1 <html devsite> 2 <head> 3 <title>Android 2016 10i</title> 4 <meta name="project_path" value="/_project.yaml" /> 5 <meta name="book_path" value="/_book.yaml" /> 6 </head> 7 <body> 8 <!-- 9 Copyright 2017 The Android Open Source Project 10 11 Licensed under the Apache License, Version 2.0 (the "License"); 12 you may not use this file except in compliance with the License. 13 You may obtain a copy of the License at 14 15 http://www.apache.org/licenses/LICENSE-2.0 16 17 Unless required by applicable law or agreed to in writing, software 18 distributed under the License is distributed on an "AS IS" BASIS, 19 WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 20 See the License for the specific language governing permissions and 21 limitations under the License. 22 --> 23 24 25 <p><em>: 2016 10 3 | : 2016 10 4</em> 26 </p> 27 <p> 28 Android Android 29 . (OTA) 30 Nexus . 31 Nexus <a href="https://developers.google.com/android/nexus/images">Google </a> 32 . 2016 10 5 33 . 34 <a href="https://support.google.com/nexus/answer/4457705#nexus_devices"></a> . Nexus 2016 10 5 35 OTA . 36 </p> 37 <p> 38 2016 9 6 39 . , 40 Android (AOSP) . 41 AOSP . 42 </p> 43 <p> 44 , 45 46 . 47 </p> 48 <p> 49 50 . <a href="https://developer.android.com/training/safetynet/index.html">SafetyNet</a> Android 51 <a href="/security/enhancements/index.html">Android </a> 52 53 <a href="#mitigations">Android Google </a> . 54 </p> 55 <p> 56 . 57 </p> 58 <h2 id="announcements"></h2> 59 <ul> 60 <li> Android Android 61 62 . <a href="#common-questions-and-answers"> 63 </a> 64 . 65 <ul> 66 <li><strong>2016-10-01</strong>: . 67 2016-10-01 68 .</li> 69 <li><strong>2016-10-05</strong>: . 70 2016-10-01 2016-10-05 71 .</li> 72 </ul> 73 </li> 74 <li> Nexus 2016 10 5 OTA 75 .</li> 76 </ul> 77 <h2 id="security-vulnerability-summary"> </h2> 78 <p> 79 , ID(CVE), 80 Nexus 81 . <a href="/security/overview/updates-resources.html#severity"> </a> 82 83 84 . 85 </p> 86 <h3 id="2016-10-01-security-patch-level-vulnerability-summary">2016-10-01 </h3> 87 <p> 88 2016 10 1 . 89 </p> 90 <table> 91 <col width="55%"> 92 <col width="20%"> 93 <col width="13%"> 94 <col width="12%"> 95 <tr> 96 <th></th> 97 <th>CVE</th> 98 <th></th> 99 <th>Nexus </th> 100 </tr> 101 <tr> 102 <td> </td> 103 <td>CVE-2016-3900</td> 104 <td></td> 105 <td></td> 106 </tr> 107 <tr> 108 <td> </td> 109 <td>CVE-2016-3908</td> 110 <td></td> 111 <td></td> 112 </tr> 113 <tr> 114 <td> </td> 115 <td>CVE-2016-3909, CVE-2016-3910, CVE-2016-3913</td> 116 <td></td> 117 <td></td> 118 </tr> 119 <tr> 120 <td>Zygote </td> 121 <td>CVE-2016-3911</td> 122 <td></td> 123 <td></td> 124 </tr> 125 <tr> 126 <td> API </td> 127 <td>CVE-2016-3912</td> 128 <td></td> 129 <td></td> 130 </tr> 131 <tr> 132 <td> </td> 133 <td>CVE-2016-3914</td> 134 <td></td> 135 <td></td> 136 </tr> 137 <tr> 138 <td> </td> 139 <td>CVE-2016-3915, CVE-2016-3916</td> 140 <td></td> 141 <td></td> 142 </tr> 143 <tr> 144 <td> </td> 145 <td>CVE-2016-3917</td> 146 <td></td> 147 <td></td> 148 </tr> 149 <tr> 150 <td>AOSP </td> 151 <td>CVE-2016-3918</td> 152 <td></td> 153 <td></td> 154 </tr> 155 <tr> 156 <td>Wi-Fi (DoS) </td> 157 <td>CVE-2016-3882</td> 158 <td></td> 159 <td></td> 160 </tr> 161 <tr> 162 <td>GPS (DoS) </td> 163 <td>CVE-2016-5348</td> 164 <td></td> 165 <td></td> 166 </tr> 167 <tr> 168 <td> (DoS) </td> 169 <td>CVE-2016-3920</td> 170 <td></td> 171 <td></td> 172 </tr> 173 <tr> 174 <td> </td> 175 <td>CVE-2016-3921</td> 176 <td></td> 177 <td></td> 178 </tr> 179 <tr> 180 <td> </td> 181 <td>CVE-2016-3922</td> 182 <td></td> 183 <td></td> 184 </tr> 185 <tr> 186 <td> </td> 187 <td>CVE-2016-3923</td> 188 <td></td> 189 <td></td> 190 </tr> 191 <tr> 192 <td> </td> 193 <td>CVE-2016-3924</td> 194 <td></td> 195 <td></td> 196 </tr> 197 <tr> 198 <td>Wi-Fi (DoS) </td> 199 <td>CVE-2016-3925</td> 200 <td></td> 201 <td></td> 202 </tr> 203 </table> 204 <h3 id="2016-10-05-security-patch-level-vulnerability-summary">2016-10-05 </h3> 205 <p> 206 2016-10-01 2016 10 5 207 . 208 </p> 209 <table> 210 <col width="55%"> 211 <col width="20%"> 212 <col width="13%"> 213 <col width="12%"> 214 <tr> 215 <th></th> 216 <th>CVE</th> 217 <th></th> 218 <th>Nexus </th> 219 </tr> 220 <tr> 221 <td> ASN.1 </td> 222 <td>CVE-2016-0758</td> 223 <td></td> 224 <td></td> 225 </tr> 226 <tr> 227 <td> </td> 228 <td>CVE-2016-7117</td> 229 <td></td> 230 <td></td> 231 </tr> 232 <tr> 233 <td>MediaTek </td> 234 <td>CVE-2016-3928</td> 235 <td></td> 236 <td></td> 237 </tr> 238 <tr> 239 <td> </td> 240 <td>CVE-2016-5340</td> 241 <td></td> 242 <td></td> 243 </tr> 244 <tr> 245 <td>Qualcomm </td> 246 <td>CVE-2016-3926, CVE-2016-3927, CVE-2016-3929</td> 247 <td></td> 248 <td></td> 249 </tr> 250 251 <tr> 252 <td>Qualcomm </td> 253 <td>CVE-2016-2059</td> 254 <td></td> 255 <td></td> 256 </tr> 257 <tr> 258 <td>NVIDIA MMC </td> 259 <td>CVE-2016-3930</td> 260 <td></td> 261 <td></td> 262 </tr> 263 <tr> 264 <td>Qualcomm Secure Execution Environment 265 Communicator </td> 266 <td>CVE-2016-3931</td> 267 <td></td> 268 <td></td> 269 </tr> 270 <tr> 271 <td> </td> 272 <td>CVE-2016-3932, CVE-2016-3933</td> 273 <td></td> 274 <td></td> 275 </tr> 276 <tr> 277 <td>Qualcomm </td> 278 <td>CVE-2016-3903, CVE-2016-3934</td> 279 <td></td> 280 <td></td> 281 </tr> 282 <tr> 283 <td>Qualcomm </td> 284 <td>CVE-2015-8951</td> 285 <td></td> 286 <td></td> 287 </tr> 288 <tr> 289 <td>Qualcomm </td> 290 <td>CVE-2016-3901, CVE-2016-3935</td> 291 <td></td> 292 <td></td> 293 </tr> 294 <tr> 295 <td>MediaTek </td> 296 <td>CVE-2016-3936, CVE-2016-3937</td> 297 <td></td> 298 <td></td> 299 </tr> 300 <tr> 301 <td>Qualcomm </td> 302 <td>CVE-2016-3938, CVE-2016-3939</td> 303 <td></td> 304 <td></td> 305 </tr> 306 <tr> 307 <td>Synaptics </td> 308 <td>CVE-2016-3940, CVE-2016-6672</td> 309 <td></td> 310 <td></td> 311 </tr> 312 <tr> 313 <td>NVIDIA </td> 314 <td>CVE-2016-6673</td> 315 <td></td> 316 <td></td> 317 </tr> 318 <tr> 319 <td> </td> 320 <td>CVE-2016-6674</td> 321 <td></td> 322 <td></td> 323 </tr> 324 <tr> 325 <td>Qualcomm Wi-Fi </td> 326 <td>CVE-2016-3905, CVE-2016-6675, CVE-2016-6676, CVE-2016-5342</td> 327 <td></td> 328 <td></td> 329 </tr> 330 <tr> 331 <td> </td> 332 <td>CVE-2015-8955</td> 333 <td></td> 334 <td></td> 335 </tr> 336 <tr> 337 <td> ION </td> 338 <td>CVE-2015-8950</td> 339 <td></td> 340 <td></td> 341 </tr> 342 <tr> 343 <td>NVIDIA GPU </td> 344 <td>CVE-2016-6677</td> 345 <td></td> 346 <td></td> 347 </tr> 348 <tr> 349 <td>Qualcomm </td> 350 <td>CVE-2015-0572</td> 351 <td></td> 352 <td></td> 353 </tr> 354 <tr> 355 <td>Qualcomm </td> 356 <td>CVE-2016-3860</td> 357 <td></td> 358 <td></td> 359 </tr> 360 <tr> 361 <td>Motorola USBNet </td> 362 <td>CVE-2016-6678</td> 363 <td></td> 364 <td></td> 365 </tr> 366 <tr> 367 <td>Qualcomm </td> 368 <td>CVE-2016-6679, CVE-2016-3902, CVE-2016-6680, CVE-2016-6681, CVE-2016-6682</td> 369 <td></td> 370 <td></td> 371 </tr> 372 <tr> 373 <td> </td> 374 <td>CVE-2016-6683, CVE-2016-6684, CVE-2015-8956, CVE-2016-6685</td> 375 <td></td> 376 <td></td> 377 </tr> 378 <tr> 379 <td>NVIDIA </td> 380 <td>CVE-2016-6686, CVE-2016-6687, CVE-2016-6688</td> 381 <td></td> 382 <td></td> 383 </tr> 384 <tr> 385 <td> </td> 386 <td>CVE-2016-6689</td> 387 <td></td> 388 <td></td> 389 </tr> 390 <tr> 391 <td> (DoS) </td> 392 <td>CVE-2016-5696</td> 393 <td></td> 394 <td></td> 395 </tr> 396 <tr> 397 <td> (DoS) </td> 398 <td>CVE-2016-6690</td> 399 <td></td> 400 <td></td> 401 </tr> 402 <tr> 403 <td>Qualcomm </td> 404 <td>CVE-2016-6691, CVE-2016-6692, CVE-2016-6693, CVE-2016-6694, 405 CVE-2016-6695, CVE-2016-6696, CVE-2016-5344, CVE-2016-5343</td> 406 <td></td> 407 <td></td> 408 </tr> 409 </table> 410 411 <h2 id="mitigations">Android Google </h2> 412 <p> 413 SafetyNet <a href="/security/enhancements/index.html">Android </a> 414 . 415 Android 416 . 417 </p> 418 <ul> 419 <li>Android Android 420 . Android 421 .</li> 422 <li>Android <a href="http://static.googleusercontent.com/media/source.android.com/en//security/reports/Google_Android_Security_PHA_classifications.pdf"> </a> 423 <a href="http://static.googleusercontent.com/media/source.android.com/en//security/reports/Google_Android_Security_2015_Report_Final.pdf"> SafetyNet</a> 424 . <a href="http://www.android.com/gms">Google </a> 425 426 Google Play . Google 427 Play 428 429 . 430 431 . 432 .</li> 433 <li> Google 434 .</li> 435 </ul> 436 <h2 id="acknowledgements"></h2> 437 <p> 438 . 439 </p> 440 <ul> 441 <li>Andre Teixeira Rizzo: CVE-2016-3882</li> 442 <li>Andrea Biondo: CVE-2016-3921</li> 443 <li>Copperhead Security Daniel Micay: CVE-2016-3922</li> 444 <li>Google <a href="https://github.com/google/syzkaller">Dmitry Vyukov</a>: 445 CVE-2016-7117</li> 446 <li>dosomder: CVE-2016-3931</li> 447 <li>Trend Micro Ecular Xu(): CVE-2016-3920</li> 448 <li>Qihoo 360 449 Technology Co. Ltd. IceSword Lab 450 Gengjia Chen(<a href="https://twitter.com/chengjia4574">@chengjia4574</a>), <a href="http://weibo.com/jfpan">pjf</a>: CVE-2016-6690, CVE-2016-3901, CVE-2016-6672, 451 CVE-2016-3940, CVE-2016-3935</li> 452 <li>UC Riverside <a href="mailto:hzhan033 (a] ucr.edu">Hang Zhang</a>, 453 <a href="mailto:dshe002 (a] ucr.edu">Dongdong She</a>, 454 <a href="mailto:zhiyunq (a] cs.ucr.edu">Zhiyun Qian</a>: CVE-2015-8950</li> 455 <li>Qihoo 360 Technology Co. Ltd. Alpha Hao Chen: CVE-2016-3860</li> 456 <li>Google Project Zero Jann Horn: CVE-2016-3900, CVE-2016-3885</li> 457 <li><a href="http://keybase.io/jasonrogena">Jason Rogena</a>: CVE-2016-3917</li> 458 <li>Qihoo 360 IceSword Lab Jianqiang Zhao(<a href="https://twitter.com/jianqiangzhao">@jianqiangzhao</a>), 459 <a href="http://weibo.com/jfpan">pjf</a>: CVE-2016-6688, 460 CVE-2016-6677, CVE-2016-6673, CVE-2016-6687, CVE-2016-6686, CVE-2016-6681, 461 CVE-2016-6682, CVE-2016-3930</li> 462 <li>Joshua Drake(<a href="https://twitter.com/jduck">@jduck</a>): 463 CVE-2016-3920</li> 464 <li>Google Maciej Szawowski: CVE-2016-3905</li> 465 <li>Google Project Zero Mark Brand: CVE-2016-6689</li> 466 <li><a href="https://github.com/michalbednarski">Micha Bednarski</a>: 467 CVE-2016-3914, CVE-2016-6674, CVE-2016-3911, CVE-2016-3912</li> 468 <li><a href="http://c0reteam.org">C0RE </a> Mingjian Zhou(<a href="https://twitter.com/Mingjian_Zhou">@Mingjian_Zhou</a>), 469 Chiachih Wu(<a href="https://twitter.com/chiachih_wu">@chiachih_wu</a>), Xuxian 470 Jiang: CVE-2016-3933, CVE-2016-3932</li> 471 <li>Nightwatch Cybersecurity Research 472 (<a href="https://twitter.com/nightwatchcyber">@nightwatchcyber</a>): CVE-2016-5348</li> 473 <li>IBM Security X-Force Roee Hay: CVE-2016-6678</li> 474 <li>Google Samuel Tan: CVE-2016-3925</li> 475 <li><a href="mailto:sbauer (a] plzdonthack.me">Scott Bauer</a>(<a href="https://twitter.com/ScottyBauer1">@ScottyBauer1</a>): 476 CVE-2016-3936, CVE-2016-3928, CVE-2016-3902, CVE-2016-3937, CVE-2016-6696</li> 477 <li>Trend Micro Mobile Threat 478 Seven Shen(<a href="https://twitter.com/lingtongshen">@lingtongshen</a>): CVE-2016-6685, CVE-2016-6683, 479 CVE-2016-6680, CVE-2016-6679, CVE-2016-3903, CVE-2016-6693, CVE-2016-6694, 480 CVE-2016-6695</li> 481 <li><a href="http://c0reteam.org">C0RE </a> <a href="mailto:vancouverdou (a] gmail.com">Wenke Dou</a>, Mingjian Zhou 482 (<a href="https://twitter.com/Mingjian_Zhou">@Mingjian_Zhou</a>), Chiachih Wu 483 (<a href="https://twitter.com/chiachih_wu">@chiachih_wu</a>), Xuxian Jiang 484 : CVE-2016-3909</li> 485 <li>Qihoo 360 Technology Co. Ltd. Alpha 486 Wenlin Yang, Guang Gong ()(<a href="https://twitter.com/oldfresher">@oldfresher</a>): CVE-2016-3918</li> 487 <li><a href="http://blog.trendmicro.com/trendlabs-security-intelligence/author/wishwu/">Trend 488 Micro Inc.</a> 489 Wish Wu(<a href="http://weibo.com/wishlinux"></a>) 490 (<a href="https://twitter.com/wish_wu">@wish_wu)</a>: CVE-2016-3924, CVE-2016-3915, CVE-2016-3916, CVE-2016-3910</li> 491 <li>Huawei, SCC, Eagleye Yong Shi: CVE-2016-3938</li> 492 <li><a href="http://www.cmcm.com">Cheetah Mobile</a> Security Research Lab 493 Zhanpeng Zhao()(<a href="https://twitter.com/0xr0ot">@0xr0ot</a>): 494 CVE-2016-3908</li> 495 </ul> 496 497 <h2 id="2016-10-01-security-patch-level-vulnerability-details">2016-10-01 </h2> 498 <p> 499 <a href="#2016-10-01-security-patch-level-vulnerability-summary">2016-10-01 500 </a> 501 . , 502 CVE, , , Nexus , 503 AOSP ( ), . 504 AOSP ID 505 . 506 ID . 507 </p> 508 <h3 id="eopv-in-servicemanager"> </h3> 509 <p> 510 system_server . . 511 </p> 512 <table> 513 <col width="18%"> 514 <col width="16%"> 515 <col width="10%"> 516 <col width="19%"> 517 <col width="19%"> 518 <col width="17%"> 519 <tr> 520 <th>CVE</th> 521 <th></th> 522 <th></th> 523 <th> Nexus </th> 524 <th> AOSP </th> 525 <th> </th> 526 </tr> 527 <tr> 528 <td>CVE-2016-3900</td> 529 <td><a href="https://android.googlesource.com/platform/frameworks/native/+/d3c6ce463ac91ecbeb2128beb475d31d3ca6ef42">A-29431260</a> 530 [<a href="https://android.googlesource.com/platform/frameworks/native/+/047eec456943dc082e33220d28abb7df4e089f69">2</a>] 531 </td> 532 <td></td> 533 <td> Nexus</td> 534 <td>5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 535 <td>2016 6 15</td> 536 </tr> 537 </table> 538 <h3 id="eopv-in-lock-settings-service"> </h3> 539 <p> 540 PIN . 541 . 542 </p> 543 <table> 544 <col width="18%"> 545 <col width="16%"> 546 <col width="10%"> 547 <col width="19%"> 548 <col width="19%"> 549 <col width="17%"> 550 <tr> 551 <th>CVE</th> 552 <th></th> 553 <th></th> 554 <th> Nexus </th> 555 <th> AOSP </th> 556 <th> </th> 557 </tr> 558 <tr> 559 <td>CVE-2016-3908</td> 560 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/96daf7d4893f614714761af2d53dfb93214a32e4">A-30003944</a> 561 </td> 562 <td></td> 563 <td> Nexus</td> 564 <td>6.0, 6.0.1, 7.0</td> 565 <td>2016 7 6</td> 566 </tr> 567 </table> 568 <h3 id="eopv-in-mediaserver"> </h3> 569 <p> 570 571 572 . 573 574 . 575 </p> 576 <table> 577 <col width="18%"> 578 <col width="16%"> 579 <col width="10%"> 580 <col width="19%"> 581 <col width="19%"> 582 <col width="17%"> 583 <tr> 584 <th>CVE</th> 585 <th></th> 586 <th></th> 587 <th> Nexus </th> 588 <th> AOSP </th> 589 <th> </th> 590 </tr> 591 <tr> 592 <td>CVE-2016-3909</td> 593 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/d4271b792bdad85a80e2b83ab34c4b30b74f53ec">A-30033990</a> 594 [<a href="https://android.googlesource.com/platform/frameworks/av/+/c48ef757cc50906e8726a3bebc3b60716292cdba">2</a>] 595 </td> 596 <td></td> 597 <td> Nexus</td> 598 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 599 <td>2016 7 8</td> 600 </tr> 601 <tr> 602 <td>CVE-2016-3910</td> 603 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/035cb12f392860113dce96116a5150e2fde6f0cc">A-30148546</a> 604 </td> 605 <td></td> 606 <td> Nexus</td> 607 <td>5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 608 <td>2016 7 13</td> 609 </tr> 610 <tr> 611 <td>CVE-2016-3913</td> 612 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/0c3b93c8c2027e74af642967eee5c142c8fd185d">A-30204103</a> 613 </td> 614 <td></td> 615 <td> Nexus</td> 616 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 617 <td>2016 7 18</td> 618 </tr> 619 </table> 620 <h3 id="eopv-in-zygote-process">Zygote </h3> 621 <p> 622 Zygote 623 624 . 625 626 . 627 </p> 628 <table> 629 <col width="18%"> 630 <col width="16%"> 631 <col width="10%"> 632 <col width="19%"> 633 <col width="19%"> 634 <col width="17%"> 635 <tr> 636 <th>CVE</th> 637 <th></th> 638 <th></th> 639 <th> Nexus </th> 640 <th> AOSP </th> 641 <th> </th> 642 </tr> 643 <tr> 644 <td>CVE-2016-3911</td> 645 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/2c7008421cb67f5d89f16911bdbe36f6c35311ad">A-30143607</a> 646 </td> 647 <td></td> 648 <td> Nexus</td> 649 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 650 <td>2016 7 12</td> 651 </tr> 652 </table> 653 <h3 id="eopv-in-framework-apis"> API </h3> 654 <p> 655 API 656 657 . 658 659 . 660 </p> 661 <table> 662 <col width="18%"> 663 <col width="16%"> 664 <col width="10%"> 665 <col width="19%"> 666 <col width="19%"> 667 <col width="17%"> 668 <tr> 669 <th>CVE</th> 670 <th></th> 671 <th></th> 672 <th> Nexus </th> 673 <th> AOSP </th> 674 <th> </th> 675 </tr> 676 <tr> 677 <td>CVE-2016-3912</td> 678 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/6c049120c2d749f0c0289d822ec7d0aa692f55c5">A-30202481</a> 679 </td> 680 <td></td> 681 <td> Nexus</td> 682 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 683 <td>2016 7 17</td> 684 </tr> 685 </table> 686 <h3 id="eopv-in-telephony"> </h3> 687 <p> 688 689 690 . 691 692 . 693 </p> 694 <table> 695 <col width="18%"> 696 <col width="16%"> 697 <col width="10%"> 698 <col width="19%"> 699 <col width="19%"> 700 <col width="17%"> 701 <tr> 702 <th>CVE</th> 703 <th></th> 704 <th></th> 705 <th> Nexus </th> 706 <th> AOSP </th> 707 <th> </th> 708 </tr> 709 <tr> 710 <td>CVE-2016-3914</td> 711 <td><a href="https://android.googlesource.com/platform/packages/providers/TelephonyProvider/+/3a3a5d145d380deef2d5b7c3150864cd04be397f">A-30481342</a> 712 </td> 713 <td></td> 714 <td> Nexus</td> 715 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 716 <td>2016 7 28</td> 717 </tr> 718 </table> 719 <h3 id="eopv-in-camera-service"> </h3> 720 <p> 721 722 723 . 724 725 . 726 </p> 727 <table> 728 <col width="18%"> 729 <col width="16%"> 730 <col width="10%"> 731 <col width="19%"> 732 <col width="19%"> 733 <col width="17%"> 734 <tr> 735 <th>CVE</th> 736 <th></th> 737 <th></th> 738 <th> Nexus </th> 739 <th> AOSP </th> 740 <th> </th> 741 </tr> 742 <tr> 743 <td>CVE-2016-3915</td> 744 <td><a href="https://android.googlesource.com/platform/system/media/+/e9e44f797742f52996ebf307740dad58c28fd9b5">A-30591838</a> 745 </td> 746 <td></td> 747 <td> Nexus</td> 748 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 749 <td>2016 8 1</td> 750 </tr> 751 <tr> 752 <td>CVE-2016-3916</td> 753 <td><a href="https://android.googlesource.com/platform/system/media/+/8e7a2b4d13bff03973dbad2bfb88a04296140433">A-30741779</a> 754 </td> 755 <td></td> 756 <td> Nexus</td> 757 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 758 <td>2016 8 2</td> 759 </tr> 760 </table> 761 <h3 id="eopv-in-fingerprint-login"> </h3> 762 <p> 763 764 . 765 . 766 </p> 767 <table> 768 <col width="18%"> 769 <col width="16%"> 770 <col width="10%"> 771 <col width="19%"> 772 <col width="19%"> 773 <col width="17%"> 774 <tr> 775 <th>CVE</th> 776 <th></th> 777 <th></th> 778 <th> Nexus </th> 779 <th> AOSP </th> 780 <th> </th> 781 </tr> 782 <tr> 783 <td>CVE-2016-3917</td> 784 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/f5334952131afa835dd3f08601fb3bced7b781cd">A-30744668</a> 785 </td> 786 <td></td> 787 <td> Nexus</td> 788 <td>6.0.1, 7.0</td> 789 <td>2016 8 5</td> 790 </tr> 791 </table> 792 <h3 id="information-disclosure-vulnerability-in-aosp-mail">AOSP </h3> 793 <p> 794 AOSP 795 796 . 797 . 798 </p> 799 <table> 800 <col width="18%"> 801 <col width="16%"> 802 <col width="10%"> 803 <col width="19%"> 804 <col width="19%"> 805 <col width="17%"> 806 <tr> 807 <th>CVE</th> 808 <th></th> 809 <th></th> 810 <th> Nexus </th> 811 <th> AOSP </th> 812 <th> </th> 813 </tr> 814 <tr> 815 <td>CVE-2016-3918</td> 816 <td><a href="https://android.googlesource.com/platform/packages/apps/Email/+/6b2b0bd7c771c698f11d7be89c2c57c8722c7454">A-30745403</a> 817 </td> 818 <td></td> 819 <td> Nexus</td> 820 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 821 <td>2016 8 5</td> 822 </tr> 823 </table> 824 <h3 id="dosv-in-wi-fi">Wi-Fi (DoS) </h3> 825 <p> 826 Wi-Fi 827 . 828 . 829 </p> 830 <table> 831 <col width="18%"> 832 <col width="16%"> 833 <col width="10%"> 834 <col width="19%"> 835 <col width="17%"> 836 <col width="19%"> 837 <tr> 838 <th>CVE</th> 839 <th></th> 840 <th></th> 841 <th> Nexus </th> 842 <th> AOSP </th> 843 <th> </th> 844 </tr> 845 <tr> 846 <td>CVE-2016-3882</td> 847 <td><a href="https://android.googlesource.com/platform/frameworks/opt/net/wifi/+/35a86eef3c0eef760f7e61c52a343327ba601630">A-29464811</a> 848 </td> 849 <td></td> 850 <td> Nexus</td> 851 <td>6.0, 6.0.1, 7.0</td> 852 <td>2016 6 17</td> 853 </tr> 854 </table> 855 <h3 id="dosv-in-gps">GPS (DoS) </h3> 856 <p> 857 GPS 858 . 859 . 860 </p> 861 <table> 862 <col width="18%"> 863 <col width="16%"> 864 <col width="10%"> 865 <col width="19%"> 866 <col width="19%"> 867 <col width="17%"> 868 <tr> 869 <th>CVE</th> 870 <th></th> 871 <th></th> 872 <th> Nexus </th> 873 <th> AOSP </th> 874 <th> </th> 875 </tr> 876 <tr> 877 <td>CVE-2016-5348</td> 878 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/218b813d5bc2d7d3952ea1861c38b4aa944ac59b">A-29555864</a> 879 </td> 880 <td></td> 881 <td> Nexus</td> 882 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 883 <td>2016 6 20</td> 884 </tr> 885 </table> 886 <h3 id="dosv-in-mediaserver"> (DoS) </h3> 887 <p> 888 889 . 890 . 891 </p> 892 <table> 893 <col width="18%"> 894 <col width="16%"> 895 <col width="10%"> 896 <col width="19%"> 897 <col width="19%"> 898 <col width="17%"> 899 <tr> 900 <th>CVE</th> 901 <th></th> 902 <th></th> 903 <th> Nexus </th> 904 <th> AOSP </th> 905 <th> </th> 906 </tr> 907 <tr> 908 <td>CVE-2016-3920</td> 909 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/6d0249be2275fd4086783f259f4e2c54722a7c55">A-30744884</a> 910 </td> 911 <td></td> 912 <td> Nexus</td> 913 <td>5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 914 <td>2016 8 5</td> 915 </tr> 916 </table> 917 <h3 id="eopv-in-framework-listener"> </h3> 918 <p> 919 920 921 . 922 . 923 </p> 924 <table> 925 <col width="18%"> 926 <col width="16%"> 927 <col width="10%"> 928 <col width="18%"> 929 <col width="20%"> 930 <col width="17%"> 931 <tr> 932 <th>CVE</th> 933 <th></th> 934 <th></th> 935 <th> Nexus </th> 936 <th> AOSP </th> 937 <th> </th> 938 </tr> 939 <tr> 940 <td>CVE-2016-3921</td> 941 <td><a href="https://android.googlesource.com/platform/system/core/+/771ab014c24a682b32990da08e87e2f0ab765bd2">A-29831647</a> 942 </td> 943 <td></td> 944 <td> Nexus</td> 945 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 946 <td>2016 6 25</td> 947 </tr> 948 </table> 949 <h3 id="eopv-in-telephony-2"> </h3> 950 <p> 951 952 953 . 954 . 955 </p> 956 <table> 957 <col width="18%"> 958 <col width="16%"> 959 <col width="10%"> 960 <col width="19%"> 961 <col width="19%"> 962 <col width="17%"> 963 <tr> 964 <th>CVE</th> 965 <th></th> 966 <th></th> 967 <th> Nexus </th> 968 <th> AOSP </th> 969 <th> </th> 970 </tr> 971 <tr> 972 <td>CVE-2016-3922</td> 973 <td><a href="https://android.googlesource.com/platform/hardware/ril/+/95610818918f6f11fe7d23aca1380e6c0fac2af0">A-30202619</a> 974 </td> 975 <td></td> 976 <td> Nexus</td> 977 <td>6.0, 6.0.1, 7.0</td> 978 <td>2016 7 17</td> 979 </tr> 980 </table> 981 <h3 id="eopv-in-accessibility-services"> </h3> 982 <p> 983 . . 984 </p> 985 <table> 986 <col width="18%"> 987 <col width="16%"> 988 <col width="10%"> 989 <col width="19%"> 990 <col width="18%"> 991 <col width="18%"> 992 <tr> 993 <th>CVE</th> 994 <th></th> 995 <th></th> 996 <th> Nexus </th> 997 <th> AOSP </th> 998 <th> </th> 999 </tr> 1000 <tr> 1001 <td>CVE-2016-3923</td> 1002 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/5f256310187b4ff2f13a7abb9afed9126facd7bc">A-30647115</a> 1003 </td> 1004 <td></td> 1005 <td> Nexus</td> 1006 <td>7.0</td> 1007 <td>Google </td> 1008 </tr> 1009 </table> 1010 <h3 id="information-disclosure-vulnerability-in-mediaserver"> </h3> 1011 <p> 1012 1013 . 1014 1015 . 1016 </p> 1017 <table> 1018 <col width="18%"> 1019 <col width="16%"> 1020 <col width="10%"> 1021 <col width="18%"> 1022 <col width="20%"> 1023 <col width="17%"> 1024 <tr> 1025 <th>CVE</th> 1026 <th></th> 1027 <th></th> 1028 <th> Nexus </th> 1029 <th> AOSP </th> 1030 <th> </th> 1031 </tr> 1032 <tr> 1033 <td>CVE-2016-3924</td> 1034 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/c894aa36be535886a8e5ff02cdbcd07dd24618f6">A-30204301</a> 1035 </td> 1036 <td></td> 1037 <td> Nexus</td> 1038 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 1039 <td>2016 7 18</td> 1040 </tr> 1041 </table> 1042 <h3 id="dosv-in-wi-fi-2">Wi-Fi (DoS) </h3> 1043 <p> 1044 Wi-Fi Wi-Fi . . 1045 </p> 1046 <table> 1047 <col width="18%"> 1048 <col width="16%"> 1049 <col width="10%"> 1050 <col width="19%"> 1051 <col width="17%"> 1052 <col width="19%"> 1053 <tr> 1054 <th>CVE</th> 1055 <th></th> 1056 <th></th> 1057 <th> Nexus </th> 1058 <th> AOSP </th> 1059 <th> </th> 1060 </tr> 1061 <tr> 1062 <td>CVE-2016-3925</td> 1063 <td><a href="https://android.googlesource.com/platform/frameworks/opt/net/wifi/+/c2905409c20c8692d4396b8531b09e7ec81fa3fb">A-30230534</a> 1064 </td> 1065 <td></td> 1066 <td> Nexus</td> 1067 <td>6.0, 6.0.1, 7.0</td> 1068 <td>Google </td> 1069 </tr> 1070 </table> 1071 <h2 id="2016-10-05-security-patch-level-vulnerability-details">2016-10-05 </h2> 1072 <p> 1073 <a href="#2016-10-05-security-patch-level-vulnerability-summary">2016-10-05 1074 </a> 1075 . , 1076 CVE, , , Nexus , 1077 AOSP ( ), . 1078 AOSP ID 1079 . 1080 ID . 1081 </p> 1082 <h3 id="remote-code-execution-vulnerability-in-kernel-asn-1-decoder"> ASN.1 </h3> 1083 <p> 1084 ASN.1 1085 1086 . 1087 , 1088 . 1089 </p> 1090 <table> 1091 <col width="19%"> 1092 <col width="20%"> 1093 <col width="10%"> 1094 <col width="23%"> 1095 <col width="17%"> 1096 <tr> 1097 <th>CVE</th> 1098 <th></th> 1099 <th></th> 1100 <th> Nexus </th> 1101 <th> </th> 1102 </tr> 1103 <tr> 1104 <td>CVE-2016-0758</td> 1105 <td>A-29814470<br> 1106 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=23c8a812dc3c621009e4f0e5342aa4e2ede1ceaa"> 1107 </a></td> 1108 <td></td> 1109 <td>Nexus 5X, Nexus 6P</td> 1110 <td>2016 5 12</td> 1111 </tr> 1112 </table> 1113 <h3 id="remote-code-execution-vulnerability-in-kernel-networking-subsystem"> </h3> 1114 <p> 1115 1116 . 1117 , 1118 . 1119 </p> 1120 <table> 1121 <col width="19%"> 1122 <col width="20%"> 1123 <col width="10%"> 1124 <col width="23%"> 1125 <col width="17%"> 1126 <tr> 1127 <th>CVE</th> 1128 <th></th> 1129 <th></th> 1130 <th> Nexus </th> 1131 <th> </th> 1132 </tr> 1133 <tr> 1134 <td>CVE-2016-7117</td> 1135 <td>A-30515201<br> 1136 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=34b88a68f26a75e4fded796f1a49c40f82234b7d"> 1137 </a></td> 1138 <td></td> 1139 <td> Nexus</td> 1140 <td>Google </td> 1141 </tr> 1142 </table> 1143 <h3 id="eopv-in-mediatek-video-driver">MediaTek </h3> 1144 <p> 1145 MediaTek 1146 1147 . 1148 , 1149 . 1150 </p> 1151 <table> 1152 <col width="19%"> 1153 <col width="20%"> 1154 <col width="10%"> 1155 <col width="23%"> 1156 <col width="17%"> 1157 <tr> 1158 <th>CVE</th> 1159 <th></th> 1160 <th></th> 1161 <th> Nexus </th> 1162 <th> </th> 1163 </tr> 1164 <tr> 1165 <td>CVE-2016-3928</td> 1166 <td>A-30019362*<br> 1167 M-ALPS02829384</td> 1168 <td></td> 1169 <td></td> 1170 <td>2016 7 6</td> 1171 </tr> 1172 </table> 1173 <p> 1174 * . 1175 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1176 . 1177 </p> 1178 <h3 id="eopv-in-kernel-shared-memory-driver"> </h3> 1179 <p> 1180 1181 1182 . 1183 , 1184 . 1185 </p> 1186 <table> 1187 <col width="19%"> 1188 <col width="20%"> 1189 <col width="10%"> 1190 <col width="23%"> 1191 <col width="17%"> 1192 <tr> 1193 <th>CVE</th> 1194 <th></th> 1195 <th></th> 1196 <th> Nexus </th> 1197 <th> </th> 1198 </tr> 1199 <tr> 1200 <td>CVE-2016-5340</td> 1201 <td>A-30652312<br> 1202 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.10/commit/?id=06e51489061e5473b4e2035c79dcf7c27a6f75a6">QC-CR#1008948</a></td> 1203 <td></td> 1204 <td>Nexus 5, Nexus 5X, Nexus 6, Nexus 6P, Android One</td> 1205 <td>2016 7 26</td> 1206 </tr> 1207 </table> 1208 1209 <h3 id="vulnerabilities-in-qc-components"> 1210 Qualcomm </h3> 1211 <p> 1212 Qualcomm Qualcomm AMSS 2016 3 Qualcomm AMSS 2016 4 . 1213 </p> 1214 <table> 1215 <col width="19%"> 1216 <col width="16%"> 1217 <col width="10%"> 1218 <col width="23%"> 1219 <col width="21%"> 1220 <tr> 1221 <th>CVE</th> 1222 <th></th> 1223 <th></th> 1224 <th> Nexus </th> 1225 <th> </th> 1226 </tr> 1227 <tr> 1228 <td>CVE-2016-3926</td> 1229 <td>A-28823953*</td> 1230 <td></td> 1231 <td>Nexus 5, Nexus 5X, Nexus 6, Nexus 6P</td> 1232 <td>Qualcomm </td> 1233 </tr> 1234 <tr> 1235 <td>CVE-2016-3927</td> 1236 <td>A-28823244*</td> 1237 <td></td> 1238 <td>Nexus 5X, Nexus 6P</td> 1239 <td>Qualcomm </td> 1240 </tr> 1241 <tr> 1242 <td>CVE-2016-3929</td> 1243 <td>A-28823675*</td> 1244 <td></td> 1245 <td>Nexus 5X, Nexus 6P</td> 1246 <td>Qualcomm </td> 1247 </tr> 1248 </table> 1249 <p> 1250 * . 1251 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1252 . 1253 </p> 1254 <h3 id="eopv-in-qualcomm-networking-component">Qualcomm </h3> 1255 <p> 1256 Qualcomm 1257 1258 . 1259 . 1260 </p> 1261 <table> 1262 <col width="19%"> 1263 <col width="20%"> 1264 <col width="10%"> 1265 <col width="23%"> 1266 <col width="17%"> 1267 <tr> 1268 <th>CVE</th> 1269 <th></th> 1270 <th></th> 1271 <th> Nexus </th> 1272 <th> </th> 1273 </tr> 1274 <tr> 1275 <td>CVE-2016-2059</td> 1276 <td>A-27045580<br> 1277 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=9e8bdd63f7011dff5523ea435433834b3702398d">QC-CR#974577</a></td> 1278 <td></td> 1279 <td>Nexus 5, Nexus 5X, Nexus 6, Nexus 6P, Android One</td> 1280 <td>2016 2 4</td> 1281 </tr> 1282 </table> 1283 <h3 id="eopv-in-nvidia-mmc-test-driver">NVIDIA MMC </h3> 1284 <p> 1285 NVIDIA MMC 1286 1287 . 1288 . 1289 </p> 1290 <table> 1291 <col width="19%"> 1292 <col width="20%"> 1293 <col width="10%"> 1294 <col width="23%"> 1295 <col width="17%"> 1296 <tr> 1297 <th>CVE</th> 1298 <th></th> 1299 <th></th> 1300 <th> Nexus </th> 1301 <th> </th> 1302 </tr> 1303 <tr> 1304 <td>CVE-2016-3930</td> 1305 <td>A-28760138*<br> 1306 N-CVE-2016-3930</td> 1307 <td></td> 1308 <td>Nexus 9</td> 1309 <td>2016 5 12</td> 1310 </tr> 1311 </table> 1312 <p> 1313 * . 1314 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1315 . 1316 </p> 1317 <h3 id="eopv-in-qsee-communicator-driver">Qualcomm QSEE </h3> 1318 <p> 1319 Qualcomm QSEE 1320 1321 . 1322 1323 . 1324 </p> 1325 <table> 1326 <col width="19%"> 1327 <col width="20%"> 1328 <col width="10%"> 1329 <col width="23%"> 1330 <col width="17%"> 1331 <tr> 1332 <th>CVE</th> 1333 <th></th> 1334 <th></th> 1335 <th> Nexus </th> 1336 <th> </th> 1337 </tr> 1338 <tr> 1339 <td>CVE-2016-3931</td> 1340 <td>A-29157595<br> 1341 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=e80b88323f9ff0bb0e545f209eec08ec56fca816">QC-CR#1036418</a></td> 1342 <td></td> 1343 <td>Nexus 5X, Nexus 6, Nexus 6P, Android One</td> 1344 <td>2016 6 4</td> 1345 </tr> 1346 </table> 1347 <h3 id="eopv-in-mediaserver-2"> </h3> 1348 <p> 1349 1350 1351 . 1352 1353 . 1354 </p> 1355 <table> 1356 <col width="19%"> 1357 <col width="20%"> 1358 <col width="10%"> 1359 <col width="23%"> 1360 <col width="17%"> 1361 <tr> 1362 <th>CVE</th> 1363 <th></th> 1364 <th></th> 1365 <th> Nexus </th> 1366 <th> </th> 1367 </tr> 1368 <tr> 1369 <td>CVE-2016-3932</td> 1370 <td>A-29161895<br> 1371 M-ALPS02770870</td> 1372 <td></td> 1373 <td></td> 1374 <td>2016 6 6</td> 1375 </tr> 1376 <tr> 1377 <td>CVE-2016-3933</td> 1378 <td>A-29421408*<br> 1379 N-CVE-2016-3933</td> 1380 <td></td> 1381 <td>Nexus 9, Pixel C</td> 1382 <td>2016 6 14</td> 1383 </tr> 1384 </table> 1385 <p> 1386 * . 1387 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1388 . 1389 </p> 1390 <h3 id="eopv-in-qualcomm-camera-driver">Qualcomm </h3> 1391 <p> 1392 Qualcomm 1393 1394 . 1395 . 1396 </p> 1397 <table> 1398 <col width="19%"> 1399 <col width="20%"> 1400 <col width="10%"> 1401 <col width="23%"> 1402 <col width="17%"> 1403 <tr> 1404 <th>CVE</th> 1405 <th></th> 1406 <th></th> 1407 <th> Nexus </th> 1408 <th> </th> 1409 </tr> 1410 <tr> 1411 <td>CVE-2016-3903</td> 1412 <td>A-29513227<br> 1413 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?id=b8874573428e8ce024f57c6242d662fcca5e5d55">QC-CR#1040857</a></td> 1414 <td></td> 1415 <td>Nexus 5, Nexus 5X, Nexus 6, Nexus 6P, Android One</td> 1416 <td>2016 6 20</td> 1417 </tr> 1418 <tr> 1419 <td>CVE-2016-3934</td> 1420 <td>A-30102557<br> 1421 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?id=27fbeb6b025d5d46ccb0497cbed4c6e78ed1c5cc">QC-CR#789704</a></td> 1422 <td></td> 1423 <td>Nexus 5, Nexus 5X, Nexus 6, Nexus 6P, Android One</td> 1424 <td>2016 7 12</td> 1425 </tr> 1426 </table> 1427 <h3 id="eopv-in-qualcomm-sound-driver">Qualcomm </h3> 1428 <p> 1429 Qualcomm 1430 1431 . 1432 . 1433 </p> 1434 <table> 1435 <col width="19%"> 1436 <col width="20%"> 1437 <col width="10%"> 1438 <col width="23%"> 1439 <col width="17%"> 1440 <tr> 1441 <th>CVE</th> 1442 <th></th> 1443 <th></th> 1444 <th> Nexus </th> 1445 <th> </th> 1446 </tr> 1447 <tr> 1448 <td>CVE-2015-8951</td> 1449 <td>A-30142668<br> 1450 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?h=APSS.FSM.3.0&id=ccff36b07bfc49efc77b9f1b55ed2bf0900b1d5b">QC-CR#948902</a><br> 1451 QC-CR#948902</td> 1452 <td></td> 1453 <td>Nexus 5X, Nexus 6P, Android One</td> 1454 <td>2016 6 20</td> 1455 </tr> 1456 </table> 1457 <h3 id="eopv-in-qualcomm-crypto-engine-driver">Qualcomm </h3> 1458 <p> 1459 Qualcomm 1460 1461 . 1462 . 1463 </p> 1464 <table> 1465 <col width="19%"> 1466 <col width="20%"> 1467 <col width="10%"> 1468 <col width="23%"> 1469 <col width="17%"> 1470 <tr> 1471 <th>CVE</th> 1472 <th></th> 1473 <th></th> 1474 <th> Nexus </th> 1475 <th> </th> 1476 </tr> 1477 <tr> 1478 <td>CVE-2016-3901</td> 1479 <td>A-29999161<br> 1480 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=5f69ccf3b011c1d14a1b1b00dbaacf74307c9132">QC-CR#1046434</a></td> 1481 <td></td> 1482 <td>Nexus 5X, Nexus 6, Nexus 6P, Android One</td> 1483 <td>2016 7 6</td> 1484 </tr> 1485 <tr> 1486 <td>CVE-2016-3935</td> 1487 <td>A-29999665<br> 1488 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=5f69ccf3b011c1d14a1b1b00dbaacf74307c9132">QC-CR#1046507</a></td> 1489 <td></td> 1490 <td>Nexus 5X, Nexus 6, Nexus 6P, Android One</td> 1491 <td>2016 7 6</td> 1492 </tr> 1493 </table> 1494 <h3 id="eopv-in-mediatek-video-driver-2">MediaTek </h3> 1495 <p> 1496 MediaTek 1497 1498 . 1499 . 1500 </p> 1501 <table> 1502 <col width="19%"> 1503 <col width="20%"> 1504 <col width="10%"> 1505 <col width="23%"> 1506 <col width="17%"> 1507 <tr> 1508 <th>CVE</th> 1509 <th></th> 1510 <th></th> 1511 <th> Nexus </th> 1512 <th> </th> 1513 </tr> 1514 <tr> 1515 <td>CVE-2016-3936</td> 1516 <td>A-30019037*<br> 1517 M-ALPS02829568</td> 1518 <td></td> 1519 <td></td> 1520 <td>2016 7 6</td> 1521 </tr> 1522 <tr> 1523 <td>CVE-2016-3937</td> 1524 <td>A-30030994*<br> 1525 M-ALPS02834874</td> 1526 <td></td> 1527 <td></td> 1528 <td>2016 7 7</td> 1529 </tr> 1530 </table> 1531 <p> 1532 * . 1533 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1534 . 1535 </p> 1536 <h3 id="eopv-in-qualcomm-video-driver">Qualcomm </h3> 1537 <p> 1538 Qualcomm 1539 1540 . 1541 . 1542 </p> 1543 <table> 1544 <col width="19%"> 1545 <col width="20%"> 1546 <col width="10%"> 1547 <col width="23%"> 1548 <col width="17%"> 1549 <tr> 1550 <th>CVE</th> 1551 <th></th> 1552 <th></th> 1553 <th> Nexus </th> 1554 <th> </th> 1555 </tr> 1556 <tr> 1557 <td>CVE-2016-3938</td> 1558 <td>A-30019716<br> 1559 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=467c81f9736b1ebc8d4ba70f9221bba02425ca10">QC-CR#1049232</a></td> 1560 <td></td> 1561 <td>Nexus 5X, Nexus 6, Nexus 6P, Android One</td> 1562 <td>2016 7 7</td> 1563 </tr> 1564 <tr> 1565 <td>CVE-2016-3939</td> 1566 <td>A-30874196<br> 1567 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=e0bb18771d6ca71db2c2a61226827059be3fa424">QC-CR#1001224</a></td> 1568 <td></td> 1569 <td>Nexus 5X, Nexus 6, Nexus 6P, Android One</td> 1570 <td>2016 8 15</td> 1571 </tr> 1572 </table> 1573 <h3 id="eopv-in-synaptics-touchscreen-driver">Synaptics </h3> 1574 <p> 1575 Synaptics 1576 1577 . 1578 . 1579 </p> 1580 <table> 1581 <col width="19%"> 1582 <col width="20%"> 1583 <col width="10%"> 1584 <col width="23%"> 1585 <col width="17%"> 1586 <tr> 1587 <th>CVE</th> 1588 <th></th> 1589 <th></th> 1590 <th> Nexus </th> 1591 <th> </th> 1592 </tr> 1593 <tr> 1594 <td>CVE-2016-3940</td> 1595 <td>A-30141991*</td> 1596 <td></td> 1597 <td>Nexus 6P, Android One</td> 1598 <td>2016 7 12</td> 1599 </tr> 1600 <tr> 1601 <td>CVE-2016-6672</td> 1602 <td>A-30537088*</td> 1603 <td></td> 1604 <td>Nexus 5X</td> 1605 <td>2016 7 31</td> 1606 </tr> 1607 </table> 1608 <p> 1609 * . 1610 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1611 . 1612 </p> 1613 <h3 id="eopv-in-nvidia-camera-driver">NVIDIA </h3> 1614 <p> 1615 NVIDIA 1616 1617 . 1618 . 1619 </p> 1620 <table> 1621 <col width="19%"> 1622 <col width="20%"> 1623 <col width="10%"> 1624 <col width="23%"> 1625 <col width="17%"> 1626 <tr> 1627 <th>CVE</th> 1628 <th></th> 1629 <th></th> 1630 <th> Nexus </th> 1631 <th> </th> 1632 </tr> 1633 <tr> 1634 <td>CVE-2016-6673</td> 1635 <td>A-30204201*<br> 1636 N-CVE-2016-6673</td> 1637 <td></td> 1638 <td>Nexus 9</td> 1639 <td>2016 7 17</td> 1640 </tr> 1641 </table> 1642 <p> 1643 * . 1644 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1645 . 1646 </p> 1647 <h3 id="eopv-in-system_server"> </h3> 1648 <p> 1649 1650 1651 . 1652 1653 . 1654 </p> 1655 <table> 1656 <col width="19%"> 1657 <col width="20%"> 1658 <col width="10%"> 1659 <col width="23%"> 1660 <col width="17%"> 1661 <tr> 1662 <th>CVE</th> 1663 <th></th> 1664 <th></th> 1665 <th> Nexus </th> 1666 <th> </th> 1667 </tr> 1668 <tr> 1669 <td>CVE-2016-6674</td> 1670 <td>A-30445380*</td> 1671 <td></td> 1672 <td> Nexus</td> 1673 <td>2016 7 26</td> 1674 </tr> 1675 </table> 1676 <p> 1677 * . 1678 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1679 . 1680 </p> 1681 <h3 id="eopv-in-qualcomm-wi-fi-driver">Qualcomm Wi-Fi </h3> 1682 <p> 1683 Qualcomm Wi-Fi 1684 1685 . 1686 . 1687 </p> 1688 <table> 1689 <col width="19%"> 1690 <col width="20%"> 1691 <col width="10%"> 1692 <col width="23%"> 1693 <col width="17%"> 1694 <tr> 1695 <th>CVE</th> 1696 <th></th> 1697 <th></th> 1698 <th> Nexus </th> 1699 <th> </th> 1700 </tr> 1701 <tr> 1702 <td>CVE-2016-3905</td> 1703 <td>A-28061823<br> 1704 <a href="https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-2.0/commit/?id=b5112838eb91b71eded4b5ee37338535784e0aef">QC-CR#1001449</a></td> 1705 <td></td> 1706 <td>Nexus 5X</td> 1707 <td>Google </td> 1708 </tr> 1709 <tr> 1710 <td>CVE-2016-6675</td> 1711 <td>A-30873776<br> 1712 <a href="https://source.codeaurora.org/quic/la//platform/vendor/qcom-opensource/wlan/prima/commit/?id=1353fa0bd0c78427f3ae7d9bde7daeb75bd01d09">QC-CR#1000861</a></td> 1713 <td></td> 1714 <td>Nexus 5X, Android One</td> 1715 <td>2016 8 15</td> 1716 </tr> 1717 <tr> 1718 <td>CVE-2016-6676</td> 1719 <td>A-30874066<br> 1720 <a href="https://source.codeaurora.org/quic/la//platform/vendor/qcom-opensource/wlan/qcacld-2.0/commit/?id=6ba9136879232442a182996427e5c88e5a7512a8">QC-CR#1000853</a></td> 1721 <td></td> 1722 <td>Nexus 5X, Android One</td> 1723 <td>2016 8 15</td> 1724 </tr> 1725 <tr> 1726 <td>CVE-2016-5342</td> 1727 <td>A-30878283<br> 1728 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=579e796cb089324c55e0e689a180575ba81b23d9">QC-CR#1032174</a></td> 1729 <td></td> 1730 <td>Android One</td> 1731 <td>2016 8 15</td> 1732 </tr> 1733 </table> 1734 <h3 id="eopv-in-kernel-performance-subsystem"> </h3> 1735 <p> 1736 1737 . 1738 . 1739 </p> 1740 <table> 1741 <col width="19%"> 1742 <col width="20%"> 1743 <col width="10%"> 1744 <col width="23%"> 1745 <col width="17%"> 1746 <tr> 1747 <th>CVE</th> 1748 <th></th> 1749 <th></th> 1750 <th> Nexus </th> 1751 <th> </th> 1752 </tr> 1753 <tr> 1754 <td>CVE-2015-8955</td> 1755 <td>A-29508816<br> 1756 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=8fff105e13041e49b82f92eef034f363a6b1c071"> </a></td> 1757 <td></td> 1758 <td>Nexus 5X, Nexus 6P, Pixel C, Android One</td> 1759 <td>Google </td> 1760 </tr> 1761 </table> 1762 <h3 id="information-disclosure-vulnerability-in-kernel-ion-subsystem"> ION </h3> 1763 <p> 1764 ION 1765 . 1766 1767 . 1768 </p> 1769 <table> 1770 <col width="19%"> 1771 <col width="20%"> 1772 <col width="10%"> 1773 <col width="23%"> 1774 <col width="17%"> 1775 <tr> 1776 <th>CVE</th> 1777 <th></th> 1778 <th></th> 1779 <th> Nexus </th> 1780 <th> </th> 1781 </tr> 1782 <tr> 1783 <td>CVE-2015-8950</td> 1784 <td>A-29795245<br> 1785 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?id=6e2c437a2d0a85d90d3db85a7471f99764f7bbf8">QC-CR#1041735</a></td> 1786 <td></td> 1787 <td>Nexus 5, Nexus 5X, Nexus 6, Nexus 6P</td> 1788 <td>2016 5 12</td> 1789 </tr> 1790 </table> 1791 <h3 id="information-disclosure-vulnerability-in-nvidia-gpu-driver">NVIDIA GPU </h3> 1792 <p> 1793 NVIDIA GPU 1794 . 1795 . 1796 </p> 1797 <table> 1798 <col width="19%"> 1799 <col width="20%"> 1800 <col width="10%"> 1801 <col width="23%"> 1802 <col width="17%"> 1803 <tr> 1804 <th>CVE</th> 1805 <th></th> 1806 <th></th> 1807 <th> Nexus </th> 1808 <th> </th> 1809 </tr> 1810 <tr> 1811 <td>CVE-2016-6677</td> 1812 <td>A-30259955*<br> 1813 N-CVE-2016-6677</td> 1814 <td></td> 1815 <td>Nexus 9</td> 1816 <td>2016 7 19</td> 1817 </tr> 1818 </table> 1819 <p> 1820 * . 1821 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1822 . 1823 </p> 1824 <h3 id="eopv-in-qualcomm-character-driver">Qualcomm </h3> 1825 <p> 1826 Qualcomm 1827 1828 . 1829 1830 . 1831 </p> 1832 <table> 1833 <col width="19%"> 1834 <col width="20%"> 1835 <col width="10%"> 1836 <col width="23%"> 1837 <col width="17%"> 1838 <tr> 1839 <th>CVE</th> 1840 <th></th> 1841 <th></th> 1842 <th> Nexus </th> 1843 <th> </th> 1844 </tr> 1845 <tr> 1846 <td>CVE-2015-0572</td> 1847 <td>A-29156684<br> 1848 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?id=34ad3d34fbff11b8e1210b9da0dac937fb956b61">QC-CR#848489</a></td> 1849 <td></td> 1850 <td>Nexus 5X, Nexus 6P</td> 1851 <td>2016 5 28</td> 1852 </tr> 1853 </table> 1854 <h3 id="information-disclosure-vulnerability-in-qualcomm-sound-driver">Qualcomm </h3> 1855 <p> 1856 Qualcomm 1857 . . 1858 </p> 1859 <table> 1860 <col width="19%"> 1861 <col width="20%"> 1862 <col width="10%"> 1863 <col width="23%"> 1864 <col width="17%"> 1865 <tr> 1866 <th>CVE</th> 1867 <th></th> 1868 <th></th> 1869 <th> Nexus </th> 1870 <th> </th> 1871 </tr> 1872 <tr> 1873 <td>CVE-2016-3860</td> 1874 <td>A-29323142<br> 1875 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/diff/sound/soc/msm/qdsp6v2/audio_calibration.c?id=528976f54be246ec93a71ac53aa4faf3e3791c48">QC-CR#1038127</a></td> 1876 <td></td> 1877 <td>Nexus 5X, Nexus 6P, Android One</td> 1878 <td>2016 6 13</td> 1879 </tr> 1880 </table> 1881 <h3 id="information-disclosure-vulnerability-in-motorola-usbnet-driver">Motorola USBNet </h3> 1882 <p> 1883 Motorola USBNet 1884 . . 1885 </p> 1886 <table> 1887 <col width="19%"> 1888 <col width="20%"> 1889 <col width="10%"> 1890 <col width="23%"> 1891 <col width="17%"> 1892 <tr> 1893 <th>CVE</th> 1894 <th></th> 1895 <th></th> 1896 <th> Nexus </th> 1897 <th> </th> 1898 </tr> 1899 <tr> 1900 <td>CVE-2016-6678</td> 1901 <td>A-29914434*</td> 1902 <td></td> 1903 <td>Nexus 6</td> 1904 <td>2016 6 30</td> 1905 </tr> 1906 </table> 1907 <p> 1908 * . 1909 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1910 . 1911 </p> 1912 <h3 id="information-disclosure-vulnerability-in-qualcomm-components">Qualcomm </h3> 1913 <p> 1914 , IPA , Wi-Fi Qualcomm 1915 1916 . 1917 . 1918 </p> 1919 <table> 1920 <col width="19%"> 1921 <col width="20%"> 1922 <col width="10%"> 1923 <col width="23%"> 1924 <col width="17%"> 1925 <tr> 1926 <th>CVE</th> 1927 <th></th> 1928 <th></th> 1929 <th> Nexus </th> 1930 <th> </th> 1931 </tr> 1932 <tr> 1933 <td>CVE-2016-6679</td> 1934 <td>A-29915601<br> 1935 <a href="https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/prima/commit/?id=d39345f0abc309959d831d09fcbf1619cc0ae0f5">QC-CR#1000913</a> 1936 [<a href="https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-2.0/commit/?id=f081695446679aa44baa0d00940ea18455eeb4c5">2</a>]</td> 1937 <td></td> 1938 <td>Nexus 5X, Android One</td> 1939 <td>2016 6 30</td> 1940 </tr> 1941 <tr> 1942 <td>CVE-2016-3902</td> 1943 <td>A-29953313*<br> 1944 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.10/commit/?id=2fca425d781572393fbe51abe2e27a932d24a768">QC-CR#1044072</a></td> 1945 <td></td> 1946 <td>Nexus 5X, Nexus 6P,</td> 1947 <td>2016 7 2</td> 1948 </tr> 1949 <tr> 1950 <td>CVE-2016-6680</td> 1951 <td>A-29982678*<br> 1952 <a href="https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-2.0/commit/?id=2f2fa073b95d4700de88c0f7558b4a18c13ac552">QC-CR#1048052</a></td> 1953 <td></td> 1954 <td>Nexus 5X, Android One</td> 1955 <td>2016 7 3</td> 1956 </tr> 1957 <tr> 1958 <td>CVE-2016-6681</td> 1959 <td>A-30152182<br> 1960 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=0950fbd39ff189497f1b6115825c210e3eeaf395">QC-CR#1049521</a></td> 1961 <td></td> 1962 <td>Nexus 5X, Nexus 6P, Android One</td> 1963 <td>2016 7 14</td> 1964 </tr> 1965 <tr> 1966 <td>CVE-2016-6682</td> 1967 <td>A-30152501<br> 1968 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=0950fbd39ff189497f1b6115825c210e3eeaf395">QC-CR#1049615</a></td> 1969 <td></td> 1970 <td>Nexus 5X, Nexus 6P, Android One</td> 1971 <td>2016 7 14</td> 1972 </tr> 1973 </table> 1974 <p> 1975 * . 1976 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1977 . 1978 </p> 1979 <h3 id="information-disclosure-vulnerability-in-kernel-components"> </h3> 1980 <p> 1981 Binder, , , 1982 1983 . 1984 . 1985 </p> 1986 <table> 1987 <col width="19%"> 1988 <col width="18%"> 1989 <col width="10%"> 1990 <col width="25%"> 1991 <col width="17%"> 1992 <tr> 1993 <th>CVE</th> 1994 <th></th> 1995 <th></th> 1996 <th> Nexus </th> 1997 <th> </th> 1998 </tr> 1999 <tr> 2000 <td>CVE-2016-6683</td> 2001 <td>A-30143283*</td> 2002 <td></td> 2003 <td> Nexus</td> 2004 <td>2016 7 13</td> 2005 </tr> 2006 <tr> 2007 <td>CVE-2016-6684</td> 2008 <td>A-30148243*</td> 2009 <td></td> 2010 <td>Nexus 5, Nexus 5X, Nexus 6, Nexus 6P, Nexus 9, Nexus Player, Android One</td> 2011 <td>2016 7 13</td> 2012 </tr> 2013 <tr> 2014 <td>CVE-2015-8956</td> 2015 <td>A-30149612*</td> 2016 <td></td> 2017 <td>Nexus 5, Nexus 6P, Android One</td> 2018 <td>2016 7 14</td> 2019 </tr> 2020 <tr> 2021 <td>CVE-2016-6685</td> 2022 <td>A-30402628*</td> 2023 <td></td> 2024 <td>Nexus 6P</td> 2025 <td>2016 7 25</td> 2026 </tr> 2027 </table> 2028 <p> 2029 * . 2030 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 2031 . 2032 </p> 2033 <h3 id="information-disclosure-vulnerability-in-nvidia-profiler">NVIDIA </h3> 2034 <p> 2035 NVIDIA 2036 . 2037 . 2038 </p> 2039 <table> 2040 <col width="19%"> 2041 <col width="20%"> 2042 <col width="10%"> 2043 <col width="23%"> 2044 <col width="17%"> 2045 <tr> 2046 <th>CVE</th> 2047 <th></th> 2048 <th></th> 2049 <th> Nexus </th> 2050 <th> </th> 2051 </tr> 2052 <tr> 2053 <td>CVE-2016-6686</td> 2054 <td>A-30163101*<br> 2055 N-CVE-2016-6686</td> 2056 <td></td> 2057 <td>Nexus 9</td> 2058 <td>2016 7 15</td> 2059 </tr> 2060 <tr> 2061 <td>CVE-2016-6687</td> 2062 <td>A-30162222*<br> 2063 N-CVE-2016-6687</td> 2064 <td></td> 2065 <td>Nexus 9</td> 2066 <td>2016 7 15</td> 2067 </tr> 2068 <tr> 2069 <td>CVE-2016-6688</td> 2070 <td>A-30593080*<br> 2071 N-CVE-2016-6688</td> 2072 <td></td> 2073 <td>Nexus 9</td> 2074 <td>2016 8 2</td> 2075 </tr> 2076 </table> 2077 <p> 2078 * . 2079 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 2080 . 2081 </p> 2082 <h3 id="information-disclosure-vulnerability-in-kernel"> </h3> 2083 <p> 2084 2085 . 2086 . 2087 </p> 2088 <table> 2089 <col width="19%"> 2090 <col width="20%"> 2091 <col width="10%"> 2092 <col width="23%"> 2093 <col width="17%"> 2094 <tr> 2095 <th>CVE</th> 2096 <th></th> 2097 <th></th> 2098 <th> Nexus </th> 2099 <th> </th> 2100 </tr> 2101 <tr> 2102 <td>CVE-2016-6689</td> 2103 <td>A-30768347*</td> 2104 <td></td> 2105 <td> Nexus</td> 2106 <td>2016 8 9</td> 2107 </tr> 2108 </table> 2109 <p> 2110 * . 2111 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 2112 . 2113 </p> 2114 <h3 id="dosv-in-kernel-networking-subsystem"> (DoS) </h3> 2115 <p> 2116 2117 TCP 2118 . 2119 . 2120 </p> 2121 <table> 2122 <col width="19%"> 2123 <col width="18%"> 2124 <col width="10%"> 2125 <col width="25%"> 2126 <col width="17%"> 2127 <tr> 2128 <th>CVE</th> 2129 <th></th> 2130 <th></th> 2131 <th> Nexus </th> 2132 <th> </th> 2133 </tr> 2134 <tr> 2135 <td>CVE-2016-5696</td> 2136 <td>A-30809774<br> 2137 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=75ff39ccc1bd5d3c455b6822ab09e533c551f758"> </a></td> 2138 <td></td> 2139 <td>Nexus 5X, Nexus 6, Nexus 6P, Nexus 9, Nexus Player, Pixel C, Android One</td> 2140 <td>2016 7 12</td> 2141 </tr> 2142 </table> 2143 <h3 id="dosv-in-kernel-sound-driver"> (DoS) </h3> 2144 <p> 2145 2146 . 2147 . 2148 </p> 2149 <table> 2150 <col width="19%"> 2151 <col width="18%"> 2152 <col width="10%"> 2153 <col width="25%"> 2154 <col width="17%"> 2155 <tr> 2156 <th>CVE</th> 2157 <th></th> 2158 <th></th> 2159 <th> Nexus </th> 2160 <th> </th> 2161 </tr> 2162 <tr> 2163 <td>CVE-2016-6690</td> 2164 <td>A-28838221*</td> 2165 <td></td> 2166 <td>Nexus 5, Nexus 5X, Nexus 6, Nexus 6P, Nexus Player</td> 2167 <td>2016 5 18</td> 2168 </tr> 2169 </table> 2170 <p> 2171 * . 2172 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 2173 . 2174 </p> 2175 <h3 id="vulnerabilities-in-qualcomm-components">Qualcomm </h3> 2176 <p> 2177 Qualcomm . 2178 </p> 2179 <table> 2180 <col width="19%"> 2181 <col width="20%"> 2182 <col width="10%"> 2183 <col width="23%"> 2184 <col width="17%"> 2185 <tr> 2186 <th>CVE</th> 2187 <th></th> 2188 <th></th> 2189 <th> Nexus </th> 2190 <th> </th> 2191 </tr> 2192 <tr> 2193 <td>CVE-2016-6691</td> 2194 <td><a href="https://source.codeaurora.org/quic/la//platform/frameworks/opt/net/wifi/commit/?id=343f123c396b2a97fc7cce396cd5d99365cb9131">QC-CR#978452</a></td> 2195 <td></td> 2196 <td></td> 2197 <td>2016 7</td> 2198 </tr> 2199 <tr> 2200 <td>CVE-2016-6692</td> 2201 <td><a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=0f0e7047d39f9fb3a1a7f389918ff79cdb4a50b3">QC-CR#1004933</a></td> 2202 <td></td> 2203 <td></td> 2204 <td>2016 8</td> 2205 </tr> 2206 <tr> 2207 <td>CVE-2016-6693</td> 2208 <td><a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=ac328eb631fa74a63d5d2583e6bfeeb5a7a2df65">QC-CR#1027585</a></td> 2209 <td></td> 2210 <td></td> 2211 <td>2016 8</td> 2212 </tr> 2213 <tr> 2214 <td>CVE-2016-6694</td> 2215 <td><a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=961e38553aae8ba9b1af77c7a49acfbb7b0b6f62">QC-CR#1033525</a></td> 2216 <td></td> 2217 <td></td> 2218 <td>2016 8</td> 2219 </tr> 2220 <tr> 2221 <td>CVE-2016-6695</td> 2222 <td><a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=c319c2b0926d1ea5edb4d0778d88bd3ce37c4b95">QC-CR#1033540</a></td> 2223 <td></td> 2224 <td></td> 2225 <td>2016 8</td> 2226 </tr> 2227 <tr> 2228 <td>CVE-2016-6696</td> 2229 <td><a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=c3c9341bfdf93606983f893a086cb33a487306e5">QC-CR#1041130</a></td> 2230 <td></td> 2231 <td></td> 2232 <td>2016 8</td> 2233 </tr> 2234 <tr> 2235 <td>CVE-2016-5344</td> 2236 <td><a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=64e15c36d6c1c57dc2d95a3f163bc830a469fc20">QC-CR#993650</a></td> 2237 <td></td> 2238 <td></td> 2239 <td>2016 8</td> 2240 </tr> 2241 <tr> 2242 <td>CVE-2016-5343</td> 2243 <td><a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=6927e2e0af4dcac357be86ba563c9ae12354bb08">QC-CR#1010081</a></td> 2244 <td></td> 2245 <td></td> 2246 <td>2016 8</td> 2247 </tr> 2248 </table> 2249 <h2 id="common-questions-and-answers"> </h2> 2250 <p> 2251 . 2252 </p> 2253 <p> 2254 <strong>1. ? 2255 </strong> 2256 </p> 2257 <p> 2258 2016-10-01 2016-10-01 2259 . 2016-10-05 2260 2016-10-05 . 2261 <a href="https://support.google.com/nexus/answer/4457705"></a> . 2262 . 2263 [ro.build.version.security_patch]:[2016-10-01] 2264 [ro.build.version.security_patch]:[2016-10-05] 2265 </p> 2266 <p> 2267 <strong>2. ?</strong> 2268 </p> 2269 <p> 2270 Android Android 2271 2272 . Android 2273 2274 . 2275 </p> 2276 <p> 2277 2016 10 5 2278 . 2279 </p> 2280 <p> 2281 2016 10 1 2282 2283 . 2284 </p> 2285 <p> 2286 <strong>3. Nexus ?</strong> 2287 </p> 2288 <p> 2289 <a href="#2016-10-01-security-patch-level-vulnerability-details">2016-10-01</a> 2290 <a href="#2016-10-05-security-patch-level-vulnerability-details">2016-10-05</a> 2291 Nexus 2292 <em> Nexus </em> . . 2293 </p> 2294 <ul> 2295 <li><strong> Nexus </strong>: Nexus 2296 <em> Nexus </em> ' Nexus' . 2297 ' Nexus' 2298 <a href="https://support.google.com/nexus/answer/4457705#nexus_devices"> </a> 2299 . Nexus 5, Nexus 5X, Nexus 6, Nexus 6P, Nexus 7(2013), Nexus 9, 2300 Android One, Nexus Player, Pixel C</li> 2301 <li><strong> Nexus </strong>: Nexus 2302 , Nexus 2303 <em> Nexus </em> .</li> 2304 <li><strong>Nexus </strong>: Nexus 2305 <em> Nexus </em> '' .</li> 2306 </ul> 2307 <p> 2308 <strong>4. ?</strong> 2309 </p> 2310 <p> 2311 <em></em> 2312 . 2313 . 2314 </p> 2315 <table> 2316 <tr> 2317 <th></th> 2318 <th> </th> 2319 </tr> 2320 <tr> 2321 <td>A-</td> 2322 <td>Android ID</td> 2323 </tr> 2324 <tr> 2325 <td>QC-</td> 2326 <td>Qualcomm </td> 2327 </tr> 2328 <tr> 2329 <td>M-</td> 2330 <td>MediaTek </td> 2331 </tr> 2332 <tr> 2333 <td>N-</td> 2334 <td>NVIDIA </td> 2335 </tr> 2336 <tr> 2337 <td>B-</td> 2338 <td>Broadcom </td> 2339 </tr> 2340 </table> 2341 2342 <h2 id="revisions"> </h2> 2343 <ul> 2344 <li>2016 10 3: .</li> 2345 <li>2016 10 4: AOSP 2346 CVE-2016-3920, CVE-2016-6693, CVE-2016-6694, CVE-2016-6695, 2347 CVE-2016-6696 .</li> 2348 </ul> 2349 2350 </body> 2351 </html> 2352
