1 <html devsite> 2 <head> 3 <title>Android 2016 9</title> 4 <meta name="project_path" value="/_project.yaml" /> 5 <meta name="book_path" value="/_book.yaml" /> 6 </head> 7 <body> 8 <!-- 9 Copyright 2017 The Android Open Source Project 10 11 Licensed under the Apache License, Version 2.0 (the "License"); 12 you may not use this file except in compliance with the License. 13 You may obtain a copy of the License at 14 15 http://www.apache.org/licenses/LICENSE-2.0 16 17 Unless required by applicable law or agreed to in writing, software 18 distributed under the License is distributed on an "AS IS" BASIS, 19 WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 20 See the License for the specific language governing permissions and 21 limitations under the License. 22 --> 23 24 25 <p><em>2016 9 6 | 2016 9 12 </em> 26 </p> 27 28 <p> 29 Android Android 30 . (OTA) 31 Nexus . 32 Nexus <a href="https://developers.google.com/android/nexus/images">Google </a> 33 . 2016 9 6 34 . 35 <a href="https://support.google.com/nexus/answer/4457705#nexus_devices"></a> . Nexus 2016 9 6 36 OTA . 37 </p> 38 39 <p> 40 2016 8 5 41 . , 42 Android (AOSP) . 43 AOSP . 44 </p> 45 46 <p> 47 48 , MMS 49 . 50 </p> 51 52 <p> 53 54 . SafetyNet Android 55 <a href="/security/enhancements/index.html">Android </a> 56 57 <a href="#mitigations">Android Google </a> . 58 </p> 59 60 <p> 61 . 62 </p> 63 64 <h2 id="announcements"></h2> 65 <ul> 66 <li> Android Android 67 68 . <a href="#common-questions-and-answers"> 69 </a> 70 . 71 <ul> 72 <li><strong>2016-09-01</strong>: . 73 2016-09-01 74 . 75 <li><strong>2016-09-05</strong>: . 76 2016-09-01 2016-09-05 77 . 78 <li><strong>2016-09-06</strong>: . 79 . 80 2016-09-01, 2016-09-05 2016-09-06 81 . 82 <li> Nexus 2016 9 6 83 OTA .</li> 84 </li></li></li></ul> 85 </li> 86 </ul> 87 <h2> </h2> 88 <p> 89 , ID(CVE), 90 Nexus 91 . <a href="/security/overview/updates-resources.html#severity"> </a> 92 93 94 . 95 </p> 96 97 <h3 id="2016-09-01-summary">2016-09-01 </h3> 98 <p> 99 2016 9 1 . 100 </p> 101 102 <table> 103 <col width="55%"> 104 <col width="20%"> 105 <col width="13%"> 106 <col width="12%"> 107 <tr> 108 <th></th> 109 <th>CVE</th> 110 <th></th> 111 <th>Nexus </th> 112 </tr> 113 <tr> 114 <td>LibUtils </td> 115 <td>CVE-2016-3861</td> 116 <td></td> 117 <td></td> 118 </tr> 119 <tr> 120 <td> </td> 121 <td>CVE-2016-3862</td> 122 <td></td> 123 <td></td> 124 </tr> 125 <tr> 126 <td>MediaMuxer </td> 127 <td>CVE-2016-3863</td> 128 <td></td> 129 <td></td> 130 </tr> 131 <tr> 132 <td> </td> 133 <td>CVE-2016-3870, CVE-2016-3871, CVE-2016-3872</td> 134 <td></td> 135 <td></td> 136 </tr> 137 <tr> 138 <td> </td> 139 <td>CVE-2016-3875</td> 140 <td></td> 141 <td>*</td> 142 </tr> 143 <tr> 144 <td> </td> 145 <td>CVE-2016-3876</td> 146 <td></td> 147 <td></td> 148 </tr> 149 <tr> 150 <td> (DoS) </td> 151 <td>CVE-2016-3899, CVE-2016-3878, 152 CVE-2016-3879, CVE-2016-3880, CVE-2016-3881</td> 153 <td></td> 154 <td></td> 155 </tr> 156 <tr> 157 <td> </td> 158 <td>CVE-2016-3883</td> 159 <td></td> 160 <td></td> 161 </tr> 162 <tr> 163 <td> </td> 164 <td>CVE-2016-3884</td> 165 <td></td> 166 <td></td> 167 </tr> 168 <tr> 169 <td>Debuggerd </td> 170 <td>CVE-2016-3885</td> 171 <td></td> 172 <td></td> 173 </tr> 174 <tr> 175 <td> UI </td> 176 <td>CVE-2016-3886</td> 177 <td></td> 178 <td></td> 179 </tr> 180 <tr> 181 <td> </td> 182 <td>CVE-2016-3887</td> 183 <td></td> 184 <td></td> 185 </tr> 186 <tr> 187 <td>SMS </td> 188 <td>CVE-2016-3888</td> 189 <td></td> 190 <td></td> 191 </tr> 192 <tr> 193 <td> </td> 194 <td>CVE-2016-3889</td> 195 <td></td> 196 <td></td> 197 </tr> 198 <tr> 199 <td> </td> 200 <td>CVE-2016-3890</td> 201 <td></td> 202 <td>*</td> 203 </tr> 204 <tr> 205 <td> </td> 206 <td>CVE-2016-3895</td> 207 <td></td> 208 <td></td> 209 </tr> 210 <tr> 211 <td>AOSP </td> 212 <td>CVE-2016-3896</td> 213 <td></td> 214 <td>*</td> 215 </tr> 216 <tr> 217 <td>Wi-Fi </td> 218 <td>CVE-2016-3897</td> 219 <td></td> 220 <td>*</td> 221 </tr> 222 <tr> 223 <td> (DoS) </td> 224 <td>CVE-2016-3898</td> 225 <td></td> 226 <td></td> 227 </tr> 228 </table> 229 <p> 230 * Android 7.0 Nexus 231 . 232 </p> 233 234 <h3 id="2016-09-05-summary">2016-09-05 </h3> 235 <p> 236 2016-09-01 2016 9 5 237 . 238 </p> 239 240 <table> 241 <col width="55%"> 242 <col width="20%"> 243 <col width="13%"> 244 <col width="12%"> 245 <tr> 246 <th></th> 247 <th>CVE</th> 248 <th></th> 249 <th>Nexus </th> 250 </tr> 251 <tr> 252 <td> </td> 253 <td>CVE-2014-9529, CVE-2016-4470</td> 254 <td></td> 255 <td></td> 256 </tr> 257 <tr> 258 <td> </td> 259 <td>CVE-2013-7446</td> 260 <td></td> 261 <td></td> 262 </tr> 263 <tr> 264 <td> </td> 265 <td>CVE-2016-3134</td> 266 <td></td> 267 <td></td> 268 </tr> 269 <tr> 270 <td> USB </td> 271 <td>CVE-2016-3951</td> 272 <td></td> 273 <td></td> 274 </tr> 275 <tr> 276 <td> </td> 277 <td>CVE-2014-4655</td> 278 <td></td> 279 <td></td> 280 </tr> 281 <tr> 282 <td> ASN.1 </td> 283 <td>CVE-2016-2053</td> 284 <td></td> 285 <td></td> 286 </tr> 287 <tr> 288 <td>Qualcomm </td> 289 <td>CVE-2016-3864</td> 290 <td></td> 291 <td></td> 292 </tr> 293 <tr> 294 <td>Qualcomm </td> 295 <td>CVE-2016-3858</td> 296 <td></td> 297 <td></td> 298 </tr> 299 <tr> 300 <td> </td> 301 <td>CVE-2016-4805</td> 302 <td></td> 303 <td></td> 304 </tr> 305 <tr> 306 <td>Synaptics </td> 307 <td>CVE-2016-3865</td> 308 <td></td> 309 <td></td> 310 </tr> 311 <tr> 312 <td>Qualcomm </td> 313 <td>CVE-2016-3859</td> 314 <td></td> 315 <td></td> 316 </tr> 317 <tr> 318 <td>Qualcomm </td> 319 <td>CVE-2016-3866</td> 320 <td></td> 321 <td></td> 322 </tr> 323 <tr> 324 <td>Qualcomm IPA </td> 325 <td>CVE-2016-3867</td> 326 <td></td> 327 <td></td> 328 </tr> 329 <tr> 330 <td>Qualcomm </td> 331 <td>CVE-2016-3868</td> 332 <td></td> 333 <td></td> 334 </tr> 335 <tr> 336 <td>Broadcom Wi-Fi </td> 337 <td>CVE-2016-3869</td> 338 <td></td> 339 <td></td> 340 </tr> 341 <tr> 342 <td> eCryptfs </td> 343 <td>CVE-2016-1583</td> 344 <td></td> 345 <td></td> 346 </tr> 347 <tr> 348 <td>NVIDIA </td> 349 <td>CVE-2016-3873</td> 350 <td></td> 351 <td></td> 352 </tr> 353 <tr> 354 <td>Qualcomm Wi-Fi </td> 355 <td>CVE-2016-3874</td> 356 <td></td> 357 <td></td> 358 </tr> 359 <tr> 360 <td> (DoS) </td> 361 <td>CVE-2015-1465, CVE-2015-5364</td> 362 <td></td> 363 <td></td> 364 </tr> 365 <tr> 366 <td> ext4 (DoS) </td> 367 <td>CVE-2015-8839</td> 368 <td></td> 369 <td></td> 370 </tr> 371 <tr> 372 <td>Qualcomm SPMI </td> 373 <td>CVE-2016-3892</td> 374 <td></td> 375 <td></td> 376 </tr> 377 <tr> 378 <td>Qualcomm </td> 379 <td>CVE-2016-3893</td> 380 <td></td> 381 <td></td> 382 </tr> 383 <tr> 384 <td>Qualcomm DMA </td> 385 <td>CVE-2016-3894</td> 386 <td></td> 387 <td></td> 388 </tr> 389 <tr> 390 <td> </td> 391 <td>CVE-2016-4998</td> 392 <td></td> 393 <td></td> 394 </tr> 395 <tr> 396 <td> (DoS) </td> 397 <td>CVE-2015-2922</td> 398 <td></td> 399 <td></td> 400 </tr> 401 <tr> 402 <td>Qualcomm </td> 403 <td>CVE-2016-2469</td> 404 <td></td> 405 <td></td> 406 </tr> 407 </table> 408 <h3 id="2016-09-06-summary">2016-09-06 </h3> 409 <p> 410 2016-09-05 2016-09-01 2016 9 6 411 . 412 </p> 413 414 <table> 415 <col width="55%"> 416 <col width="20%"> 417 <col width="13%"> 418 <col width="12%"> 419 <tr> 420 <th></th> 421 <th>CVE</th> 422 <th></th> 423 <th>Nexus </th> 424 </tr> 425 <tr> 426 <td> </td> 427 <td>CVE-2016-5340</td> 428 <td></td> 429 <td></td> 430 </tr> 431 <tr> 432 <td>Qualcomm </td> 433 <td>CVE-2016-2059</td> 434 <td></td> 435 <td></td> 436 </tr> 437 </table> 438 <h2 id="mitigations">Android Google </h2> 439 <p> 440 SafetyNet <a href="/security/enhancements/index.html">Android </a> 441 . 442 Android 443 . 444 </p> 445 <ul> 446 <li>Android Android 447 . Android 448 .</li> 449 <li>Android <a href="http://static.googleusercontent.com/media/source.android.com/en//security/reports/Google_Android_Security_PHA_classifications.pdf"> </a> 450 451 <a href="http://static.googleusercontent.com/media/source.android.com/en//security/reports/Google_Android_Security_2015_Report_Final.pdf"> SafetyNet</a> 452 . <a href="http://www.android.com/gms">Google </a> 453 454 Google Play . Google 455 Play 456 457 . 458 459 . 460 .</li> 461 <li> Google 462 .</li> 463 </ul> 464 465 <h2 id="acknowledgements"></h2> 466 <p> 467 . 468 </p> 469 470 471 <ul> 472 <li> Cory Pruce: CVE-2016-3897</li> 473 <li>Qihoo 360 Technology Co. Ltd. IceSword Lab 474 Gengjia Chen(<a href="https://twitter.com/chengjia4574">@chengjia4574</a>), <a href="http://weibo.com/jfpan">pjf</a>: 475 CVE-2016-3869, CVE-2016-3865, CVE-2016-3866, CVE-2016-3867</li> 476 <li><a href="http://www.cmcm.com">Cheetah Mobile</a> Security Research Lab 477 Hao Qin: CVE-2016-3863</li> 478 <li>Google Project Zero Jann Horn: CVE-2016-3885</li> 479 <li>Qihoo 360 IceSword Lab Jianqiang Zhao(<a href="https://twitter.com/jianqiangzhao">@jianqiangzhao</a>) 480 <a href="http://weibo.com/jfpan">pjf</a>: CVE-2016-3858</li> 481 <li>Joshua Drake(<a href="https://twitter.com/jduck">@jduck</a>): CVE-2016-3861</li> 482 <li> CISPA Madhu Priya Murugan: CVE-2016-3896</li> 483 <li>Google Makoto Onuki: CVE-2016-3876</li> 484 <li>Google Project Zero Mark Brand: CVE-2016-3861</li> 485 <li>Android Max Spector: CVE-2016-3888</li> 486 <li>Android Max Spector, Quan To: CVE-2016-3889</li> 487 <li><a href="http://c0reteam.org">C0RE </a> Mingjian Zhou(<a href="https://twitter.com/Mingjian_Zhou">@Mingjian_Zhou</a>), 488 Chiachih Wu(<a href="https://twitter.com/chiachih_wu">@chiachih_wu</a>), 489 Xuxian Jiang: CVE-2016-3895</li> 490 <li>Tesla Motors Nathan Crandall(<a href="https://twitter.com/natecray">@natecray</a>) 491 : CVE-2016-2446 </li> 492 <li>Google Oleksiy Vyalov: CVE-2016-3890</li> 493 <li>Google Chrome Oliver Chang: CVE-2016-3880</li> 494 <li>Alibaba Mobile Security Group Peng Xiao, Chengming Yang, Ning You, Chao Yang, 495 Yang song: CVE-2016-3859</li> 496 <li>TEAM Lv51 Ronald L. Loor Vargas(<a href="https://twitter.com/loor_rlv">@loor_rlv</a>) 497 : CVE-2016-3886</li> 498 <li>IBM Security X-Force Sagi Kedmi: CVE-2016-3873</li> 499 <li><a href="mailto:sbauer (a] plzdonthack.me">Scott Bauer</a> 500 (<a href="https://twitter.com/ScottyBauer1">@ScottyBauer1</a>): CVE-2016-3893, 501 CVE-2016-3868, CVE-2016-3867</li> 502 <li>TrendMicro Seven Shen 503 (<a href="https://twitter.com/lingtongshen">@lingtongshen</a>): CVE-2016-3894</li> 504 <li>SentinelOne / RedNaga 505 Tim Strazzere(<a href="https://twitter.com/timstrazz">@timstrazz</a>): CVE-2016-3862</li> 506 <li>trotmaster(<a href="https://twitter.com/trotmaster99">@trotmaster99</a>): 507 CVE-2016-3883</li> 508 <li>Google Victor Chang: CVE-2016-3887</li> 509 <li>Google Vignesh Venkatasubramanian: CVE-2016-3881</li> 510 <li>Alibaba Inc. Weichao Sun(<a href="https://twitter.com/sunblate">@sunblate</a>): CVE-2016-3878</li> 511 <li><a href="http://c0reteam.org">C0RE </a> <a href="mailto:vancouverdou (a] gmail.com">Wenke Dou</a>, Mingjian Zhou 512 (<a href="https://twitter.com/Mingjian_Zhou">@Mingjian_Zhou</a>), Chiachih Wu 513 (<a href="https://twitter.com/chiachih_wu">@chiachih_wu</a>), Xuxian Jiang 514 : CVE-2016-3870, CVE-2016-3871, 515 CVE-2016-3872</li> 516 <li><a href="http://blog.trendmicro.com/trendlabs-security-intelligence/author/wishwu/">Trend Micro Inc</a> 517 Wish Wu(<a href="http://weibo.com/wishlinux"></a>) 518 (<a href="https://twitter.com/wish_wu">@wish_wu</a>) 519 : CVE-2016-3892</li> 520 <li><a href="http://www.alibaba.com/">Alibaba Inc</a> Xingyu He() 521 (<a href="https://twitter.com/Spid3r_">@Spid3r_</a>) 522 : CVE-2016-3879</li> 523 <li>Chinese Academy of Sciences Institute of Software TCA Lab Yacong Gu 524 : CVE-2016-3884</li> 525 <li> <a href="http://yurushao.info">Yuru Shao</a> 526 : CVE-2016-3898</li> 527 </ul> 528 529 <h2 id="2016-09-01-details">2016-09-01 </h2> 530 <p> 531 <a href="#2016-09-01-summary">2016-09-01 532 </a> 533 . , 534 CVE, , , Nexus , 535 AOSP ( ), . 536 AOSP ID 537 . 538 ID . 539 </p> 540 541 <h3>LibUtils </h3> 542 <p> 543 LibUtils 544 545 . 546 . 547 </p> 548 549 <table> 550 <col width="18%"> 551 <col width="16%"> 552 <col width="10%"> 553 <col width="19%"> 554 <col width="19%"> 555 <col width="17%"> 556 <tr> 557 <th>CVE</th> 558 <th></th> 559 <th></th> 560 <th> Nexus </th> 561 <th> AOSP </th> 562 <th> </th> 563 </tr> 564 <tr> 565 <td>CVE-2016-3861</td> 566 <td><a href="https://android.googlesource.com/platform/system/core/+/ecf5fd58a8f50362ce9e8d4245a33d56f29f142b"> 567 A-29250543</a> 568 [<a href="https://android.googlesource.com/platform/frameworks/av/+/3944c65637dfed14a5a895685edfa4bacaf9f76e">2</a>] 569 [<a href="https://android.googlesource.com/platform/frameworks/base/+/866dc26ad4a98cc835d075b627326e7d7e52ffa1">3</a>] 570 [<a href="https://android.googlesource.com/platform/frameworks/native/+/1f4b49e64adf4623eefda503bca61e253597b9bf">4</a>] 571 </td> 572 <td></td> 573 <td> Nexus</td> 574 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 575 <td>2016 6 9</td> 576 </tr> 577 </table> 578 <h3> </h3> 579 <p> 580 581 582 . 583 . 584 </p> 585 586 <table> 587 <col width="18%"> 588 <col width="18%"> 589 <col width="10%"> 590 <col width="19%"> 591 <col width="17%"> 592 <col width="17%"> 593 <tr> 594 <th>CVE</th> 595 <th></th> 596 <th></th> 597 <th> Nexus </th> 598 <th> AOSP </th> 599 <th> </th> 600 </tr> 601 <tr> 602 <td>CVE-2016-3862</td> 603 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/e739d9ca5469ed30129d0fa228e3d0f2878671ac"> 604 A-29270469</a></td> 605 <td></td> 606 <td> Nexus</td> 607 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1</td> 608 <td>2016 6 10</td> 609 </tr> 610 </table> 611 <h3>MediaMuxer </h3> 612 <p> 613 MediaMuxer 614 615 . MediaMuxer 616 . 617 </p> 618 619 <table> 620 <col width="18%"> 621 <col width="16%"> 622 <col width="10%"> 623 <col width="19%"> 624 <col width="19%"> 625 <col width="17%"> 626 <tr> 627 <th>CVE</th> 628 <th></th> 629 <th></th> 630 <th> Nexus </th> 631 <th> AOSP </th> 632 <th> </th> 633 </tr> 634 <tr> 635 <td>CVE-2016-3863</td> 636 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/119a012b2a9a186655da4bef3ed4ed8dd9b94c26"> 637 A-29161888</a></td> 638 <td></td> 639 <td> Nexus</td> 640 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 641 <td>2016 6 6</td> 642 </tr> 643 </table> 644 <h3> </h3> 645 <p> 646 647 648 . 649 650 . 651 </p> 652 653 <table> 654 <col width="18%"> 655 <col width="16%"> 656 <col width="10%"> 657 <col width="19%"> 658 <col width="19%"> 659 <col width="17%"> 660 <tr> 661 <th>CVE</th> 662 <th></th> 663 <th></th> 664 <th> Nexus </th> 665 <th> AOSP </th> 666 <th> </th> 667 </tr> 668 <tr> 669 <td>CVE-2016-3870</td> 670 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/1e9801783770917728b7edbdeff3d0ec09c621ac"> 671 A-29421804</a> 672 <td></td> 673 <td> Nexus</td> 674 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 675 <td>2016 6 15</td> 676 </td></tr> 677 <tr> 678 <td>CVE-2016-3871</td> 679 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/c2639afac631f5c1ffddf70ee8a6fe943d0bedf9"> 680 A-29422022</a> 681 [<a href="https://android.googlesource.com/platform/frameworks/av/+/3c4edac2a5b00dec6c8579a0ee658cfb3bb16d94">2</a>] 682 [<a href="https://android.googlesource.com/platform/frameworks/av/+/c17ad2f0c7e00fd1bbf01d0dfed41f72d78267ad">3</a>] 683 </td> 684 <td></td> 685 <td> Nexus</td> 686 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 687 <td>2016 6 15</td> 688 </tr> 689 <tr> 690 <td>CVE-2016-3872</td> 691 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/630ed150f7201ddadb00b8b8ce0c55c4cc6e8742"> 692 A-29421675</a> 693 [<a href="https://android.googlesource.com/platform/frameworks/av/+/9f9ba255a0c59544f3555c9c45512c3a2fac5fad">2</a>] 694 </td> 695 <td></td> 696 <td> Nexus</td> 697 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 698 <td>2016 6 15</td> 699 </tr> 700 </table> 701 <h3> </h3> 702 <p> 703 704 . 705 . 706 </p> 707 708 <table> 709 <col width="18%"> 710 <col width="18%"> 711 <col width="10%"> 712 <col width="19%"> 713 <col width="17%"> 714 <col width="17%"> 715 <tr> 716 <th>CVE</th> 717 <th></th> 718 <th></th> 719 <th> Nexus </th> 720 <th> AOSP </th> 721 <th> </th> 722 </tr> 723 <tr> 724 <td>CVE-2016-3875</td> 725 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/69729fa8b13cadbf3173fe1f389fe4f3b7bd0f9c"> 726 A-26251884</a></td> 727 <td></td> 728 <td>*</td> 729 <td>6.0, 6.0.1</td> 730 <td>Google </td> 731 </tr> 732 </table> 733 <p> 734 * Android 7.0 Nexus 735 . 736 </p> 737 738 <h3> </h3> 739 <p> 740 741 . 742 . 743 </p> 744 745 <table> 746 <col width="18%"> 747 <col width="18%"> 748 <col width="10%"> 749 <col width="19%"> 750 <col width="17%"> 751 <col width="17%"> 752 <tr> 753 <th>CVE</th> 754 <th></th> 755 <th></th> 756 <th> Nexus </th> 757 <th> AOSP </th> 758 <th> </th> 759 </tr> 760 <tr> 761 <td>CVE-2016-3876</td> 762 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/91fc934bb2e5ea59929bb2f574de6db9b5100745"> 763 A-29900345</a></td> 764 <td></td> 765 <td> Nexus</td> 766 <td>6.0, 6.0.1, 7.0</td> 767 <td>Google </td> 768 </tr> 769 </table> 770 <h3> (DoS) </h3> 771 <p> 772 773 . 774 . 775 </p> 776 777 <table> 778 <col width="18%"> 779 <col width="16%"> 780 <col width="10%"> 781 <col width="19%"> 782 <col width="19%"> 783 <col width="17%"> 784 <tr> 785 <th>CVE</th> 786 <th></th> 787 <th></th> 788 <th> Nexus </th> 789 <th> AOSP </th> 790 <th> </th> 791 </tr> 792 <tr> 793 <td>CVE-2016-3899</td> 794 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/97837bb6cbac21ea679843a0037779d3834bed64"> 795 A-29421811</a></td> 796 <td></td> 797 <td> Nexus</td> 798 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 799 <td>2016 6 16</td> 800 </tr> 801 <tr> 802 <td>CVE-2016-3878</td> 803 <td><a href="https://android.googlesource.com/platform/external/libavc/+/7109ce3f8f90a28ca9f0ee6e14f6ac5e414c62cf"> 804 A-29493002</a></td> 805 <td></td> 806 <td> Nexus*</td> 807 <td>6.0, 6.0.1</td> 808 <td>2016 6 17</td> 809 </tr> 810 <tr> 811 <td>CVE-2016-3879</td> 812 <td><a href="https://android.googlesource.com/platform/external/sonivox/+/cadfb7a3c96d4fef06656cf37143e1b3e62cae86"> 813 A-29770686</a></td> 814 <td></td> 815 <td> Nexus*</td> 816 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1</td> 817 <td>2016 6 25</td> 818 </tr> 819 <tr> 820 <td>CVE-2016-3880</td> 821 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/68f67ef6cf1f41e77337be3bc4bff91f3a3c6324"> 822 A-25747670</a></td> 823 <td></td> 824 <td> Nexus</td> 825 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 826 <td>Google </td> 827 </tr> 828 <tr> 829 <td>CVE-2016-3881</td> 830 <td><a href="https://android.googlesource.com/platform/external/libvpx/+/4974dcbd0289a2530df2ee2a25b5f92775df80da"> 831 A-30013856</a></td> 832 <td></td> 833 <td> Nexus</td> 834 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 835 <td>Google </td> 836 </tr> 837 </table> 838 <p> 839 * Android 7.0 Nexus 840 . 841 </p> 842 843 <h3> </h3> 844 <p> 845 846 SMS . 847 848 . 849 </p> 850 851 <table> 852 <col width="18%"> 853 <col width="16%"> 854 <col width="10%"> 855 <col width="19%"> 856 <col width="19%"> 857 <col width="17%"> 858 <tr> 859 <th>CVE</th> 860 <th></th> 861 <th></th> 862 <th> Nexus </th> 863 <th> AOSP </th> 864 <th> </th> 865 </tr> 866 <tr> 867 <td>CVE-2016-3883</td> 868 <td><a href="https://android.googlesource.com/platform/frameworks/opt/telephony/+/b2c89e6f8962dc7aff88cb38aa3ee67d751edda9"> 869 A-28557603</a></td> 870 <td></td> 871 <td> Nexus</td> 872 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 873 <td>2016 5 3</td> 874 </tr> 875 </table> 876 <h3> </h3> 877 <p> 878 879 880 . ( ) . 881 </p> 882 883 <table> 884 <col width="18%"> 885 <col width="18%"> 886 <col width="10%"> 887 <col width="19%"> 888 <col width="17%"> 889 <col width="17%"> 890 <tr> 891 <th>CVE</th> 892 <th></th> 893 <th></th> 894 <th> Nexus </th> 895 <th> AOSP </th> 896 <th> </th> 897 </tr> 898 <tr> 899 <td>CVE-2016-3884</td> 900 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/61e9103b5725965568e46657f4781dd8f2e5b623"> 901 A-29421441</a></td> 902 <td></td> 903 <td> Nexus</td> 904 <td>6.0, 6.0.1, 7.0</td> 905 <td>2016 6 15</td> 906 </tr> 907 </table> 908 <h3>Debuggerd </h3> 909 <p> 910 Android 911 Android 912 . 913 . 914 </p> 915 916 <table> 917 <col width="18%"> 918 <col width="18%"> 919 <col width="10%"> 920 <col width="19%"> 921 <col width="17%"> 922 <col width="17%"> 923 <tr> 924 <th>CVE</th> 925 <th></th> 926 <th></th> 927 <th> Nexus </th> 928 <th> AOSP </th> 929 <th> </th> 930 </tr> 931 <tr> 932 <td>CVE-2016-3885</td> 933 <td><a href="https://android.googlesource.com/platform/system/core/+/d7603583f90c2bc6074a4ee2886bd28082d7c65b"> 934 A-29555636</a></td> 935 <td></td> 936 <td> Nexus</td> 937 <td>5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 938 <td>2016 6 21</td> 939 </tr> 940 </table> 941 <h3> UI </h3> 942 <p> 943 UI 944 . 945 . 946 </p> 947 948 <table> 949 <col width="18%"> 950 <col width="18%"> 951 <col width="10%"> 952 <col width="19%"> 953 <col width="17%"> 954 <col width="17%"> 955 <tr> 956 <th>CVE</th> 957 <th></th> 958 <th></th> 959 <th> Nexus </th> 960 <th> AOSP </th> 961 <th> </th> 962 </tr> 963 <tr> 964 <td>CVE-2016-3886</td> 965 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/6ca6cd5a50311d58a1b7bf8fbef3f9aa29eadcd5"> 966 A-30107438</a></td> 967 <td></td> 968 <td> Nexus</td> 969 <td>7.0</td> 970 <td>2016 6 23</td> 971 </tr> 972 </table> 973 <h3> </h3> 974 <p> 975 VPN 976 . 977 978 979 . 980 </p> 981 982 <table> 983 <col width="18%"> 984 <col width="17%"> 985 <col width="10%"> 986 <col width="19%"> 987 <col width="17%"> 988 <col width="18%"> 989 <tr> 990 <th>CVE</th> 991 <th></th> 992 <th></th> 993 <th> Nexus </th> 994 <th> AOSP </th> 995 <th> </th> 996 </tr> 997 <tr> 998 <td>CVE-2016-3887</td> 999 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/335702d106797bce8a88044783fa1fc1d5f751d0"> 1000 A-29899712</a></td> 1001 <td></td> 1002 <td> Nexus</td> 1003 <td>7.0</td> 1004 <td>Google </td> 1005 </tr> 1006 </table> 1007 <h3>SMS </h3> 1008 <p> 1009 SMS 1010 SMS . 1011 . 1012 </p> 1013 1014 <table> 1015 <col width="18%"> 1016 <col width="16%"> 1017 <col width="10%"> 1018 <col width="19%"> 1019 <col width="19%"> 1020 <col width="17%"> 1021 <tr> 1022 <th>CVE</th> 1023 <th></th> 1024 <th></th> 1025 <th> Nexus </th> 1026 <th> AOSP </th> 1027 <th> </th> 1028 </tr> 1029 <tr> 1030 <td>CVE-2016-3888</td> 1031 <td><a href="https://android.googlesource.com/platform/frameworks/opt/telephony/+/b8d1aee993dcc565e6576b2f2439a8f5a507cff6"> 1032 A-29420123</a></td> 1033 <td></td> 1034 <td> Nexus</td> 1035 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 1036 <td>Google </td> 1037 </tr> 1038 </table> 1039 <h3> </h3> 1040 <p> 1041 1042 . 1043 1044 1045 . 1046 </p> 1047 1048 <table> 1049 <col width="18%"> 1050 <col width="17%"> 1051 <col width="10%"> 1052 <col width="19%"> 1053 <col width="17%"> 1054 <col width="18%"> 1055 <tr> 1056 <th>CVE</th> 1057 <th></th> 1058 <th></th> 1059 <th> Nexus </th> 1060 <th> AOSP </th> 1061 <th> </th> 1062 </tr> 1063 <tr> 1064 <td>CVE-2016-3889</td> 1065 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/e206f02d46ae5e38c74d138b51f6e1637e261abe"> 1066 A-29194585</a> 1067 [<a href="https://android.googlesource.com/platform/packages/apps/Settings/+/bd5d5176c74021e8cf4970f93f273ba3023c3d72">2</a>] 1068 </td> 1069 <td></td> 1070 <td> Nexus</td> 1071 <td>6.0, 6.0.1, 7.0</td> 1072 <td>Google </td> 1073 </tr> 1074 </table> 1075 <h3> </h3> 1076 <p> 1077 1078 1079 . 1080 . 1081 </p> 1082 1083 <table> 1084 <col width="18%"> 1085 <col width="16%"> 1086 <col width="10%"> 1087 <col width="19%"> 1088 <col width="18%"> 1089 <col width="18%"> 1090 <tr> 1091 <th>CVE</th> 1092 <th></th> 1093 <th></th> 1094 <th> Nexus </th> 1095 <th> AOSP </th> 1096 <th> </th> 1097 </tr> 1098 <tr> 1099 <td>CVE-2016-3890</td> 1100 <td><a href="https://android.googlesource.com/platform/system/core/+/268068f25673242d1d5130d96202d3288c91b700"> 1101 A-28347842</a> 1102 [<a href="https://android.googlesource.com/platform/system/core/+/014b01706cc64dc9c2ad94a96f62e07c058d0b5d">2</a>] 1103 </td> 1104 <td></td> 1105 <td>*</td> 1106 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1</td> 1107 <td>Google </td> 1108 </tr> 1109 </table> 1110 <p> 1111 * Android 7.0 Nexus 1112 . 1113 </p> 1114 1115 <h3> </h3> 1116 <p> 1117 1118 . 1119 1120 . 1121 </p> 1122 1123 <table> 1124 <col width="18%"> 1125 <col width="18%"> 1126 <col width="10%"> 1127 <col width="19%"> 1128 <col width="17%"> 1129 <col width="17%"> 1130 <tr> 1131 <th>CVE</th> 1132 <th></th> 1133 <th></th> 1134 <th> Nexus </th> 1135 <th> AOSP </th> 1136 <th> </th> 1137 </tr> 1138 <tr> 1139 <td>CVE-2016-3895</td> 1140 <td><a href="https://android.googlesource.com/platform/frameworks/native/+/363247929c35104b3e5ee9e637e9dcf579080aee"> 1141 A-29983260</a></td> 1142 <td></td> 1143 <td> Nexus</td> 1144 <td>6.0, 6.0.1, 7.0</td> 1145 <td>2016 7 4</td> 1146 </tr> 1147 </table> 1148 <h3>AOSP </h3> 1149 <p> 1150 AOSP 1151 . 1152 1153 . 1154 </p> 1155 1156 <table> 1157 <col width="18%"> 1158 <col width="16%"> 1159 <col width="10%"> 1160 <col width="19%"> 1161 <col width="19%"> 1162 <col width="17%"> 1163 <tr> 1164 <th>CVE</th> 1165 <th></th> 1166 <th></th> 1167 <th> Nexus </th> 1168 <th> AOSP </th> 1169 <th> </th> 1170 </tr> 1171 <tr> 1172 <td>CVE-2016-3896</td> 1173 <td><a href="https://android.googlesource.com/platform/packages/apps/Email/+/cb2dfe43f25cb0c32cc73aa4569c0a5186a4ef43"> 1174 A-29767043</a></td> 1175 <td></td> 1176 <td>*</td> 1177 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1</td> 1178 <td>2016 7 24</td> 1179 </tr> 1180 </table> 1181 <p> 1182 * Android 7.0 Nexus 1183 . 1184 </p> 1185 1186 <h3>Wi-Fi </h3> 1187 <p> 1188 Wi-Fi 1189 . 1190 . 1191 </p> 1192 1193 <table> 1194 <col width="18%"> 1195 <col width="16%"> 1196 <col width="10%"> 1197 <col width="19%"> 1198 <col width="19%"> 1199 <col width="17%"> 1200 <tr> 1201 <th>CVE</th> 1202 <th></th> 1203 <th></th> 1204 <th> Nexus </th> 1205 <th> AOSP </th> 1206 <th> </th> 1207 </tr> 1208 <tr> 1209 <td>CVE-2016-3897</td> 1210 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/55271d454881b67ff38485fdd97598c542cc2d55"> 1211 A-25624963</a> 1212 [<a href="https://android.googlesource.com/platform/frameworks/base/+/81be4e3aac55305cbb5c9d523cf5c96c66604b39">2</a>] 1213 </td> 1214 <td></td> 1215 <td>*</td> 1216 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1</td> 1217 <td>2015 11 5</td> 1218 </tr> 1219 </table> 1220 <p> 1221 * Android 7.0 Nexus 1222 . 1223 </p> 1224 1225 <h3> (DoS) </h3> 1226 <p> 1227 1228 119 TTY . 1229 1230 . 1231 </p> 1232 1233 <table> 1234 <col width="18%"> 1235 <col width="18%"> 1236 <col width="10%"> 1237 <col width="19%"> 1238 <col width="17%"> 1239 <col width="17%"> 1240 <tr> 1241 <th>CVE</th> 1242 <th></th> 1243 <th></th> 1244 <th> Nexus </th> 1245 <th> AOSP </th> 1246 <th> </th> 1247 </tr> 1248 <tr> 1249 <td>CVE-2016-3898</td> 1250 <td><a href="https://android.googlesource.com/platform/packages/services/Telephony/+/d1d248d10cf03498efb7041f1a8c9c467482a19d"> 1251 A-29832693</a></td> 1252 <td></td> 1253 <td> Nexus</td> 1254 <td>5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 1255 <td>2016 6 28</td> 1256 </tr> 1257 </table> 1258 <h2 id="2016-09-05-details">2016-09-05 </h2> 1259 <p> 1260 <a href="#2016-09-05-summary">2016-09-05 1261 </a> 1262 . , 1263 CVE, , , Nexus , 1264 AOSP ( ), . 1265 AOSP ID 1266 . 1267 ID . 1268 </p> 1269 1270 <h3> </h3> 1271 <p> 1272 1273 1274 . 1275 , 1276 . 1277 </p> 1278 1279 <table> 1280 <col width="19%"> 1281 <col width="20%"> 1282 <col width="10%"> 1283 <col width="23%"> 1284 <col width="17%"> 1285 <tr> 1286 <th>CVE</th> 1287 <th></th> 1288 <th></th> 1289 <th> Nexus </th> 1290 <th> </th> 1291 </tr> 1292 <tr> 1293 <td>CVE-2014-9529</td> 1294 <td>A-29510361 1295 <p> 1296 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=a3a8784454692dd72e5d5d34dcdab17b4420e74c"> 1297 </a></p></td> 1298 <td></td> 1299 <td>Nexus 5, Nexus 6, Nexus 9, Nexus Player, Android One</td> 1300 <td>2015 1 6</td> 1301 </tr> 1302 <tr> 1303 <td>CVE-2016-4470</td> 1304 <td>A-29823941 1305 <p> 1306 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=38327424b40bcebe2de92d07312c89360ac9229a"> 1307 </a></p></td> 1308 <td></td> 1309 <td>Nexus 5, Nexus 5X, Nexus 6, Nexus 6P, Nexus 9, Nexus Player</td> 1310 <td>2016 6 15</td> 1311 </tr> 1312 </table> 1313 <h3> </h3> 1314 <p> 1315 1316 1317 . 1318 , 1319 . 1320 </p> 1321 1322 <table> 1323 <col width="19%"> 1324 <col width="20%"> 1325 <col width="10%"> 1326 <col width="23%"> 1327 <col width="17%"> 1328 <tr> 1329 <th>CVE</th> 1330 <th></th> 1331 <th></th> 1332 <th> Nexus </th> 1333 <th> </th> 1334 </tr> 1335 <tr> 1336 <td>CVE-2013-7446</td> 1337 <td>A-29119002 1338 <p> 1339 <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/net/unix/af_unix.c?id=7d267278a9ece963d77eefec61630223fce08c6c"> 1340 </a></p></td> 1341 <td></td> 1342 <td>Nexus 5, Nexus 5X, Nexus 6, Nexus 6P, Nexus 9, Nexus Player, Pixel C, 1343 Android One</td> 1344 <td>2015 11 18</td> 1345 </tr> 1346 </table> 1347 <h3> </h3> 1348 <p> 1349 1350 1351 . 1352 , 1353 . 1354 </p> 1355 1356 <table> 1357 <col width="19%"> 1358 <col width="20%"> 1359 <col width="10%"> 1360 <col width="23%"> 1361 <col width="17%"> 1362 <tr> 1363 <th>CVE</th> 1364 <th></th> 1365 <th></th> 1366 <th> Nexus </th> 1367 <th> </th> 1368 </tr> 1369 <tr> 1370 <td>CVE-2016-3134</td> 1371 <td>A-28940694 1372 <p> 1373 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=54d83fc74aa9ec72794373cb47432c5f7fb1a309"> 1374 </a></p></td> 1375 <td></td> 1376 <td>Nexus 5, Nexus 5X, Nexus 6, Nexus 6P, Nexus 9, Nexus Player, Pixel C, 1377 Android One</td> 1378 <td>2016 3 9</td> 1379 </tr> 1380 </table> 1381 <h3> USB </h3> 1382 <p> 1383 USB 1384 1385 . 1386 , 1387 . 1388 </p> 1389 1390 <table> 1391 <col width="19%"> 1392 <col width="20%"> 1393 <col width="10%"> 1394 <col width="23%"> 1395 <col width="17%"> 1396 <tr> 1397 <th>CVE</th> 1398 <th></th> 1399 <th></th> 1400 <th> Nexus </th> 1401 <th> </th> 1402 </tr> 1403 <tr> 1404 <td>CVE-2016-3951</td> 1405 <td>A-28744625 1406 <p> 1407 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=4d06dd537f95683aba3651098ae288b7cbff8274"> </a> 1408 [<a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=1666984c8625b3db19a9abc298931d35ab7bc64b">2</a>]</p></td> 1409 <td></td> 1410 <td>Nexus 5, Nexus 5X, Nexus 6, Nexus 6P, Nexus 9, Nexus Player, Pixel C, 1411 Android One</td> 1412 <td>2016 4 6</td> 1413 </tr> 1414 </table> 1415 <h3> </h3> 1416 <p> 1417 1418 1419 . 1420 . 1421 </p> 1422 1423 <table> 1424 <col width="19%"> 1425 <col width="20%"> 1426 <col width="10%"> 1427 <col width="23%"> 1428 <col width="17%"> 1429 <tr> 1430 <th>CVE</th> 1431 <th></th> 1432 <th></th> 1433 <th> Nexus </th> 1434 <th> </th> 1435 </tr> 1436 <tr> 1437 <td>CVE-2014-4655</td> 1438 <td>A-29916012 1439 <p> 1440 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=82262a46627bebb0febcc26664746c25cef08563"> 1441 </a></p></td> 1442 <td></td> 1443 <td>Nexus 5, Nexus 6, Nexus 9, Nexus Player</td> 1444 <td>2014 6 26</td> 1445 </tr> 1446 </table> 1447 <h3> ASN.1 </h3> 1448 <p> 1449 ASN.1 1450 1451 . 1452 . 1453 </p> 1454 1455 <table> 1456 <col width="19%"> 1457 <col width="20%"> 1458 <col width="10%"> 1459 <col width="23%"> 1460 <col width="17%"> 1461 <tr> 1462 <th>CVE</th> 1463 <th></th> 1464 <th></th> 1465 <th> Nexus </th> 1466 <th> </th> 1467 </tr> 1468 <tr> 1469 <td>CVE-2016-2053</td> 1470 <td>A-28751627 1471 <p> 1472 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=0d62e9dd6da45bbf0f33a8617afc5fe774c8f45f"> 1473 </a></p></td> 1474 <td></td> 1475 <td>Nexus 5X, Nexus 6P</td> 1476 <td>2016 1 25</td> 1477 </tr> 1478 </table> 1479 <h3>Qualcomm </h3> 1480 <p> 1481 Qualcomm 1482 1483 . 1484 . 1485 </p> 1486 1487 <table> 1488 <col width="19%"> 1489 <col width="18%"> 1490 <col width="10%"> 1491 <col width="25%"> 1492 <col width="17%"> 1493 <tr> 1494 <th>CVE</th> 1495 <th></th> 1496 <th></th> 1497 <th> Nexus </th> 1498 <th> </th> 1499 </tr> 1500 <tr> 1501 <td>CVE-2016-3864</td> 1502 <td>A-28823714*<br> 1503 QC-CR#913117</td> 1504 <td></td> 1505 <td>Nexus 5, Nexus 5X, Nexus 6, Nexus 6P, Android One</td> 1506 <td>2016 4 29</td> 1507 </tr> 1508 </table> 1509 <p> 1510 * . 1511 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1512 . 1513 </p> 1514 1515 <h3>Qualcomm </h3> 1516 <p> 1517 Qualcomm 1518 1519 . 1520 . 1521 </p> 1522 1523 <table> 1524 <col width="19%"> 1525 <col width="20%"> 1526 <col width="10%"> 1527 <col width="23%"> 1528 <col width="17%"> 1529 <tr> 1530 <th>CVE</th> 1531 <th></th> 1532 <th></th> 1533 <th> Nexus </th> 1534 <th> </th> 1535 </tr> 1536 <tr> 1537 <td>CVE-2016-3858</td> 1538 <td>A-28675151<br> 1539 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?id=0c148b9a9028c566eac680f19e5d664b483cdee3">QC-CR#1022641</a></td> 1540 <td></td> 1541 <td>Nexus 5X, Nexus 6P</td> 1542 <td>2016 5 9</td> 1543 </tr> 1544 </table> 1545 <h3> </h3> 1546 <p> 1547 1548 1549 . 1550 . 1551 </p> 1552 1553 <table> 1554 <col width="19%"> 1555 <col width="20%"> 1556 <col width="10%"> 1557 <col width="23%"> 1558 <col width="17%"> 1559 <tr> 1560 <th>CVE</th> 1561 <th></th> 1562 <th></th> 1563 <th> Nexus </th> 1564 <th> </th> 1565 </tr> 1566 <tr> 1567 <td>CVE-2016-4805</td> 1568 <td>A-28979703 1569 <p> 1570 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=1f461dcdd296eecedaffffc6bae2bfa90bd7eb89"> 1571 </a></p></td> 1572 <td></td> 1573 <td>Nexus 5, Nexus 5X, Nexus 6, Nexus 6P, Nexus 9</td> 1574 <td>2016 5 15</td> 1575 </tr> 1576 </table> 1577 <h3>Synaptics </h3> 1578 <p> 1579 Synaptics 1580 1581 . 1582 . 1583 </p> 1584 1585 <table> 1586 <col width="19%"> 1587 <col width="20%"> 1588 <col width="10%"> 1589 <col width="23%"> 1590 <col width="17%"> 1591 <tr> 1592 <th>CVE</th> 1593 <th></th> 1594 <th></th> 1595 <th> Nexus </th> 1596 <th> </th> 1597 </tr> 1598 <tr> 1599 <td>CVE-2016-3865</td> 1600 <td>A-28799389*</td> 1601 <td></td> 1602 <td>Nexus 5X, Nexus 9</td> 1603 <td>2016 5 16</td> 1604 </tr> 1605 </table> 1606 <p> 1607 * . 1608 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1609 . 1610 </p> 1611 1612 <h3>Qualcomm </h3> 1613 <p> 1614 Qualcomm 1615 1616 . 1617 . 1618 </p> 1619 1620 <table> 1621 <col width="19%"> 1622 <col width="20%"> 1623 <col width="10%"> 1624 <col width="23%"> 1625 <col width="17%"> 1626 <tr> 1627 <th>CVE</th> 1628 <th></th> 1629 <th></th> 1630 <th> Nexus </th> 1631 <th> </th> 1632 </tr> 1633 <tr> 1634 <td>CVE-2016-3859</td> 1635 <td>A-28815326*<br> 1636 QC-CR#1034641</td> 1637 <td></td> 1638 <td>Nexus 5, Nexus 5X, Nexus 6, Nexus 6P</td> 1639 <td>2016 5 17</td> 1640 </tr> 1641 </table> 1642 <p> 1643 * . 1644 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1645 . 1646 </p> 1647 1648 <h3>Qualcomm </h3> 1649 <p> 1650 Qualcomm 1651 1652 . 1653 . 1654 </p> 1655 1656 <table> 1657 <col width="19%"> 1658 <col width="20%"> 1659 <col width="10%"> 1660 <col width="23%"> 1661 <col width="17%"> 1662 <tr> 1663 <th>CVE</th> 1664 <th></th> 1665 <th></th> 1666 <th> Nexus </th> 1667 <th> </th> 1668 </tr> 1669 <tr> 1670 <td>CVE-2016-3866</td> 1671 <td>A-28868303*<br> 1672 QC-CR#1032820</td> 1673 <td></td> 1674 <td>Nexus 5X, Nexus 6, Nexus 6P</td> 1675 <td>2016 5 18</td> 1676 </tr> 1677 </table> 1678 <p> 1679 * . 1680 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1681 . 1682 </p> 1683 1684 <h3>Qualcomm IPA </h3> 1685 <p> 1686 Qualcomm IPA 1687 1688 . 1689 . 1690 </p> 1691 1692 <table> 1693 <col width="19%"> 1694 <col width="20%"> 1695 <col width="10%"> 1696 <col width="23%"> 1697 <col width="17%"> 1698 <tr> 1699 <th>CVE</th> 1700 <th></th> 1701 <th></th> 1702 <th> Nexus </th> 1703 <th> </th> 1704 </tr> 1705 <tr> 1706 <td>CVE-2016-3867</td> 1707 <td>A-28919863*<br> 1708 QC-CR#1037897</td> 1709 <td></td> 1710 <td>Nexus 5X, Nexus 6P</td> 1711 <td>2016 5 21</td> 1712 </tr> 1713 </table> 1714 <p> 1715 * . 1716 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1717 . 1718 </p> 1719 1720 <h3>Qualcomm </h3> 1721 <p> 1722 Qualcomm 1723 1724 . 1725 . 1726 </p> 1727 1728 <table> 1729 <col width="19%"> 1730 <col width="20%"> 1731 <col width="10%"> 1732 <col width="23%"> 1733 <col width="17%"> 1734 <tr> 1735 <th>CVE</th> 1736 <th></th> 1737 <th></th> 1738 <th> Nexus </th> 1739 <th> </th> 1740 </tr> 1741 <tr> 1742 <td>CVE-2016-3868</td> 1743 <td>A-28967028*<br> 1744 QC-CR#1032875</td> 1745 <td></td> 1746 <td>Nexus 5X, Nexus 6P</td> 1747 <td>2016 5 25</td> 1748 </tr> 1749 </table> 1750 <p> 1751 * . 1752 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1753 . 1754 </p> 1755 1756 <h3>Broadcom Wi-Fi </h3> 1757 <p> 1758 Broadcom Wi-Fi 1759 1760 . 1761 . 1762 </p> 1763 1764 <table> 1765 <col width="19%"> 1766 <col width="20%"> 1767 <col width="10%"> 1768 <col width="23%"> 1769 <col width="17%"> 1770 <tr> 1771 <th>CVE</th> 1772 <th></th> 1773 <th></th> 1774 <th> Nexus </th> 1775 <th> </th> 1776 </tr> 1777 <tr> 1778 <td>CVE-2016-3869</td> 1779 <td>A-29009982*<br> 1780 B-RB#96070</td> 1781 <td></td> 1782 <td>Nexus 5, Nexus 6, Nexus 6P, Nexus 9, Nexus Player, Pixel C</td> 1783 <td>2016 5 27</td> 1784 </tr> 1785 </table> 1786 <p> 1787 * . 1788 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1789 . 1790 </p> 1791 1792 <h3> eCryptfs </h3> 1793 <p> 1794 eCryptfs 1795 1796 . 1797 . 1798 </p> 1799 1800 <table> 1801 <col width="17%"> 1802 <col width="22%"> 1803 <col width="10%"> 1804 <col width="23%"> 1805 <col width="17%"> 1806 <tr> 1807 <th>CVE</th> 1808 <th></th> 1809 <th></th> 1810 <th> Nexus </th> 1811 <th> </th> 1812 </tr> 1813 <tr> 1814 <td>CVE-2016-1583</td> 1815 <td>A-29444228<br> 1816 <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=e54ad7f1ee263ffa5a2de9c609d58dfa27b21cd9"> </a> 1817 [<a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=2f36db71009304b3f0b95afacd8eba1f9f046b87">2</a>] 1818 [<a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=29d6455178a09e1dc340380c582b13356227e8df">3</a>]</td> 1819 <td></td> 1820 <td>Pixel C</td> 1821 <td>2016 6 1</td> 1822 </tr> 1823 </table> 1824 <h3>NVIDIA </h3> 1825 <p> 1826 NVIDIA 1827 1828 . 1829 . 1830 </p> 1831 1832 <table> 1833 <col width="19%"> 1834 <col width="20%"> 1835 <col width="10%"> 1836 <col width="23%"> 1837 <col width="17%"> 1838 <tr> 1839 <th>CVE</th> 1840 <th></th> 1841 <th></th> 1842 <th> Nexus </th> 1843 <th> </th> 1844 </tr> 1845 <tr> 1846 <td>CVE-2016-3873</td> 1847 <td>A-29518457*<br> 1848 N-CVE-2016-3873</td> 1849 <td></td> 1850 <td>Nexus 9</td> 1851 <td>2016 6 20</td> 1852 </tr> 1853 </table> 1854 <p> 1855 * . 1856 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1857 . 1858 </p> 1859 1860 <h3>Qualcomm Wi-Fi </h3> 1861 <p> 1862 Qualcomm Wi-Fi 1863 1864 . 1865 . 1866 </p> 1867 1868 <table> 1869 <col width="19%"> 1870 <col width="20%"> 1871 <col width="10%"> 1872 <col width="23%"> 1873 <col width="17%"> 1874 <tr> 1875 <th>CVE</th> 1876 <th></th> 1877 <th></th> 1878 <th> Nexus </th> 1879 <th> </th> 1880 </tr> 1881 <tr> 1882 <td>CVE-2016-3874</td> 1883 <td>A-29944562<br> 1884 <a href="https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-2.0/commit/?id=50e8f265b3f7926aeb4e49c33f7301ace89faa77">QC-CR#997797</a> 1885 [<a href="https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-2.0/commit/?id=a3974e61c960aadcc147c3c5704a67309171642d">2</a>]</td> 1886 <td></td> 1887 <td>Nexus 5X</td> 1888 <td>2016 7 1</td> 1889 </tr> 1890 </table> 1891 <h3> (DoS) </h3> 1892 <p> 1893 1894 . 1895 . 1896 </p> 1897 1898 <table> 1899 <col width="19%"> 1900 <col width="18%"> 1901 <col width="10%"> 1902 <col width="25%"> 1903 <col width="17%"> 1904 <tr> 1905 <th>CVE</th> 1906 <th></th> 1907 <th></th> 1908 <th> Nexus </th> 1909 <th> </th> 1910 </tr> 1911 <tr> 1912 <td>CVE-2015-1465</td> 1913 <td>A-29506807 1914 <p> 1915 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=df4d92549f23e1c037e83323aff58a21b3de7fe0"> 1916 </a></p></td> 1917 <td></td> 1918 <td>Nexus 5, Nexus 6, Nexus 9, Nexus Player, Pixel C, Android One</td> 1919 <td>2015 2 3</td> 1920 </tr> 1921 <tr> 1922 <td>CVE-2015-5364</td> 1923 <td>A-29507402 1924 <p> 1925 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=beb39db59d14990e401e235faf66a6b9b31240b0"> 1926 </a></p></td> 1927 <td></td> 1928 <td>Nexus 5, Nexus 5X, Nexus 6, Nexus 6P, Nexus 9, Nexus Player, Pixel C, 1929 Android One</td> 1930 <td>2015 6 30</td> 1931 </tr> 1932 </table> 1933 <h3> ext4 (DoS) </h3> 1934 <p> 1935 ext4 , . 1936 . 1937 </p> 1938 1939 <table> 1940 <col width="19%"> 1941 <col width="16%"> 1942 <col width="10%"> 1943 <col width="27%"> 1944 <col width="17%"> 1945 <tr> 1946 <th>CVE</th> 1947 <th></th> 1948 <th></th> 1949 <th> Nexus </th> 1950 <th> </th> 1951 </tr> 1952 <tr> 1953 <td>CVE-2015-8839</td> 1954 <td>A-28760453*</td> 1955 <td></td> 1956 <td>Nexus 5X, Nexus 6, Nexus 6P, Nexus 9, Nexus Player, Pixel C, Android One</td> 1957 <td>2016 4 4</td> 1958 </tr> 1959 </table> 1960 <p> 1961 * . 1962 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1963 . 1964 </p> 1965 1966 <h3>Qualcomm SPMI </h3> 1967 <p> 1968 Qualcomm SPMI 1969 . 1970 . 1971 </p> 1972 1973 <table> 1974 <col width="19%"> 1975 <col width="20%"> 1976 <col width="10%"> 1977 <col width="23%"> 1978 <col width="17%"> 1979 <tr> 1980 <th>CVE</th> 1981 <th></th> 1982 <th></th> 1983 <th> Nexus </th> 1984 <th> </th> 1985 </tr> 1986 <tr> 1987 <td>CVE-2016-3892</td> 1988 <td>A-28760543*<br> 1989 QC-CR#1024197</td> 1990 <td></td> 1991 <td>Nexus 5, Nexus 5X, Nexus 6, Nexus 6P</td> 1992 <td>2016 5 13</td> 1993 </tr> 1994 </table> 1995 <p> 1996 * . 1997 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1998 . 1999 </p> 2000 2001 <h3>Qualcomm </h3> 2002 <p> 2003 Qualcomm 2004 . 2005 . 2006 </p> 2007 2008 <table> 2009 <col width="19%"> 2010 <col width="20%"> 2011 <col width="10%"> 2012 <col width="23%"> 2013 <col width="17%"> 2014 <tr> 2015 <th>CVE</th> 2016 <th></th> 2017 <th></th> 2018 <th> Nexus </th> 2019 <th> </th> 2020 </tr> 2021 <tr> 2022 <td>CVE-2016-3893</td> 2023 <td>A-29512527<br> 2024 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?id=a7a6ddc91cce7ad5ad55c9709b24bfc80f5ac873">QC-CR#856400</a></td> 2025 <td></td> 2026 <td>Nexus 6P</td> 2027 <td>2016 6 20</td> 2028 </tr> 2029 </table> 2030 <h3>Qualcomm DMA </h3> 2031 <p> 2032 Qualcomm DMA 2033 . . 2034 </p> 2035 2036 <table> 2037 <col width="19%"> 2038 <col width="20%"> 2039 <col width="10%"> 2040 <col width="23%"> 2041 <col width="17%"> 2042 <tr> 2043 <th>CVE</th> 2044 <th></th> 2045 <th></th> 2046 <th> Nexus </th> 2047 <th> </th> 2048 </tr> 2049 <tr> 2050 <td>CVE-2016-3894</td> 2051 <td>A-29618014*<br> 2052 QC-CR#1042033</td> 2053 <td></td> 2054 <td>Nexus 6</td> 2055 <td>2016 6 23</td> 2056 </tr> 2057 </table> 2058 <p> 2059 * . 2060 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 2061 . 2062 </p> 2063 2064 <h3> </h3> 2065 <p> 2066 2067 . . 2068 </p> 2069 2070 <table> 2071 <col width="19%"> 2072 <col width="20%"> 2073 <col width="10%"> 2074 <col width="23%"> 2075 <col width="17%"> 2076 <tr> 2077 <th>CVE</th> 2078 <th></th> 2079 <th></th> 2080 <th> Nexus </th> 2081 <th> </th> 2082 </tr> 2083 <tr> 2084 <td>CVE-2016-4998</td> 2085 <td>A-29637687<br> 2086 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=bdf533de6968e9686df777dc178486f600c6e617"> </a> 2087 [<a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=6e94e0cfb0887e4013b3b930fa6ab1fe6bb6ba91">2</a>]</td> 2088 <td></td> 2089 <td>Nexus 5, Nexus 5X, Nexus 6, Nexus 6P, Nexus 9, Nexus Player, Pixel C, 2090 Android One</td> 2091 <td>2016 6 24</td> 2092 </tr> 2093 </table> 2094 <h3> (DoS) </h3> 2095 <p> 2096 2097 Wi-Fi . Wi-Fi 2098 . 2099 </p> 2100 2101 <table> 2102 <col width="19%"> 2103 <col width="20%"> 2104 <col width="10%"> 2105 <col width="23%"> 2106 <col width="17%"> 2107 <tr> 2108 <th>CVE</th> 2109 <th></th> 2110 <th></th> 2111 <th> Nexus </th> 2112 <th> </th> 2113 </tr> 2114 <tr> 2115 <td>CVE-2015-2922</td> 2116 <td>A-29409847 2117 <p> 2118 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=6fd99094de2b83d1d4c8457f2c83483b2828e75a"> 2119 </a></p></td> 2120 <td></td> 2121 <td>Nexus 5, Nexus 5X, Nexus 6, Nexus 6P, Nexus 9, Nexus Player, Pixel C, 2122 Android One</td> 2123 <td>2015 4 4</td> 2124 </tr> 2125 </table> 2126 <h3>Qualcomm </h3> 2127 <p> 2128 , , , , 2129 Qualcomm 2130 . 2131 </p> 2132 2133 <table> 2134 <col width="19%"> 2135 <col width="20%"> 2136 <col width="10%"> 2137 <col width="23%"> 2138 <col width="17%"> 2139 <tr> 2140 <th>CVE</th> 2141 <th></th> 2142 <th></th> 2143 <th> Nexus </th> 2144 <th> </th> 2145 </tr> 2146 <tr> 2147 <td>CVE-2016-2469</td> 2148 <td><a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=7eb824e8e1ebbdbfad896b090a9f048ca6e63c9e">QC-CR#997025</a></td> 2149 <td></td> 2150 <td></td> 2151 <td>2016 6</td> 2152 </tr> 2153 <tr> 2154 <td>CVE-2016-2469</td> 2155 <td><a href="https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?id=e7369163162e7773bc887f7a264d6aa46cfcc665">QC-CR#997015</a></td> 2156 <td></td> 2157 <td></td> 2158 <td>2016 6</td> 2159 </tr> 2160 </table> 2161 <h2 id="2016-09-06-details">2016-09-06 </h2> 2162 <p> 2163 <a href="#2016-09-06-summary">2016-09-06 2164 </a> 2165 . , 2166 CVE, , , Nexus , 2167 AOSP ( ), . 2168 AOSP ID 2169 . 2170 ID . 2171 </p> 2172 2173 <h3> </h3> 2174 <p> 2175 2176 2177 . 2178 , 2179 . 2180 </p> 2181 2182 <table> 2183 <col width="19%"> 2184 <col width="20%"> 2185 <col width="10%"> 2186 <col width="23%"> 2187 <col width="17%"> 2188 <tr> 2189 <th>CVE</th> 2190 <th></th> 2191 <th></th> 2192 <th> Nexus </th> 2193 <th> </th> 2194 </tr> 2195 <tr> 2196 <td>CVE-2016-5340</td> 2197 <td>A-30652312<br> 2198 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?id=06e51489061e5473b4e2035c79dcf7c27a6f75a6">QC-CR#1008948</a></td> 2199 <td></td> 2200 <td>Nexus 5, Nexus 5X, Nexus 6, Nexus 6P, Android One</td> 2201 <td>2016 7 26</td> 2202 </tr> 2203 </table> 2204 <h3>Qualcomm </h3> 2205 <p> 2206 Qualcomm 2207 2208 . 2209 . 2210 </p> 2211 2212 <table> 2213 <col width="19%"> 2214 <col width="20%"> 2215 <col width="10%"> 2216 <col width="23%"> 2217 <col width="17%"> 2218 <tr> 2219 <th>CVE</th> 2220 <th></th> 2221 <th></th> 2222 <th> Nexus </th> 2223 <th> </th> 2224 </tr> 2225 <tr> 2226 <td>CVE-2016-2059</td> 2227 <td>A-27045580<br> 2228 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=9e8bdd63f7011dff5523ea435433834b3702398d">QC-CR#974577</a></td> 2229 <td></td> 2230 <td>Nexus 5, Nexus 5X, Nexus 6, Nexus 6P, Android One</td> 2231 <td>2016 2 4</td> 2232 </tr> 2233 </table> 2234 <h2 id="common-questions-and-answers"> </h2> 2235 <p> 2236 . 2237 </p> 2238 2239 <p> 2240 <strong>1. ? 2241 </strong> 2242 </p> 2243 2244 <p> 2245 2016-09-01 2016-09-01 2246 . 2016-09-05 2247 2016-09-05 . 2248 2016-09-06 2016-09-06 2249 . 2250 <a href="https://support.google.com/nexus/answer/4457705"></a> . 2251 . 2252 [ro.build.version.security_patch]:[2016-09-01], 2253 [ro.build.version.security_patch]:[2016-09-05] 2254 [ro.build.version.security_patch]:[2016-09-06] 2255 </p> 2256 2257 <p> 2258 <strong>2. ?</strong> 2259 </p> 2260 2261 <p> 2262 Android Android 2263 2264 . Android 2265 . 2266 </p> 2267 2268 <p> 2269 2016 9 6 2270 . 2271 2272 . 2273 </p> 2274 2275 <p> 2276 2016 9 5 2277 2016 9 1 2278 . 2016 9 5 2279 2016 9 5 2280 . 2281 </p> 2282 2283 <p> 2284 2016 9 1 2285 2286 . 2016 9 1 2287 2016 9 5 2016 9 6 2288 . 2289 </p> 2290 2291 <p> 2292 3<strong>. Nexus ?</strong> 2293 </p> 2294 2295 <p> 2296 <a href="#2016-09-01-details">2016-09-01</a>, 2297 <a href="#2016-09-05-details">2016-09-05</a>, 2298 <a href="#2016-09-06-details">2016-09-06</a> 2299 Nexus <em> Nexus </em> . . 2300 </p> 2301 2302 <ul> 2303 <li><strong> Nexus </strong>: Nexus 2304 <em> Nexus </em> ' Nexus' . 2305 ' Nexus' 2306 <a href="https://support.google.com/nexus/answer/4457705#nexus_devices"> </a> 2307 . Nexus 5, Nexus 5X, Nexus 6, Nexus 6P, Nexus 7(2013), Nexus 9, 2308 Android One, Nexus Player, Pixel C.</li> 2309 <li><strong> Nexus </strong>: Nexus 2310 , Nexus 2311 <em> Nexus .</em></li> 2312 <li><strong>Nexus </strong>: Nexus 2313 <em> Nexus </em> '' .</li> 2314 </ul> 2315 <p> 2316 <strong>4. ?</strong> 2317 </p> 2318 2319 <p> 2320 <em></em> 2321 . 2322 . 2323 </p> 2324 2325 <table> 2326 <tr> 2327 <th></th> 2328 <th> </th> 2329 </tr> 2330 <tr> 2331 <td>A-</td> 2332 <td>Android ID</td> 2333 </tr> 2334 <tr> 2335 <td>QC-</td> 2336 <td>Qualcomm </td> 2337 </tr> 2338 <tr> 2339 <td>M-</td> 2340 <td>MediaTek </td> 2341 </tr> 2342 <tr> 2343 <td>N-</td> 2344 <td>NVIDIA </td> 2345 </tr> 2346 <tr> 2347 <td>B-</td> 2348 <td>Broadcom </td> 2349 </tr> 2350 </table> 2351 2352 <h2 id="revisions"> </h2> 2353 <ul> 2354 <li>2016 9 6: </li> 2355 <li>2016 9 7: AOSP </li> 2356 <li>2016 9 12: CVE-2016-3861 2357 CVE-2016-3877 </li> 2358 </ul> 2359 2360 </body> 2361 </html> 2362
