xref: /docs/source.android.com/ja/security/bulletin/2017-05-01.html

<html devsite><head>
    <title>Android  - 2017  5 </title>
    <meta name="project_path" value="/_project.yaml"/>
    <meta name="book_path" value="/_book.yaml"/>
  </head>
  <body>
  <!--
      Copyright 2017 The Android Open Source Project

      Licensed under the Apache License, Version 2.0 (the "License");
      you may not use this file except in compliance with the License.
      You may obtain a copy of the License at

          http://www.apache.org/licenses/LICENSE-2.0

      Unless required by applicable law or agreed to in writing, software
      distributed under the License is distributed on an "AS IS" BASIS,
      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
      See the License for the specific language governing permissions and
      limitations under the License.
  -->

<p><em>2017  5  1  | 2017  5  2 </em></p>

<p>Android Android Nexus  OTAGoogle   <a href="https://developers.google.com/android/nexus/images">Google  </a>2017  5  5     <a href="https://support.google.com/pixelphone/answer/4457705#pixel_phones&nexus_devices">Pixel  Nexus  </a></p>

<p> 2017  4  3 Android  AOSPAOSP </p>

<p>MMS  <a href="/security/overview/updates-resources.html#severity"></a></p>

<p><a href="/security/enhancements/index.html">Android  </a> <a href="https://developer.android.com/training/safetynet/index.html">SafetyNet</a> <a href="#mitigations">Android  Google </a>Android </p>

<p></p>
<h2 id="announcements"></h2>
<ul>
<li>2    Android Android <a href="#common-questions-and-answers"></a>
 <ul>
 <li><strong>2017-05-01</strong>:     2017-05-01  </li>
 <li><strong>2017-05-05</strong>:     2017-05-01  2017-05-05  </li>
</ul>
</li>
<li> Google 2017  5  5    1  OTA </li>
</ul>

<h2 id="mitigations">Android  Google </h2>

<p><a href="/security/enhancements/index.html">Android  </a> SafetyNet Android </p>

<ul>
<li>Android Android Google  Android </li>
<li>Android  <a href="/security/reports/Google_Android_Security_2016_Report_Final.pdf"> SafetyNet</a> <a href="/security/reports/Google_Android_Security_PHA_classifications.pdf"></a><a href="http://www.android.com/gms">Google  </a>Google Play  Google Play </li>
<li>Google </li>
</ul>

<h2 id="acknowledgements"></h2>

<p></p>
<ul>
<li>ADlab of Venustech: CVE-2017-0630</li>
<li>Tencent KeenLab<a href="https://twitter.com/keen_lab">@keen_lab</a> Di Shen<a href="https://twitter.com/returnsme">@returnsme</a>: CVE-2016-10287</li>
<li>Trend Micro  Ecular Xu: CVE-2017-0599CVE-2017-0635</li>
<li><a href="http://www.ms509.com">MS509Team</a>  En He<a href="https://twitter.com/heeeeen4x">@heeeeen4x</a>Bo Liu: CVE-2017-0601</li>
<li><a href="https://twrp.me/">Team Win Recovery Project</a>  Ethan Yonker: CVE-2017-0493</li>
<li>Qihoo 360 Technology Co. Ltd. IceSword Lab  Gengjia Chen<a href="https://twitter.com/chengjia4574">@chengjia4574</a><a href="http://weibo.com/jfpan">pjf</a>: CVE-2016-10285CVE-2016-10288CVE-2016-10290CVE-2017-0624CVE-2017-0616CVE-2017-0617CVE-2016-10294CVE-2016-10295CVE-2016-10296</li>
<li>Tencent PC Manager  godzheng <a href="https://twitter.com/virtualseekers">@VirtualSeekers</a>: CVE-2017-0602</li>
<li><a href="http://tuncay2.web.engr.illinois.edu"> </a> <a href="https://www.linkedin.com/in/g%C3%BCliz-seray-tuncay-952a1b9/">Gliz Seray Tuncay</a>: CVE-2017-0593</li>
<li>Qihoo 360 Technology Co. Ltd. Alpha Team  Hao ChenGuang Gong: CVE-2016-10283</li>
<li>Xiaomi Inc.  Juhu NieYang ChengNan LiQiwu Huang: CVE-2016-10276</li>
<li><a href="https://github.com/michalbednarski">Micha Bednarski</a>: CVE-2017-0598</li>
<li>TeslaProduct Security Team  Nathan Crandall<a href="https://twitter.com/natecray">@natecray</a>: CVE-2017-0331CVE-2017-0606</li>
<li><a href="mailto:jiych.guru (a] gmail.com">Niky1235</a><a href="https://twitter.com/jiych_guru">@jiych_guru</a>: CVE-2017-0603</li>
<li>Alibaba Mobile Security Group  Peng XiaoChengming YangNing YouChao YangYang song: CVE-2016-10281CVE-2016-10280</li>
<li><a href="https://alephsecurity.com/">Aleph Research</a>  Roee Hay<a href="https://twitter.com/roeehay">@roeehay</a>: CVE-2016-10277</li>
<li><a href="mailto:sbauer (a] plzdonthack.me">Scott Bauer</a><a href="https://twitter.com/ScottyBauer1">@ScottyBauer1</a>: CVE-2016-10274</li>
<li><a href="http://c0reteam.org">C0RE Team</a>  <a href="mailto:segfault5514 (a] gmail.com">Tong Lin</a><a href="mailto:computernik (a] gmail.com">Yuan-Tsung Lo</a>Xuxian Jiang: CVE-2016-10291</li>
<li>Vasily Vasiliev: CVE-2017-0589</li>
<li><a href="http://www.trendmicro.com">Trend Micro</a><a href="http://blog.trendmicro.com/trendlabs-security-intelligence/category/mobile">Mobile Threat Response Team</a>  V.E.O<a href="https://twitter.com/vysea">@VYSEa</a>: CVE-2017-0590CVE-2017-0587CVE-2017-0600</li>
<li>Tencent Security Platform Department  Xiling Gong: CVE-2017-0597</li>
<li>360 Marvel Team  Xingyuan Lin: CVE-2017-0627</li>
<li>Alibaba Inc.  Yong Wang<a href="https://twitter.com/ThomasKing2014">@ThomasKing2014</a>: CVE-2017-0588</li>
<li>Qihoo 360 Technology Co. Ltd. IceSword Lab  Yonggang Guo<a href="https://twitter.com/guoygang">@guoygang</a>: CVE-2016-10289CVE-2017-0465</li>
<li>Qihoo 360 Technology Co. Ltd. Vulpecker Team  Yu Pan: CVE-2016-10282CVE-2017-0615</li>
<li>Qihoo 360 Technology Co. Ltd.Vulpecker Team  Yu PanPeide Zhang: CVE-2017-0618CVE-2017-0625</li>
</ul>

<h2 id="2017-05-01-details">   2017-05-01 </h2>

<p> 2017-05-01 CVE Google  AOSP AOSP  ID  ID </p>

<h3 id="rce-in-mediaserver"></h3>

<p> </p>

<table>
  <colgroup><col width="18%" />
  <col width="17%" />
  <col width="10%" />
  <col width="19%" />
  <col width="18%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th> AOSP </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0587</td>
    <td><a href="https://android.googlesource.com/platform/external/libmpeg2/+/a86eb798d077b9b25c8f8c77e3c02c2f287c1ce7">A-35219737</a></td>
    <td></td>
    <td></td>
    <td>6.06.0.17.07.1.17.1.2</td>
    <td>2017  1  4 </td>
  </tr>
  <tr>
    <td>CVE-2017-0588</td>
    <td><a href="https://android.googlesource.com/platform/frameworks/av/+/6f1d990ce0f116a205f467d9eb2082795e33872b">A-34618607</a></td>
    <td></td>
    <td></td>
    <td>4.4.45.0.25.1.16.06.0.17.07.1.17.1.2</td>
    <td>2017  1  21 </td>
  </tr>
  <tr>
    <td>CVE-2017-0589</td>
    <td><a href="https://android.googlesource.com/platform/external/libhevc/+/bcfc7124f6ef9f1ec128fb2e90de774a5b33d199">A-34897036</a></td>
    <td></td>
    <td></td>
    <td>5.0.25.1.16.06.0.17.07.1.17.1.2</td>
    <td>2017  2  1 </td>
  </tr>
  <tr>
    <td>CVE-2017-0590</td>
    <td><a href="https://android.googlesource.com/platform/external/libhevc/+/45c97f878bee15cd97262fe7f57ecea71990fed7">A-35039946</a></td>
    <td></td>
    <td></td>
    <td>5.0.25.1.16.06.0.17.07.1.17.1.2</td>
    <td>2017  2  6 </td>
  </tr>
  <tr>
    <td>CVE-2017-0591</td>
    <td><a href="https://android.googlesource.com/platform/external/libavc/+/5c3fd5d93a268abb20ff22f26009535b40db3c7d">A-34097672</a></td>
    <td></td>
    <td></td>
    <td>6.06.0.17.07.1.17.1.2</td>
    <td>Google </td>
  </tr>
  <tr>
    <td>CVE-2017-0592</td>
    <td><a href="https://android.googlesource.com/platform/frameworks/av/+/acc192347665943ca674acf117e4f74a88436922">A-34970788</a></td>
    <td></td>
    <td></td>
    <td>4.4.45.0.25.1.16.06.0.17.07.1.17.1.2</td>
    <td>Google </td>
  </tr>
</tbody></table>

<h3 id="eop-in-framework-apis"> API </h3>

<p> API  </p>

<table>
  <colgroup><col width="18%" />
  <col width="17%" />
  <col width="10%" />
  <col width="19%" />
  <col width="18%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th> AOSP </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0593</td>
    <td><a href="https://android.googlesource.com/platform/frameworks/base/+/78efbc95412b8efa9a44d573f5767ae927927d48">A-34114230</a></td>
    <td></td>
    <td></td>
    <td>6.06.0.17.07.1.17.1.2</td>
    <td>2017  1  5 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-mediaserver"></h3>

<p></p>

<table>
  <colgroup><col width="18%" />
  <col width="17%" />
  <col width="10%" />
  <col width="19%" />
  <col width="18%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th> AOSP </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0594</td>
    <td><a href="https://android.googlesource.com/platform/frameworks/av/+/594bf934384920618d2b6ce0bcda1f60144cb3eb">A-34617444</a></td>
    <td></td>
    <td></td>
    <td>4.4.45.0.25.1.16.06.0.17.07.1.17.1.2</td>
    <td>2017  1  22 </td>
  </tr>
  <tr>
    <td>CVE-2017-0595</td>
    <td><a href="https://android.googlesource.com/platform/frameworks/av/+/5443b57cc54f2e46b35246637be26a69e9f493e1">A-34705519</a></td>
    <td></td>
    <td></td>
    <td>4.4.45.0.25.1.16.06.0.17.07.1.1</td>
    <td>2017  1  24 </td>
  </tr>
  <tr>
    <td>CVE-2017-0596</td>
    <td><a href="https://android.googlesource.com/platform/frameworks/av/+/5443b57cc54f2e46b35246637be26a69e9f493e1">A-34749392</a></td>
    <td></td>
    <td></td>
    <td>4.4.45.0.25.1.16.06.0.17.07.1.1</td>
    <td>2017  1  24 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-audioserver"></h3>

<p></p>

<table>
  <colgroup><col width="18%" />
  <col width="17%" />
  <col width="10%" />
  <col width="19%" />
  <col width="18%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th> AOSP </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0597</td>
    <td><a href="https://android.googlesource.com/platform/frameworks/av/+/a9188f89179a7edd301abaf37d644adf5d647a04">A-34749571</a></td>
    <td></td>
    <td></td>
    <td>4.4.45.0.25.1.16.06.0.17.07.1.17.1.2</td>
    <td>2017  1  25 </td>
  </tr>
</tbody></table>

<h3 id="id-in-framework-apis"> API </h3>

<p> API  </p>

<table>
  <colgroup><col width="18%" />
  <col width="17%" />
  <col width="10%" />
  <col width="19%" />
  <col width="18%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th> AOSP </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0598</td>
    <td><a href="https://android.googlesource.com/platform/frameworks/base/+/4e110ab20bb91e945a17c6e166e14e2da9608f08">A-34128677</a>
    [<a href="https://android.googlesource.com/platform/frameworks/base/+/d42e1204d5dddb78ec9d20d125951b59a8344f40">2</a>]</td>
    <td></td>
    <td></td>
    <td>4.4.45.0.25.1.16.06.0.17.07.1.17.1.2</td>
    <td>2017  1  6 </td>
  </tr>
</tbody></table>

<h3 id="dos-in-mediaserver"></h3>

<p></p>

<table>
  <colgroup><col width="18%" />
  <col width="17%" />
  <col width="10%" />
  <col width="19%" />
  <col width="18%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th> AOSP </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0599</td>
    <td><a href="https://android.googlesource.com/platform/external/libhevc/+/a1424724a00d62ac5efa0e27953eed66850d662f">A-34672748</a></td>
    <td></td>
    <td></td>
    <td>6.06.0.17.07.1.17.1.2</td>
    <td>2017  1  23 </td>
  </tr>
  <tr>
    <td>CVE-2017-0600</td>
    <td><a href="https://android.googlesource.com/platform/frameworks/av/+/961e5ac5788b52304e64b9a509781beaf5201fb0">A-35269635</a></td>
    <td></td>
    <td></td>
    <td>4.4.45.0.25.1.16.06.0.17.07.1.17.1.2</td>
    <td>2017  2  10 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-bluetooth">Bluetooth </h3>

<p>Bluetooth  Bluetooth </p>

<table>
  <colgroup><col width="18%" />
  <col width="17%" />
  <col width="10%" />
  <col width="19%" />
  <col width="18%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th> AOSP </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0601</td>
    <td><a href="https://android.googlesource.com/platform/frameworks/base/+/667d2cbe3eb1450f273a4f6595ccef35e1f0fe4b">A-35258579</a></td>
    <td></td>
    <td></td>
    <td>7.07.1.17.1.2</td>
    <td>2017  2  9 </td>
  </tr>
</tbody></table>

<h3 id="id-in-file-based-encryption"></h3>

<p> </p>

<table>
  <colgroup><col width="18%" />
  <col width="17%" />
  <col width="10%" />
  <col width="19%" />
  <col width="18%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th> AOSP </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0493</td>
    <td><a href="https://android.googlesource.com/platform/frameworks/base/+/e4cefbf4fce458489b5f1bebc79dfaf566bcc5d5">A-32793550</a>
    [<a href="https://android.googlesource.com/platform/frameworks/base/+/f806d65e615b942c268a5f68d44bde9d55634972">2</a>]</td>
    <td></td>
    <td></td>
    <td>7.07.1.1</td>
    <td>2016  11  9 </td>
  </tr>
</tbody></table>

<h3 id="id-in-bluetooth">Bluetooth </h3>

<p>Bluetooth  </p>

<table>
  <colgroup><col width="18%" />
  <col width="17%" />
  <col width="10%" />
  <col width="19%" />
  <col width="18%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th> AOSP </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0602</td>
    <td><a href="https://android.googlesource.com/platform/system/bt/+/a4875a49404c544134df37022ae587a4a3321647">A-34946955</a></td>
    <td></td>
    <td></td>
    <td>4.4.45.0.25.1.16.06.0.17.07.1.17.1.2</td>
    <td>2016  12  5 </td>
  </tr>
</tbody></table>

<h3 id="id-in-openssl-&-boringssl">OpenSSL  BoringSSL </h3>

<p>OpenSSL  BoringSSL </p>

<table>
  <colgroup><col width="18%" />
  <col width="17%" />
  <col width="10%" />
  <col width="19%" />
  <col width="18%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th> AOSP </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-7056</td>
    <td><a href="https://android.googlesource.com/platform/external/boringssl/+/13179a8e75fee98740b5ce728752aa7294b3e32d">A-33752052</a></td>
    <td></td>
    <td></td>
    <td>4.4.45.0.25.1.16.06.0.17.07.1.17.1.2</td>
    <td>2016  12  19 </td>
  </tr>
</tbody></table>

<h3 id="dos-in-mediaserver-2"></h3>

<p></p>

<table>
  <colgroup><col width="18%" />
  <col width="17%" />
  <col width="10%" />
  <col width="19%" />
  <col width="18%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th> AOSP </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0603</td>
    <td><a href="https://android.googlesource.com/platform/frameworks/av/+/36b04932bb93cc3269279282686b439a17a89920">A-35763994</a></td>
    <td></td>
    <td></td>
    <td>4.4.45.0.25.1.16.06.0.17.07.1.17.1.2</td>
    <td>2017  2  23 </td>
  </tr>
</tbody></table>

<h3 id="dos-in-mediaserver-3"></h3>

<p></p>

<table>
  <colgroup><col width="18%" />
  <col width="17%" />
  <col width="10%" />
  <col width="19%" />
  <col width="18%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th> AOSP </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0635</td>
    <td><a href="https://android.googlesource.com/platform/frameworks/av/+/523f6b49c1a2289161f40cf9fe80b92e592e9441">A-35467107</a></td>
    <td></td>
    <td></td>
    <td>7.07.1.17.1.2</td>
    <td>2017  2  16 </td>
  </tr>
</tbody></table>

<h2 id="2017-05-05-details">   2017-05-05 </h2>

<p> 2017-05-05 CVE Google  AOSP AOSP  ID  ID </p>

<h3 id="rce-in-giflib">GIFLIB </h3>

<p>GIFLIB  </p>

<table>
  <colgroup><col width="18%" />
  <col width="17%" />
  <col width="10%" />
  <col width="19%" />
  <col width="18%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th> AOSP </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2015-7555</td>
    <td><a href="https://android.googlesource.com/platform/external/giflib/+/dc07290edccc2c3fc4062da835306f809cea1fdc">A-34697653</a></td>
    <td></td>
    <td></td>
    <td>4.4.45.0.25.1.16.06.0.17.07.1.17.1.2</td>
    <td>2016  4  13 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-mediatek-touchscreen-driver">MediaTek  </h3>

<p>MediaTek   </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-10274</td>
    <td>A-30202412*<br />
        M-ALPS02897901</td>
    <td></td>
    <td>**</td>
    <td>2016  7  16 </td>
  </tr>
</tbody></table>

<p>*  <a href="https://developers.google.com/android/nexus/drivers">Google  </a> Nexus  </p>

<p>** Android 7.1.1  Google </p>

<h3 id="eop-in-qualcomm-bootloader">Qualcomm </h3>

<p>Qualcomm  </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-10275</td>
    <td>A-34514954<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/lk/commit/?id=1a0a15c380e11fc46f8d8706ea5ae22b752bdd0b">
QC-CR#1009111</a></td>
    <td></td>
    <td>Nexus 5XNexus 6PixelPixel XLAndroid One</td>
    <td>2016  9  13 </td>
  </tr>
  <tr>
    <td>CVE-2016-10276</td>
    <td>A-32952839<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/lk/commit/?id=5dac431748027e8b50a5c4079967def4ea53ad64">
QC-CR#1094105</a></td>
    <td></td>
    <td>Nexus 5XNexus 6PPixelPixel XL</td>
    <td>2016  11  16 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-kernel-sound-subsystem">  </h3>

<p>   </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-9794</td>
    <td>A-34068036<br />
        <a href="https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git/commit/?id=a27178e05b7c332522df40904f27674e36ee3757">
 </a></td>
    <td></td>
    <td>Nexus 5XNexus 6Nexus 6PNexus 9PixelPixel XLPixel CAndroid OneNexus Player</td>
    <td>2016  12  3 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-motorola-bootloader">Motorola </h3>

<p>Motorola  </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-10277</td>
    <td>A-33840490*<br />
        </td>
    <td></td>
    <td>Nexus 6</td>
    <td>2016  12  21 </td>
  </tr>
</tbody></table>

<p>*  <a href="https://developers.google.com/android/nexus/drivers">Google  </a> Nexus  </p>

<h3 id="eop-in-nvidia-video-driver">NVIDIA </h3>

<p>NVIDIA  </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0331</td>
    <td>A-34113000*<br />
        N-CVE-2017-0331</td>
    <td></td>
    <td>Nexus 9</td>
    <td>2017  1  4 </td>
  </tr>
</tbody></table>

<p>*  <a href="https://developers.google.com/android/nexus/drivers">Google  </a> Nexus  </p>

<h3 id="eop-in-qualcomm-power-driver">Qualcomm </h3>

<p> Qualcomm  </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0604</td>
    <td>A-35392981<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=6975e2dd5f37de965093ba3a8a08635a77a960f7">
QC-CR#826589</a></td>
    <td></td>
    <td>*</td>
    <td>2017  2  15 </td>
  </tr>
</tbody></table>

<p>* Android 7.1.1  Google </p>

<h3 id="eop-in-kernel-trace-subsystem">  </h3>

<p>   </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0605</td>
    <td>A-35399704<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.10/commit/?id=2161ae9a70b12cf18ac8e5952a20161ffbccb477">
QC-CR#1048480</a></td>
    <td></td>
    <td>Nexus 5XNexus 6Nexus 6PNexus 9PixelPixel XLPixel CAndroid OneNexus Player</td>
    <td>2017  2  15 </td>
  </tr>
</tbody></table>

<h3 id="vulnerabilities-in-qualcomm-components">Qualcomm </h3>

<p>Qualcomm Qualcomm AMSS  2016  8 9 10 12 </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-10240</td>
    <td>A-32578446**<br />
        QC-CR#955710</td>
    <td></td>
    <td>Nexus 6P</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2016-10241</td>
    <td>A-35436149**<br />
        QC-CR#1068577</td>
    <td></td>
    <td>Nexus 5XNexus 6Nexus 6PPixelPixel XL</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2016-10278</td>
    <td>A-31624008**<br />
        QC-CR#1043004</td>
    <td></td>
    <td>PixelPixel XL</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2016-10279</td>
    <td>A-31624421**<br />
        QC-CR#1031821</td>
    <td></td>
    <td>PixelPixel XL</td>
    <td>Qualcomm </td>
  </tr>
</tbody></table>

<p>* </p>

<p>*  <a href="https://developers.google.com/android/nexus/drivers">Google  </a> Nexus  </p>

<p>*** Android 7.1.1  Google </p>

<h3 id="rce-in-libxml2">libxml2 </h3>

<p>libxml2 </p>

<table>
  <colgroup><col width="18%" />
  <col width="17%" />
  <col width="10%" />
  <col width="19%" />
  <col width="18%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th> AOSP </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-5131</td>
    <td>A-32956747*</td>
    <td></td>
    <td>**</td>
    <td>4.4.45.0.25.1.16.06.0.17.0</td>
    <td>2016  7  23 </td>
  </tr>
</tbody></table>

<p>*  <a href="https://developers.google.com/android/drivers">Google  </a> Nexus  </p>

<p>** Android 7.1.1  Google </p>

<h3 id="eop-in-mediatek-thermal-driver">MediaTek  </h3>

<p>MediaTek  </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-10280</td>
    <td>A-28175767*<br />
        M-ALPS02696445</td>
    <td></td>
    <td>**</td>
    <td>2016  4  11 </td>
  </tr>
  <tr>
    <td>CVE-2016-10281</td>
    <td>A-28175647*<br />
        M-ALPS02696475</td>
    <td></td>
    <td>**</td>
    <td>2016  4  11 </td>
  </tr>
  <tr>
    <td>CVE-2016-10282</td>
    <td>A-33939045*<br />
        M-ALPS03149189</td>
    <td></td>
    <td>**</td>
    <td>2016  12  27 </td>
  </tr>
</tbody></table>

<p>*  <a href="https://developers.google.com/android/nexus/drivers">Google  </a> Nexus  </p>

<p>** Android 7.1.1  Google </p>

<h3 id="eop-in-qualcomm-wi-fi-driver">Qualcomm Wi-Fi </h3>

<p>Qualcomm Wi-Fi </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-10283</td>
    <td>A-32094986<br />
        <a href="https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-2.0/commit/?id=93863644b4547324309613361d70ad9dc91f8dfd">
QC-CR#2002052</a></td>
    <td></td>
    <td>Nexus 5XPixelPixel XLAndroid One</td>
    <td>2016  10  11 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-qualcomm-video-driver">Qualcomm </h3>

<p>Qualcomm </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-10284</td>
    <td>A-32402303*<br />
        QC-CR#2000664</td>
    <td></td>
    <td>Nexus 5XNexus 6Nexus 6PPixelPixel XLAndroid One</td>
    <td>2016  10  24 </td>
  </tr>
  <tr>
    <td>CVE-2016-10285</td>
    <td>A-33752702<br />
        <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=67dfd3a65336e0b3f55ee83d6312321dc5f2a6f9">
QC-CR#1104899</a></td>
    <td></td>
    <td>PixelPixel XL</td>
    <td>2016  12  19 </td>
  </tr>
  <tr>
    <td>CVE-2016-10286</td>
    <td>A-35400904<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=5d30a3d0dc04916ddfb972bfc52f8e636642f999">
QC-CR#1090237</a></td>
    <td></td>
    <td>PixelPixel XL</td>
    <td>2017  2  15 </td>
  </tr>
</tbody></table>

<p>*  <a href="https://developers.google.com/android/nexus/drivers">Google  </a> Nexus  </p>

<h3 id="eop-in-kernel-performance-subsystem">  </h3>

<p>  </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2015-9004</td>
    <td>A-34515362<br />
        <a href="https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git/commit/?id=c3c87e770458aa004bd7ed3f29945ff436fd6511">
 </a></td>
    <td></td>
    <td>Nexus 5XNexus 6Nexus 6PNexus 9PixelPixel XLPixel CAndroid OneNexus Player</td>
    <td>2016  11  23 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-qualcomm-sound-driver">Qualcomm  </h3>

<p>Qualcomm  </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-10287</td>
    <td>A-33784446<br />
        <a href="https://www.codeaurora.org/gitweb/quic/la/?p=kernel/msm-4.4.git;a=commit;h=937bc9e644180e258c68662095861803f7ba4ded">
QC-CR#1112751</a></td>
    <td></td>
    <td>Nexus 5XNexus 6PPixelPixel XLAndroid One</td>
    <td>2016  12  20 </td>
  </tr>
  <tr>
    <td>CVE-2017-0606</td>
    <td>A-34088848<br />
        <a href="https://www.codeaurora.org/gitweb/quic/la/?p=kernel/msm-4.4.git;a=commit;h=d3237316314c3d6f75a58192971f66e3822cd250">
QC-CR#1116015</a></td>
    <td></td>
    <td>Nexus 5XNexus 6PPixelPixel XLAndroid One</td>
    <td>2017  1  3 </td>
  </tr>
  <tr>
    <td>CVE-2016-5860</td>
    <td>A-34623424<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=9f91ae0d7203714fc39ae78e1f1c4fd71ed40498">
QC-CR#1100682</a></td>
    <td></td>
    <td>PixelPixel XL</td>
    <td>2017  1  22 </td>
  </tr>
  <tr>
    <td>CVE-2016-5867</td>
    <td>A-35400602<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=065360da7147003aed8f59782b7652d565f56be5">
QC-CR#1095947</a></td>
    <td></td>
    <td>*</td>
    <td>2017  2  15 </td>
  </tr>
  <tr>
    <td>CVE-2017-0607</td>
    <td>A-35400551<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=b003c8d5407773d3aa28a48c9841e4c124da453d">
QC-CR#1085928</a></td>
    <td></td>
    <td>PixelPixel XL</td>
    <td>2017  2  15 </td>
  </tr>
  <tr>
    <td>CVE-2017-0608</td>
    <td>A-35400458<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=b66f442dd97c781e873e8f7b248e197f86fd2980">
QC-CR#1098363</a></td>
    <td></td>
    <td>Nexus 5XNexus 6Nexus 6PPixelPixel XLAndroid One</td>
    <td>2017  2  15 </td>
  </tr>
  <tr>
    <td>CVE-2017-0609</td>
    <td>A-35399801<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=38a83df036084c00e8c5a4599c8ee7880b4ee567">
QC-CR#1090482</a></td>
    <td></td>
    <td>Nexus 5XNexus 6PPixelPixel XLAndroid One</td>
    <td>2017  2  15 </td>
  </tr>
  <tr>
    <td>CVE-2016-5859</td>
    <td>A-35399758<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=97fdb441a9fb330a76245e473bc1a2155c809ebe">
QC-CR#1096672</a></td>
    <td></td>
    <td>*</td>
    <td>2017  2  15 </td>
  </tr>
  <tr>
    <td>CVE-2017-0610</td>
    <td>A-35399404<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=65009746a6e649779f73d665934561ea983892fe">
QC-CR#1094852</a></td>
    <td></td>
    <td>Nexus 5XNexus 6Nexus 6PPixelPixel XLAndroid One</td>
    <td>2017  2  15 </td>
  </tr>
  <tr>
    <td>CVE-2017-0611</td>
    <td>A-35393841<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=1aa5df9246557a98181f03e98530ffd509b954c8">
QC-CR#1084210</a></td>
    <td></td>
    <td>Nexus 5XNexus 6Nexus 6PPixelPixel XLAndroid One</td>
    <td>2017  2  15 </td>
  </tr>
  <tr>
    <td>CVE-2016-5853</td>
    <td>A-35392629<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=a8f3b894de319718aecfc2ce9c691514696805be">
QC-CR#1102987</a></td>
    <td></td>
    <td>*</td>
    <td>2017  2  15 </td>
  </tr>
</tbody></table>

<p>* Android 7.1.1  Google </p>

<h3 id="eop-in-qualcomm-led-driver">Qualcomm LED </h3>

<p>Qualcomm LED </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-10288</td>
    <td>A-33863909<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=db2cdc95204bc404f03613d5dd7002251fb33660">
QC-CR#1109763</a></td>
    <td></td>
    <td>PixelPixel XL</td>
    <td>2016  12  23 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-qualcomm-crypto-driver">Qualcomm crypto </h3>

<p>Qualcomm crypto </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-10289</td>
    <td>A-33899710<br />
        <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=a604e6f3889ccc343857532b63dea27603381816">
QC-CR#1116295</a></td>
    <td></td>
    <td>Nexus 5XNexus 6Nexus 6PPixelPixel XLAndroid One</td>
    <td>2016  12  24 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-qualcomm-shared-memory-driver">Qualcomm </h3>

<p>Qualcomm </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-10290</td>
    <td>A-33898330<br />
        <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=a5e46d8635a2e28463b365aacdeab6750abd0d49">
QC-CR#1109782</a></td>
    <td></td>
    <td>Nexus 5XNexus 6PPixelPixel XL</td>
    <td>2016  12  24 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-qualcomm-slimbus-driver">Qualcomm Slimbus </h3>

<p>Qualcomm Slimbus </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-10291</td>
    <td>A-34030871<br />
        <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=a225074c0494ca8125ca0ac2f9ebc8a2bd3612de">
QC-CR#986837</a></td>
    <td></td>
    <td>Nexus 5XNexus 6Nexus 6PAndroid One</td>
    <td>2016  12  31 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-qualcomm-adsprpc-driver">Qualcomm ADSPRPC </h3>

<p>Qualcomm ADSPRPC </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0465</td>
    <td>A-34112914<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=3823f0f8d0bbbbd675a42a54691f4051b3c7e544">
QC-CR#1110747</a></td>
    <td></td>
    <td>Nexus 5XNexus 6PPixelPixel XLAndroid One</td>
    <td>2017  1  5 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-qualcomm-secure-execution-environment-communicator-driver">Qualcomm Secure Execution Environment Communicator </h3>

<p>Qualcomm Secure Execution Environment Communicator </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0612</td>
    <td>A-34389303<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=05efafc998dc86c3b75af9803ca71255ddd7a8eb">
QC-CR#1061845</a></td>
    <td></td>
    <td>PixelPixel XL</td>
    <td>2017  1  10 </td>
  </tr>
  <tr>
    <td>CVE-2017-0613</td>
    <td>A-35400457<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=b108c651cae9913da1ab163cb4e5f7f2db87b747">
QC-CR#1086140</a></td>
    <td></td>
    <td>Nexus 5XNexus 6Nexus 6PPixelPixel XLAndroid One</td>
    <td>2017  2  15 </td>
  </tr>
  <tr>
    <td>CVE-2017-0614</td>
    <td>A-35399405<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=fc2ae27eb9721a0ce050c2062734fec545cda604">
QC-CR#1080290</a></td>
    <td></td>
    <td>Nexus 5XNexus 6Nexus 6PPixelPixel XLAndroid One</td>
    <td>2017  2  15 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-mediatek-power-driver">MediaTek </h3>

<p>MediaTek </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0615</td>
    <td>A-34259126*<br />
        M-ALPS03150278</td>
    <td></td>
    <td>**</td>
    <td>2017  1  12 </td>
  </tr>
</tbody></table>

<p>*  <a href="https://developers.google.com/android/nexus/drivers">Google  </a> Nexus  </p>

<p>** Android 7.1.1  Google </p>

<h3 id="eop-in-mediatek-system-management-interrupt-driver">MediaTek </h3>

<p>MediaTek </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0616</td>
    <td>A-34470286*<br />
        M-ALPS03149160</td>
    <td></td>
    <td>**</td>
    <td>2017  1  19 </td>
  </tr>
</tbody></table>

<p>*  <a href="https://developers.google.com/android/nexus/drivers">Google  </a> Nexus  </p>

<p>** Android 7.1.1  Google </p>

<h3 id="eop-in-mediatek-video-driver">MediaTek </h3>

<p>MediaTek </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0617</td>
    <td>A-34471002*<br />
        M-ALPS03149173</td>
    <td></td>
    <td>**</td>
    <td>2017  1  19 </td>
  </tr>
</tbody></table>

<p>*  <a href="https://developers.google.com/android/nexus/drivers">Google  </a> Nexus  </p>

<p>** Android 7.1.1  Google </p>

<h3 id="eop-in-mediatek-command-queue-driver">MediaTek  </h3>

<p>MediaTek  </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0618</td>
    <td>A-35100728*<br />
        M-ALPS03161536</td>
    <td></td>
    <td>**</td>
    <td>2017  2  7 </td>
  </tr>
</tbody></table>

<p>*  <a href="https://developers.google.com/android/nexus/drivers">Google  </a> Nexus  </p>

<p>** Android 7.1.1  Google </p>

<h3 id="eop-in-qualcomm-pin-controller-driver">Qualcomm   </h3>

<p>Qualcomm   </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0619</td>
    <td>A-35401152<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.14/commit/?id=72f67b29a9c5e6e8d3c34751600c749c5f5e13e1">
QC-CR#826566</a></td>
    <td></td>
    <td>Nexus 6Android One</td>
    <td>2017  2  15 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-qualcomm-secure-channel-manager-driver">Qualcomm Secure Channel Manager </h3>

<p>Qualcomm Secure Channel Manager </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0620</td>
    <td>A-35401052<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=01b2c9a5d728ff6f2f1f28a5d4e927aaeabf56ed">
QC-CR#1081711</a></td>
    <td></td>
    <td>Nexus 5XNexus 6Nexus 6PPixelPixel XLAndroid One</td>
    <td>2017  2  15 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-qualcomm-sound-codec-driver">Qualcomm   </h3>

<p>Qualcomm   </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-5862</td>
    <td>A-35399803<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=4199451e83729a3add781eeafaee32994ff65b04">
QC-CR#1099607</a></td>
    <td></td>
    <td>PixelPixel XL</td>
    <td>2017  2  15 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-kernel-voltage-regulator-driver"> </h3>

<p> </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2014-9940</td>
    <td>A-35399757<br />
        <a href="https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git/commit/?id=60a2362f769cf549dc466134efe71c8bf9fbaaba">
 </a></td>
    <td></td>
    <td>Nexus 6Nexus 9Pixel CAndroid OneNexus Player</td>
    <td>2017  2  15 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-qualcomm-camera-driver">Qualcomm </h3>

<p>Qualcomm </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0621</td>
    <td>A-35399703<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.10/commit/?id=9656e2c2b3523af20502bf1e933e35a397f5e82f">
QC-CR#831322</a></td>
    <td></td>
    <td>Android One</td>
    <td>2017  2  15 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-qualcomm-networking-driver">Qualcomm  </h3>

<p>Qualcomm  </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-5868</td>
    <td>A-35392791<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=fbb765a3f813f5cc85ddab21487fd65f24bf6a8c">
QC-CR#1104431</a></td>
    <td></td>
    <td>Nexus 5XPixelPixel XL</td>
    <td>2017  2  15 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-kernel-networking-subsystem">  </h3>

<p>  </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-7184</td>
    <td>A-36565222<br />
        <a href="https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=677e806da4d916052585301785d847c3b3e6186a">
 </a> <a href="https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=f843ee6dd019bcece3e74e76ad9df0155655d0df">
[2]</a></td>
    <td></td>
    <td>Nexus 5XNexus 6Nexus 6PNexus 9PixelPixel XLAndroid One</td>
    <td>2017  5  23 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-goodix-touchscreen-driver">Goodix  </h3>

<p>Goodix  </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0622</td>
    <td>A-32749036<br />
        <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=40efa25345003a96db34effbd23ed39530b3ac10">
QC-CR#1098602</a></td>
    <td></td>
    <td>Android One</td>
    <td>Google </td>
  </tr>
</tbody></table>

<h3 id="eop-in-htc-bootloader">HTC </h3>

<p>HTC </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0623</td>
    <td>A-32512358*<br />
        </td>
    <td></td>
    <td>PixelPixel XL</td>
    <td>Google </td>
  </tr>
</tbody></table>

<p>*  <a href="https://developers.google.com/android/nexus/drivers">Google  </a> Nexus  </p>

<h3 id="id-in-qualcomm-wi-fi-driver">Qualcomm Wi-Fi </h3>

<p>Qualcomm Wi-Fi </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0624</td>
    <td>A-34327795*<br />
        QC-CR#2005832</td>
    <td></td>
    <td>Nexus 5XPixelPixel XL</td>
    <td>2017  1  16 </td>
  </tr>
</tbody></table>

<p>*  <a href="https://developers.google.com/android/nexus/drivers">Google  </a> Nexus  </p>

<h3 id="id-in-mediatek-command-queue-driver">MediaTek  </h3>

<p>MediaTek  </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0625</td>
    <td>A-35142799*<br />
        M-ALPS03161531</td>
    <td></td>
    <td>**</td>
    <td>2017  2  8 </td>
  </tr>
</tbody></table>

<p>*  <a href="https://developers.google.com/android/nexus/drivers">Google  </a> Nexus  </p>

<p>** Android 7.1.1  Google </p>

<h3 id="id-in-qualcomm-crypto-engine-driver">Qualcomm crypto  </h3>

<p>Qualcomm crypto  </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0626</td>
    <td>A-35393124<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=64551bccab9b5b933757f6256b58f9ca0544f004">
QC-CR#1088050</a></td>
    <td></td>
    <td>Nexus 5XNexus 6Nexus 6PPixelPixel XLAndroid One</td>
    <td>2017  2  15 </td>
  </tr>
</tbody></table>

<h3 id="dos-in-qualcomm-wi-fi-driver">Qualcomm Wi-Fi </h3>

<p>Qualcomm Wi-Fi  Wi-Fi </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-10292</td>
    <td>A-34514463*<br />
        QC-CR#1065466</td>
    <td></td>
    <td>Nexus 5XPixelPixel XL</td>
    <td>2016  12  16 </td>
  </tr>
</tbody></table>

<p>*  <a href="https://developers.google.com/android/nexus/drivers">Google  </a> Nexus  </p>

<h3 id="id-in-kernel-uvc-driver"> UVC </h3>

<p> UVC </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0627</td>
    <td>A-33300353*<br />
        </td>
    <td></td>
    <td>Nexus 5XNexus 6PNexus 9Pixel CNexus Player</td>
    <td>2016  12  2 </td>
  </tr>
</tbody></table>

<p>*  <a href="https://developers.google.com/android/nexus/drivers">Google  </a> Nexus  </p>

<h3 id="id-in-qualcomm-video-driver">Qualcomm </h3>

<p>
Qualcomm </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-10293</td>
    <td>A-33352393<br />
        <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?id=2469d5374745a2228f774adbca6fb95a79b9047f">
QC-CR#1101943</a></td>
    <td></td>
    <td>Nexus 5XNexus 6PAndroid One</td>
    <td>2016  12  4 </td>
  </tr>
</tbody></table>

<h3 id="id-in-qualcomm-power-driver-(device-specific)">Qualcomm </h3>

<p>Qualcomm </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-10294</td>
    <td>A-33621829<br />
        <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=9e9bc51ffb8a298f0be5befe346762cdb6e1d49c">
QC-CR#1105481</a></td>
    <td></td>
    <td>Nexus 5XNexus 6PPixelPixel XL</td>
    <td>2016  12  14 </td>
  </tr>
</tbody></table>

<h3 id="id-in-qualcomm-led-driver">Qualcomm LED </h3>

<p>Qualcomm LED </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-10295</td>
    <td>A-33781694<br />
        <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=f11ae3df500bc2a093ddffee6ea40da859de0fa9">
QC-CR#1109326</a></td>
    <td></td>
    <td>PixelPixel XL</td>
    <td>2016  12  20 </td>
  </tr>
</tbody></table>

<h3 id="id-in-qualcomm-shared-memory-driver">Qualcomm </h3>

<p>Qualcomm </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-10296</td>
    <td>A-33845464<br />
        <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=a5e46d8635a2e28463b365aacdeab6750abd0d49">
QC-CR#1109782</a></td>
    <td></td>
    <td>Nexus 5XNexus 6PPixelPixel XLAndroid One</td>
    <td>2016  12  22 </td>
  </tr>
</tbody></table>

<h3 id="id-in-qualcomm-camera-driver">Qualcomm </h3>

<p>Qualcomm </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0628</td>
    <td>A-34230377<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=012e37bf91490c5b59ba2ab68a4d214b632b613f">
QC-CR#1086833</a></td>
    <td></td>
    <td>Nexus 5XNexus 6PixelPixel XL</td>
    <td>2017  1  10 </td>
  </tr>
  <tr>
    <td>CVE-2017-0629</td>
    <td>A-35214296<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=012e37bf91490c5b59ba2ab68a4d214b632b613f">
QC-CR#1086833</a></td>
    <td></td>
    <td>Nexus 5XNexus 6PixelPixel XL</td>
    <td>2017  2  8 </td>
  </tr>
</tbody></table>

<h3 id="id-in-kernel-trace-subsystem">  </h3>

<p>  </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0630</td>
    <td>A-34277115*<br />
        </td>
    <td></td>
    <td>Nexus 5XNexus 6Nexus 6PNexus 9PixelPixel XLPixel CAndroid OneNexus Player</td>
    <td>2017  1  11 </td>
  </tr>
</tbody></table>

<p>*  <a href="https://developers.google.com/android/nexus/drivers">Google  </a> Nexus  </p>

<h3 id="id-in-qualcomm-sound-codec-driver">Qualcomm   </h3>

<p>Qualcomm   </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-5858</td>
    <td>A-35400153<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=3154eb1d263b9c3eab2c9fa8ebe498390bf5d711">
QC-CR#1096799</a> <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=afc5bea71bc8f251dad1104568383019f4923af6">
[2]</a></td>
    <td></td>
    <td>Nexus 5XNexus 6Nexus 6PPixelPixel XLAndroid One</td>
    <td>2017  2  15 </td>
  </tr>
</tbody></table>

<h3 id="id-in-qualcomm-camera-driver-2">Qualcomm </h3>

<p>Qualcomm </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0631</td>
    <td>A-35399756<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=8236d6ebc7e26361ca7078cbeba01509f10941d8">
QC-CR#1093232</a></td>
    <td></td>
    <td>Nexus 5XNexus 6PPixelPixel XLAndroid One</td>
    <td>2017  2  15 </td>
  </tr>
</tbody></table>

<h3 id="id-in-qualcomm-sound-driver">Qualcomm  </h3>

<p>Qualcomm  </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-5347</td>
    <td>A-35394329<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=f14390f13e62460fc6b05fc0acde0e825374fdb6">
QC-CR#1100878</a></td>
    <td></td>
    <td>Nexus 5XNexus 6Nexus 6PPixelPixel XLAndroid One</td>
    <td>2017  2  15 </td>
  </tr>
</tbody></table>

<h3 id="id-in-qualcomm-spcom-driver">Qualcomm SPCom </h3>

<p>Qualcomm SPCom </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-5854</td>
    <td>A-35392792<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=28d23d4d7999f683b27b6e0c489635265b67a4c9">
QC-CR#1092683</a></td>
    <td></td>
    <td>*</td>
    <td>2017  2  15 </td>
  </tr>
  <tr>
    <td>CVE-2016-5855</td>
    <td>A-35393081<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=a5edb54e93ba85719091fe2bc426d75fa7059834">
QC-CR#1094143</a></td>
    <td></td>
    <td>*</td>
    <td>2017  2  15 </td>
  </tr>
</tbody></table>

<p>* Android 7.1.1  Google </p>

<h3 id="id-in-qualcomm-sound-codec-driver-2">Qualcomm   </h3>

<p>Qualcomm   </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0632</td>
    <td>A-35392586<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.10/commit/?id=970d6933e53c1f7ca8c8b67f49147b18505c3b8f">
QC-CR#832915</a></td>
    <td></td>
    <td>Android One</td>
    <td>2017  2  15 </td>
  </tr>
</tbody></table>

<h3 id="id-in-broadcom-wi-fi-driver">Broadcom Wi-Fi </h3>

<p>Broadcom Wi-Fi  </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0633</td>
    <td>A-36000515*<br />
        B-RB#117131</td>
    <td></td>
    <td>Nexus 6Nexus 6PNexus 9Pixel CNexus Player</td>
    <td>2017  2  23 </td>
  </tr>
</tbody></table>

<p>*  <a href="https://developers.google.com/android/nexus/drivers">Google  </a> Nexus  </p>

<h3 id="id-in-synaptics-touchscreen-driver">Synaptics  </h3>

<p>Synaptics  </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0634</td>
    <td>A-32511682*<br />
        </td>
    <td></td>
    <td>PixelPixel XL</td>
    <td>Google </td>
  </tr>
</tbody></table>

<p>*  <a href="https://developers.google.com/android/nexus/drivers">Google  </a> Nexus  </p>

<h3 id="vulnerabilities-in-qualcomm-components-2">Qualcomm </h3>

<p>Qualcomm 20142016  Qualcomm AMSS  Android   Android </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2014-9923</td>
    <td>A-35434045**<br />
        QC-CR#403910</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2014-9924</td>
    <td>A-35434631**<br />
        QC-CR#596102</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2014-9925</td>
    <td>A-35444657**<br />
        QC-CR#638130</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2014-9926</td>
    <td>A-35433784**<br />
        QC-CR#631527</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2014-9927</td>
    <td>A-35433785**<br />
        QC-CR#661111</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2014-9928</td>
    <td>A-35438623**<br />
        QC-CR#696972</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2014-9929</td>
    <td>A-35443954**<br />
        QC-CR#644783</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2014-9930</td>
    <td>A-35432946**<br />
        QC-CR#634637</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2015-9005</td>
    <td>A-36393500**<br />
        QC-CR#741548</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2015-9006</td>
    <td>A-36393450**<br />
        QC-CR#750559</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2015-9007</td>
    <td>A-36393700**<br />
        QC-CR#807173</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2016-10297</td>
    <td>A-36393451**<br />
        QC-CR#1061123</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2014-9941</td>
    <td>A-36385125**<br />
        QC-CR#509915</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2014-9942</td>
    <td>A-36385319**<br />
        QC-CR#533283</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2014-9943</td>
    <td>A-36385219**<br />
        QC-CR#546527</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2014-9944</td>
    <td>A-36384534**<br />
        QC-CR#613175</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2014-9945</td>
    <td>A-36386912**<br />
        QC-CR#623452</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2014-9946</td>
    <td>A-36385281**<br />
        QC-CR#520149</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2014-9947</td>
    <td>A-36392400**<br />
        QC-CR#650540</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2014-9948</td>
    <td>A-36385126**<br />
        QC-CR#650500</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2014-9949</td>
    <td>A-36390608**<br />
        QC-CR#652426</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2014-9950</td>
    <td>A-36385321**<br />
        QC-CR#655530</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2014-9951</td>
    <td>A-36389161**<br />
        QC-CR#525043</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2014-9952</td>
    <td>A-36387019**<br />
        QC-CR#674836</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
</tbody></table>

<p>* </p>

<p>*  <a href="https://developers.google.com/android/nexus/drivers">Google  </a> Nexus  </p>

<p>*** Android 7.1.1  Google </p>

<h2 id="common-questions-and-answers"></h2>
<p></p>

<p><strong>1. 
</strong></p>

<p>  <a href="https://support.google.com/pixelphone/answer/4457705#pixel_phones&nexus_devices">Pixel  Nexus  </a></p>

<ul>
<li>   2017-05-01    2017-05-01 </li>
<li>   2017-05-05    2017-05-05
</li>
</ul>

<p></p>
<ul>
<li>[ro.build.version.security_patch]:[2017-05-01]</li>
<li>[ro.build.version.security_patch]:[2017-05-05]</li>
</ul>

<p><strong>2.  2   </strong></p>

<p>2    Android Android Android   </p>
<ul>
<li>2017  5  1     </li>
<li>2017  5  5   </li>
</ul>

<p> 1 </p>

<p><strong>3.  Google </strong></p>

<p><a href="#2017-05-01-details">2017-05-01</a>  <a href="#2017-05-05-details">2017-05-05</a>  Google  Google <em></em></p>
<ul>
<li><strong> Google </strong>:  Pixel  Google <em></em><a href="https://support.google.com/pixelphone/answer/4457705#pixel_phones&nexus_devices"></a>Nexus 5XNexus 6Nexus 6PNexus 9Android OneNexus PlayerPixel CPixelPixel XL</li>
<li><strong> Google </strong>:  Google  Google  Google <em></em></li>
<li><strong> Google </strong>: Android 7.0  Google  Google <em></em></li>
</ul>
<p><strong>4. </strong></p>

<p><em></em></p>

<table>
  <tbody><tr>
   <th></th>
   <th></th>
  </tr>
  <tr>
   <td>A-</td>
   <td>Android  ID</td>
  </tr>
  <tr>
   <td>QC-</td>
   <td>Qualcomm </td>
  </tr>
  <tr>
   <td>M-</td>
   <td>MediaTek </td>
  </tr>
  <tr>
   <td>N-</td>
   <td>NVIDIA </td>
  </tr>
  <tr>
   <td>B-</td>
   <td>Broadcom </td>
  </tr>
</tbody></table>
<h2 id="revisions"></h2>
<ul>
<li>2017  5  1 : </li>
<li>2017  5  2 :  AOSP </li>
</ul>

</body></html>