>Synaptics </p> 1256 1257 <table> 1258 <colgroup><col width="19%" /> 1259 <col width="20%" /> 1260 <col width="10%" /> 1261 <col width="23%" /> 1262 <col width="17%" /> 1263 </colgroup><tbody><tr> 1264 <th>CVE</th> 1265 <th></th> 1266 <th></th> 1267 <th> Google </th> 1268 <th></th> 1269 </tr> 1270 <tr> 1271 <td>CVE-2017-0580</td> 1272 <td>A-34325986*<br /> 1273 </td> 1274 <td></td> 1275 <td>**</td> 1276 <td>2017 1 16 </td> 1277 </tr> 1278 <tr> 1279 <td>CVE-2017-0581</td> 1280 <td>A-34614485*<br /> 1281 </td> 1282 <td></td> 1283 <td>**</td> 1284 <td>2017 1 22 </td> 1285 </tr> 1286 </tbody></table> 1287 <p>* <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus </p> 1288 <p>** Android 7.0 Google </p> 1289 1290 <h3 id="eop-in-qualcomm-seemp-driver">Qualcomm Seemp </h3> 1291 <p>Qualcomm Seemp </p> 1292 1293 <table> 1294 <colgroup><col width="19%" /> 1295 <col width="20%" /> 1296 <col width="10%" /> 1297 <col width="23%" /> 1298 <col width="17%" /> 1299 </colgroup><tbody><tr> 1300 <th>CVE</th> 1301 <th></th> 1302 <th></th> 1303 <th> Google </th> 1304 <th></th> 1305 </tr> 1306 <tr> 1307 <td>CVE-2017-0462</td> 1308 <td>A-33353601<br /> 1309 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=eb7b1426279e751b1fc3e86f434dc349945c1ae7"> 1310 QC-CR#1102288</a></td> 1311 <td></td> 1312 <td>PixelPixel XL</td> 1313 <td>Google </td> 1314 </tr> 1315 </tbody></table> 1316 1317 <h3 id="eop-in-qualcomm-kyro-l2-driver">Qualcomm Kyro L2 </h3> 1318 <p>Qualcomm Kyro L2 </p> 1319 1320 <table> 1321 <colgroup><col width="19%" /> 1322 <col width="20%" /> 1323 <col width="10%" /> 1324 <col width="23%" /> 1325 <col width="17%" /> 1326 </colgroup><tbody><tr> 1327 <th>CVE</th> 1328 <th></th> 1329 <th></th> 1330 <th> Google </th> 1331 <th></th> 1332 </tr> 1333 <tr> 1334 <td>CVE-2017-6423</td> 1335 <td>A-32831370<br /> 1336 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=0f264f812b61884390b432fdad081a3e995ba768"> 1337 QC-CR#1103158</a></td> 1338 <td></td> 1339 <td>PixelPixel XL</td> 1340 <td>Google </td> 1341 </tr> 1342 </tbody></table> 1343 1344 <h3 id="eop-in-kernel-file-system"> </h3> 1345 <p> </p> 1346 1347 <table> 1348 <colgroup><col width="19%" /> 1349 <col width="20%" /> 1350 <col width="10%" /> 1351 <col width="23%" /> 1352 <col width="17%" /> 1353 </colgroup><tbody><tr> 1354 <th>CVE</th> 1355 <th></th> 1356 <th></th> 1357 <th> Google </th> 1358 <th></th> 1359 </tr> 1360 <tr> 1361 <td>CVE-2014-9922</td> 1362 <td>A-32761463<br /> 1363 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=69c433ed2ecd2d3264efd7afec4439524b319121"> 1364 </a></td> 1365 <td></td> 1366 <td>Nexus 5XNexus 6Nexus 6PNexus 9PixelPixel XLPixel CAndroid OneNexus Player</td> 1367 <td>Google </td> 1368 </tr> 1369 </tbody></table> 1370 1371 <h3 id="id-in-kernel-memory-subsystem"> </h3> 1372 <p> </p> 1373 1374 <table> 1375 <colgroup><col width="19%" /> 1376 <col width="20%" /> 1377 <col width="10%" /> 1378 <col width="23%" /> 1379 <col width="17%" /> 1380 </colgroup><tbody><tr> 1381 <th>CVE</th> 1382 <th></th> 1383 <th></th> 1384 <th> Google </th> 1385 <th></th> 1386 </tr> 1387 <tr> 1388 <td>CVE-2014-0206</td> 1389 <td>A-34465735<br /> 1390 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=d36db46c2cba973557eb6138d22210c4e0cf17d6"> 1391 </a></td> 1392 <td></td> 1393 <td>Nexus 6Nexus Player</td> 1394 <td>2014 5 6 </td> 1395 </tr> 1396 </tbody></table> 1397 1398 <h3 id="id-in-kernel-networking-subsystem"> </h3> 1399 <p> </p> 1400 1401 <table> 1402 <colgroup><col width="19%" /> 1403 <col width="20%" /> 1404 <col width="10%" /> 1405 <col width="23%" /> 1406 <col width="17%" /> 1407 </colgroup><tbody><tr> 1408 <th>CVE</th> 1409 <th></th> 1410 <th></th> 1411 <th> Google </th> 1412 <th></th> 1413 </tr> 1414 <tr> 1415 <td>CVE-2014-3145</td> 1416 <td>A-34469585<br /> 1417 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=314760e66c35c8ffa51b4c4ca6948d207e783079"> 1418 </a> <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=05ab8f2647e4221cbdb3856dd7d32bd5407316b3"> 1419 [2]</a></td> 1420 <td></td> 1421 <td>Nexus 6Nexus Player</td> 1422 <td>2014 5 9 </td> 1423 </tr> 1424 </tbody></table> 1425 1426 <h3 id="id-in-qualcomm-trustzone">Qualcomm TrustZone </h3> 1427 <p>Qualcomm TrustZone </p> 1428 1429 <table> 1430 <colgroup><col width="19%" /> 1431 <col width="20%" /> 1432 <col width="10%" /> 1433 <col width="23%" /> 1434 <col width="17%" /> 1435 </colgroup><tbody><tr> 1436 <th>CVE</th> 1437 <th></th> 1438 <th></th> 1439 <th> Google </th> 1440 <th></th> 1441 </tr> 1442 <tr> 1443 <td>CVE-2016-5349</td> 1444 <td>A-29083830<br /> 1445 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=7c3bf6557c62d904b15507eb451fda8fd7ef750c"> 1446 QC-CR#1021945</a> <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=03853a58952834ac3e1e3007c9c680dd4c001a2f"> 1447 [2]</a> <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=e3d969000fb60ecb9bc01667fa89957f67763514"> 1448 [3]</a> <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=9bd398661cae758ffc557adc7de74ba32654e1f9"> 1449 [4]</a></td> 1450 <td></td> 1451 <td>Nexus 5XNexus 6Nexus 6PPixelPixel XLAndroid One</td> 1452 <td>2016 6 1 </td> 1453 </tr> 1454 </tbody></table> 1455 1456 <h3 id="id-in-qualcomm-ipa-driver">Qualcomm IPA </h3> 1457 <p>Qualcomm IPA </p> 1458 1459 <table> 1460 <colgroup><col width="19%" /> 1461 <col width="20%" /> 1462 <col width="10%" /> 1463 <col width="23%" /> 1464 <col width="17%" /> 1465 </colgroup><tbody><tr> 1466 <th>CVE</th> 1467 <th></th> 1468 <th></th> 1469 <th> Google </th> 1470 <th></th> 1471 </tr> 1472 <tr> 1473 <td>CVE-2016-10234</td> 1474 <td>A-34390017<br /> 1475 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?id=c7d7492c1e329fdeb28a7901c4cd634d41a996b1"> 1476 QC-CR#1069060</a> <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=d12370c7f3ecded1867fbd6b70ded35db55cab1d"> 1477 [2]</a></td> 1478 <td></td> 1479 <td>Nexus 5XNexus 6PPixelPixel XL</td> 1480 <td>2017 1 10 </td> 1481 </tr> 1482 </tbody></table> 1483 1484 <h3 id="dos-in-kernel-networking-subsystem"> </h3> 1485 <p> </p> 1486 1487 <table> 1488 <colgroup><col width="19%" /> 1489 <col width="20%" /> 1490 <col width="10%" /> 1491 <col width="23%" /> 1492 <col width="17%" /> 1493 </colgroup><tbody><tr> 1494 <th>CVE</th> 1495 <th></th> 1496 <th></th> 1497 <th> Google </th> 1498 <th></th> 1499 </tr> 1500 <tr> 1501 <td>CVE-2014-2706</td> 1502 <td>A-34160553<br /> 1503 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=1d147bfa64293b2723c4fec50922168658e613ba"> 1504 </a></td> 1505 <td></td> 1506 <td>Nexus Player</td> 1507 <td>2014 4 1 </td> 1508 </tr> 1509 </tbody></table> 1510 1511 <h3 id="dos-in-qualcomm-wi-fi-driver">Qualcomm Wi-Fi </h3> 1512 <p>Qualcomm Wi-Fi Wi-Fi </p> 1513 1514 <table> 1515 <colgroup><col width="19%" /> 1516 <col width="20%" /> 1517 <col width="10%" /> 1518 <col width="23%" /> 1519 <col width="17%" /> 1520 </colgroup><tbody><tr> 1521 <th>CVE</th> 1522 <th></th> 1523 <th></th> 1524 <th> Google </th> 1525 <th></th> 1526 </tr> 1527 <tr> 1528 <td>CVE-2016-10235</td> 1529 <td>A-34390620<br /> 1530 <a href="https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-2.0/commit/?id=5bb0059243515ecdac138cfdb4cee7259bbd0bbc"> 1531 QC-CR#1046409</a></td> 1532 <td></td> 1533 <td>**</td> 1534 <td>2017 1 10 </td> 1535 </tr> 1536 </tbody></table> 1537 <p>** Android 7.0 Google </p> 1538 1539 <h3 id="eop-in-kernel-file-system-2"> </h3> 1540 <p> </p> 1541 1542 <table> 1543 <colgroup><col width="19%" /> 1544 <col width="20%" /> 1545 <col width="10%" /> 1546 <col width="23%" /> 1547 <col width="17%" /> 1548 </colgroup><tbody><tr> 1549 <th>CVE</th> 1550 <th></th> 1551 <th></th> 1552 <th> Google </th> 1553 <th></th> 1554 </tr> 1555 <tr> 1556 <td>CVE-2016-7097</td> 1557 <td>A-32458736<br /> 1558 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=073931017b49d9458aa351605b43a7e34598caef"> 1559 </a></td> 1560 <td></td> 1561 <td>Nexus 5XNexus 6Nexus 6PNexus 9PixelPixel XLPixel CNexus Player</td> 1562 <td>2016 8 28 </td> 1563 </tr> 1564 </tbody></table> 1565 1566 <h3 id="eop-in-qualcomm-wi-fi-driver-2">Qualcomm Wi-Fi </h3> 1567 <p>Qualcomm Wi-Fi </p> 1568 1569 <table> 1570 <colgroup><col width="19%" /> 1571 <col width="20%" /> 1572 <col width="10%" /> 1573 <col width="23%" /> 1574 <col width="17%" /> 1575 </colgroup><tbody><tr> 1576 <th>CVE</th> 1577 <th></th> 1578 <th></th> 1579 <th> Google </th> 1580 <th></th> 1581 </tr> 1582 <tr> 1583 <td>CVE-2017-6424</td> 1584 <td>A-32086742<br /> 1585 <a href="https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-2.0/commit/?id=5cc2ac840e36a3342c5194c20b314f0bb95ef7e1"> 1586 QC-CR#1102648</a></td> 1587 <td></td> 1588 <td>Nexus 5XPixelPixel XLAndroid One</td> 1589 <td>2016 10 9 </td> 1590 </tr> 1591 </tbody></table> 1592 1593 <h3 id="eop-in-broadcom-wi-fi-driver-2">Broadcom Wi-Fi </h3> 1594 <p>Broadcom Wi-Fi </p> 1595 1596 <table> 1597 <colgroup><col width="19%" /> 1598 <col width="20%" /> 1599 <col width="10%" /> 1600 <col width="23%" /> 1601 <col width="17%" /> 1602 </colgroup><tbody><tr> 1603 <th>CVE</th> 1604 <th></th> 1605 <th></th> 1606 <th> Google </th> 1607 <th></th> 1608 </tr> 1609 <tr> 1610 <td>CVE-2016-8465</td> 1611 <td>A-32474971*<br /> 1612 B-RB#106053</td> 1613 <td></td> 1614 <td>Nexus 6Nexus 6PNexus 9Pixel CNexus Player</td> 1615 <td>2016 10 27 </td> 1616 </tr> 1617 </tbody></table> 1618 <p>* <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus </p> 1619 1620 <h3 id="eop-in-htc-oem-fastboot-command">HTC OEM fastboot </h3> 1621 <p>HTC OEM fastboot </p> 1622 1623 <table> 1624 <colgroup><col width="19%" /> 1625 <col width="20%" /> 1626 <col width="10%" /> 1627 <col width="23%" /> 1628 <col width="17%" /> 1629 </colgroup><tbody><tr> 1630 <th>CVE</th> 1631 <th></th> 1632 <th></th> 1633 <th> Google </th> 1634 <th></th> 1635 </tr> 1636 <tr> 1637 <td>CVE-2017-0582</td> 1638 <td>A-33178836*<br /> 1639 </td> 1640 <td></td> 1641 <td>Nexus 9</td> 1642 <td>2016 11 28 </td> 1643 </tr> 1644 </tbody></table> 1645 <p>* <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus </p> 1646 1647 <h3 id="eop-in-qualcomm-cp-access-driver">Qualcomm CP </h3> 1648 <p>Qualcomm </p> 1649 1650 <table> 1651 <colgroup><col width="19%" /> 1652 <col width="20%" /> 1653 <col width="10%" /> 1654 <col width="23%" /> 1655 <col width="17%" /> 1656 </colgroup><tbody><tr> 1657 <th>CVE</th> 1658 <th></th> 1659 <th></th> 1660 <th> Google </th> 1661 <th></th> 1662 </tr> 1663 <tr> 1664 <td>CVE-2017-0583</td> 1665 <td>A-32068683<br /> 1666 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=452d2ad331d20b19e8a0768c4b6e7fe1b65abe8f"> 1667 QC-CR#1103788</a></td> 1668 <td></td> 1669 <td>Nexus 5XNexus 6PPixelPixel XLAndroid One</td> 1670 <td>Google </td> 1671 </tr> 1672 </tbody></table> 1673 1674 <h3 id="id-in-kernel-media-driver"> </h3> 1675 <p> </p> 1676 1677 <table> 1678 <colgroup><col width="19%" /> 1679 <col width="20%" /> 1680 <col width="10%" /> 1681 <col width="23%" /> 1682 <col width="17%" /> 1683 </colgroup><tbody><tr> 1684 <th>CVE</th> 1685 <th></th> 1686 <th></th> 1687 <th> Google </th> 1688 <th></th> 1689 </tr> 1690 <tr> 1691 <td>CVE-2014-1739</td> 1692 <td>A-34460642<br /> 1693 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=e6a623460e5fc960ac3ee9f946d3106233fd28d8"> 1694 </a></td> 1695 <td></td> 1696 <td>Nexus 6Nexus 9Nexus Player</td> 1697 <td>2014 6 15 </td> 1698 </tr> 1699 </tbody></table> 1700 1701 <h3 id="id-in-qualcomm-wi-fi-driver">Qualcomm Wi-Fi </h3> 1702 <p>Qualcomm Wi-Fi </p> 1703 1704 <table> 1705 <colgroup><col width="19%" /> 1706 <col width="20%" /> 1707 <col width="10%" /> 1708 <col width="23%" /> 1709 <col width="17%" /> 1710 </colgroup><tbody><tr> 1711 <th>CVE</th> 1712 <th></th> 1713 <th></th> 1714 <th> Google </th> 1715 <th></th> 1716 </tr> 1717 <tr> 1718 <td>CVE-2017-0584</td> 1719 <td>A-32074353*<br /> 1720 QC-CR#1104731</td> 1721 <td></td> 1722 <td>Nexus 5XPixelPixel XL</td> 1723 <td>2016 10 9 </td> 1724 </tr> 1725 </tbody></table> 1726 <p>* <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus </p> 1727 1728 <h3 id="id-in-broadcom-wi-fi-driver">Broadcom Wi-Fi </h3> 1729 <p>Broadcom Wi-Fi </p> 1730 1731 <table> 1732 <colgroup><col width="19%" /> 1733 <col width="20%" /> 1734 <col width="10%" /> 1735 <col width="23%" /> 1736 <col width="17%" /> 1737 </colgroup><tbody><tr> 1738 <th>CVE</th> 1739 <th></th> 1740 <th></th> 1741 <th> Google </th> 1742 <th></th> 1743 </tr> 1744 <tr> 1745 <td>CVE-2017-0585</td> 1746 <td>A-32475556*<br /> 1747 B-RB#112953</td> 1748 <td></td> 1749 <td>Nexus 6Nexus 6PNexus 9Pixel CNexus Player</td> 1750 <td>2016 10 27 </td> 1751 </tr> 1752 </tbody></table> 1753 <p>* <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus </p> 1754 1755 <h3 id="id-in-qualcomm-avtimer-driver">Qualcomm Avtimer </h3> 1756 <p>Qualcomm Avtimer </p> 1757 1758 <table> 1759 <colgroup><col width="19%" /> 1760 <col width="20%" /> 1761 <col width="10%" /> 1762 <col width="23%" /> 1763 <col width="17%" /> 1764 </colgroup><tbody><tr> 1765 <th>CVE</th> 1766 <th></th> 1767 <th></th> 1768 <th> Google </th> 1769 <th></th> 1770 </tr> 1771 <tr> 1772 <td>CVE-2016-5346</td> 1773 <td>A-32551280<br /> 1774 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=6298a474322fb2182f795a622b2faa64abfd8474"> 1775 QC-CR#1097878</a></td> 1776 <td></td> 1777 <td>PixelPixel XL</td> 1778 <td>2016 10 29 </td> 1779 </tr> 1780 </tbody></table> 1781 1782 <h3 id="id-in-qualcomm-video-driver">Qualcomm </h3> 1783 <p> 1784 Qualcomm </p> 1785 1786 <table> 1787 <colgroup><col width="19%" /> 1788 <col width="20%" /> 1789 <col width="10%" /> 1790 <col width="23%" /> 1791 <col width="17%" /> 1792 </colgroup><tbody><tr> 1793 <th>CVE</th> 1794 <th></th> 1795 <th></th> 1796 <th> Google </th> 1797 <th></th> 1798 </tr> 1799 <tr> 1800 <td>CVE-2017-6425</td> 1801 <td>A-32577085<br /> 1802 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=ef86560a21fe1f256f6ba772a195201ff202c657"> 1803 QC-CR#1103689</a></td> 1804 <td></td> 1805 <td>PixelPixel XL</td> 1806 <td>2016 10 29 </td> 1807 </tr> 1808 </tbody></table> 1809 1810 <h3 id="id-in-qualcomm-usb-driver">Qualcomm USB </h3> 1811 <p>Qualcomm USB </p> 1812 1813 <table> 1814 <colgroup><col width="19%" /> 1815 <col width="20%" /> 1816 <col width="10%" /> 1817 <col width="23%" /> 1818 <col width="17%" /> 1819 </colgroup><tbody><tr> 1820 <th>CVE</th> 1821 <th></th> 1822 <th></th> 1823 <th> Google </th> 1824 <th></th> 1825 </tr> 1826 <tr> 1827 <td>CVE-2016-10236</td> 1828 <td>A-33280689<br /> 1829 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=b8199c2b852f1e23c988e10b8fbb8d34c98b4a1c"> 1830 QC-CR#1102418</a></td> 1831 <td></td> 1832 <td>PixelPixel XL</td> 1833 <td>2016 11 30 </td> 1834 </tr> 1835 </tbody></table> 1836 1837 <h3 id="id-in-qualcomm-sound-driver">Qualcomm </h3> 1838 <p>Qualcomm </p> 1839 1840 <table> 1841 <colgroup><col width="19%" /> 1842 <col width="20%" /> 1843 <col width="10%" /> 1844 <col width="23%" /> 1845 <col width="17%" /> 1846 </colgroup><tbody><tr> 1847 <th>CVE</th> 1848 <th></th> 1849 <th></th> 1850 <th> Google </th> 1851 <th></th> 1852 </tr> 1853 <tr> 1854 <td>CVE-2017-0586</td> 1855 <td>A-33649808<br /> 1856 QC-CR#1097569</td> 1857 <td></td> 1858 <td>Nexus 5XNexus 6Nexus 6PPixelPixel XLAndroid One</td> 1859 <td>2016 12 13 </td> 1860 </tr> 1861 </tbody></table> 1862 1863 <h3 id="id-in-qualcomm-spmi-driver">Qualcomm SPMI </h3> 1864 <p>Qualcomm SPMI </p> 1865 1866 <table> 1867 <colgroup><col width="19%" /> 1868 <col width="20%" /> 1869 <col width="10%" /> 1870 <col width="23%" /> 1871 <col width="17%" /> 1872 </colgroup><tbody><tr> 1873 <th>CVE</th> 1874 <th></th> 1875 <th></th> 1876 <th> Google </th> 1877 <th></th> 1878 </tr> 1879 <tr> 1880 <td>CVE-2017-6426</td> 1881 <td>A-33644474<br /> 1882 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=80decd6365deec08c35ecb902a58f9210599b39a"> 1883 QC-CR#1106842</a></td> 1884 <td></td> 1885 <td>PixelPixel XL</td> 1886 <td>2016 12 14 </td> 1887 </tr> 1888 </tbody></table> 1889 1890 <h3 id="id-in-nvidia-crypto-driver">NVIDIA crypto </h3> 1891 <p>NVIDIA crypto </p> 1892 1893 <table> 1894 <colgroup><col width="19%" /> 1895 <col width="20%" /> 1896 <col width="10%" /> 1897 <col width="23%" /> 1898 <col width="17%" /> 1899 </colgroup><tbody><tr> 1900 <th>CVE</th> 1901 <th></th> 1902 <th></th> 1903 <th> Google </th> 1904 <th></th> 1905 </tr> 1906 <tr> 1907 <td>CVE-2017-0328</td> 1908 <td>A-33898322*<br /> 1909 N-CVE-2017-0328</td> 1910 <td></td> 1911 <td>**</td> 1912 <td>2016 12 24 </td> 1913 </tr> 1914 <tr> 1915 <td>CVE-2017-0330</td> 1916 <td>A-33899858*<br /> 1917 N-CVE-2017-0330</td> 1918 <td></td> 1919 <td>**</td> 1920 <td>2016 12 24 </td> 1921 </tr> 1922 </tbody></table> 1923 <p>* <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus </p> 1924 <p>** Android 7.0 Google </p> 1925 1926 <h3 id="vulnerabilities-in-qualcomm-components-2">Qualcomm </h3> 1927 <p>Qualcomm 20142016 Qualcomm AMSS Android Android </p> 1928 1929 <table> 1930 <colgroup><col width="19%" /> 1931 <col width="20%" /> 1932 <col width="10%" /> 1933 <col width="23%" /> 1934 <col width="17%" /> 1935 </colgroup><tbody><tr> 1936 <th>CVE</th> 1937 <th></th> 1938 <th></th> 1939 <th> Google </th> 1940 <th></th> 1941 </tr> 1942 <tr> 1943 <td>CVE-2014-9931</td> 1944 <td>A-35445101**<br /> 1945 QC-CR#612410</td> 1946 <td></td> 1947 <td>**</td> 1948 <td>Qualcomm </td> 1949 </tr> 1950 <tr> 1951 <td>CVE-2014-9932</td> 1952 <td>A-35434683**<br /> 1953 QC-CR#626734</td> 1954 <td></td> 1955 <td>PixelPixel XL</td> 1956 <td>Qualcomm </td> 1957 </tr> 1958 <tr> 1959 <td>CVE-2014-9933</td> 1960 <td>A-35442512<br /> 1961 QC-CR#675463</td> 1962 <td></td> 1963 <td>**</td> 1964 <td>Qualcomm </td> 1965 </tr> 1966 <tr> 1967 <td>CVE-2014-9934</td> 1968 <td>A-35439275**<br /> 1969 QC-CR#658249</td> 1970 <td></td> 1971 <td>**</td> 1972 <td>Qualcomm </td> 1973 </tr> 1974 <tr> 1975 <td>CVE-2014-9935</td> 1976 <td>A-35444951**<br /> 1977 QC-CR#717626</td> 1978 <td></td> 1979 <td>**</td> 1980 <td>Qualcomm </td> 1981 </tr> 1982 <tr> 1983 <td>CVE-2014-9936</td> 1984 <td>A-35442420**<br /> 1985 QC-CR#727389</td> 1986 <td></td> 1987 <td>**</td> 1988 <td>Qualcomm </td> 1989 </tr> 1990 <tr> 1991 <td>CVE-2014-9937</td> 1992 <td>A-35445102**<br /> 1993 QC-CR#734095</td> 1994 <td></td> 1995 <td>**</td> 1996 <td>Qualcomm </td> 1997 </tr> 1998 <tr> 1999 <td>CVE-2015-8995</td> 2000 <td>A-35445002**<br /> 2001 QC-CR#733690</td> 2002 <td></td> 2003 <td>**</td> 2004 <td>Qualcomm </td> 2005 </tr> 2006 <tr> 2007 <td>CVE-2015-8996</td> 2008 <td>A-35444658**<br /> 2009 QC-CR#734698</td> 2010 <td></td> 2011 <td>**</td> 2012 <td>Qualcomm </td> 2013 </tr> 2014 <tr> 2015 <td>CVE-2015-8997</td> 2016 <td>A-35432947**<br /> 2017 QC-CR#734707</td> 2018 <td></td> 2019 <td>**</td> 2020 <td>Qualcomm </td> 2021 </tr> 2022 <tr> 2023 <td>CVE-2015-8998</td> 2024 <td>A-35441175**<br /> 2025 QC-CR#735337</td> 2026 <td></td> 2027 <td>**</td> 2028 <td>Qualcomm </td> 2029 </tr> 2030 <tr> 2031 <td>CVE-2015-8999</td> 2032 <td>A-35445401**<br /> 2033 QC-CR#736119</td> 2034 <td></td> 2035 <td>**</td> 2036 <td>Qualcomm </td> 2037 </tr> 2038 <tr> 2039 <td>CVE-2015-9000</td> 2040 <td>A-35441076**<br /> 2041 QC-CR#740632</td> 2042 <td></td> 2043 <td>**</td> 2044 <td>Qualcomm </td> 2045 </tr> 2046 <tr> 2047 <td>CVE-2015-9001</td> 2048 <td>A-35445400**<br /> 2049 QC-CR#736083</td> 2050 <td></td> 2051 <td>**</td> 2052 <td>Qualcomm </td> 2053 </tr> 2054 <tr> 2055 <td>CVE-2015-9002</td> 2056 <td>A-35442421**<br /> 2057 QC-CR#748428</td> 2058 <td></td> 2059 <td>**</td> 2060 <td>Qualcomm </td> 2061 </tr> 2062 <tr> 2063 <td>CVE-2015-9003</td> 2064 <td>A-35440626**<br /> 2065 QC-CR#749215</td> 2066 <td></td> 2067 <td>**</td> 2068 <td>Qualcomm </td> 2069 </tr> 2070 <tr> 2071 <td>CVE-2016-10242</td> 2072 <td>A-35434643**<br /> 2073 QC-CR#985139</td> 2074 <td></td> 2075 <td>**</td> 2076 <td>Qualcomm </td> 2077 </tr> 2078 </tbody></table> 2079 <p>* </p> 2080 <p>* <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus </p> 2081 <p>*** Android 7.0 Google </p> 2082 2083 <h2 id="common-questions-and-answers"></h2> 2084 <p></p> 2085 <p><strong>1. </strong></p> 2086 <p> <a href="https://support.google.com/pixelphone/answer/4457705#pixel_phones&nexus_devices">Pixel Nexus </a></p> 2087 <ul> 2088 <li> 2017-04-01 2017-04-01 </li> 2089 <li> 2017-04-05 2017-04-05</li> 2090 </ul> 2091 <p></p> 2092 <ul> 2093 <li>[ro.build.version.security_patch]:[2017-04-01]</li> 2094 <li>[ro.build.version.security_patch]:[2017-04-05]</li> 2095 </ul> 2096 2097 <p><strong>2. 2 </strong></p> 2098 <p>2 Android Android Android </p> 2099 <ul> 2100 <li>2017 4 1 </li> 2101 <li>2017 4 5 </li> 2102 </ul> 2103 <p> 1 </p> 2104 <p><strong>3. Google </strong></p> 2105 <p><a href="#2017-04-01-details">2017-04-01</a> <a href="#2017-04-05-details">2017-04-05</a> Google <em></em> Google </p> 2106 <ul> 2107 <li><strong> Google </strong>: Pixel Google <em></em><a href="https://support.google.com/pixelphone/answer/4457705#pixel_phones&nexus_devices"></a>Nexus 5XNexus 6Nexus 6PNexus 72013Nexus 9Android OneNexus PlayerPixel CPixelPixel XL</li> 2108 <li><strong> Google </strong>: Google Google <em></em> Google </li> 2109 <li><strong> Google </strong>: Android 7.0 Google Google <em></em></li> 2110 </ul> 2111 <p><strong>4. </strong></p> 2112 <p><em></em></p> 2113 <table> 2114 <tbody><tr> 2115 <th></th> 2116 <th></th> 2117 </tr> 2118 <tr> 2119 <td>A-</td> 2120 <td>Android ID</td> 2121 </tr> 2122 <tr> 2123 <td>QC-</td> 2124 <td>Qualcomm </td> 2125 </tr> 2126 <tr> 2127 <td>M-</td> 2128 <td>MediaTek </td> 2129 </tr> 2130 <tr> 2131 <td>N-</td> 2132 <td>NVIDIA </td> 2133 </tr> 2134 <tr> 2135 <td>B-</td> 2136 <td>Broadcom </td> 2137 </tr> 2138 </tbody></table> 2139 2140 <h2 id="revisions"></h2> 2141 <ul> 2142 <li> 2017 4 3 : </li> 2143 <li> 2017 4 5 : AOSP </li> 2144 </ul> 2145 2146 </body></html>