1 <html devsite> 2 <head> 3 <title>Android 2017 3</title> 4 <meta name="project_path" value="/_project.yaml" /> 5 <meta name="book_path" value="/_book.yaml" /> 6 </head> 7 <body> 8 <!-- 9 Copyright 2017 The Android Open Source Project 10 11 Licensed under the Apache License, Version 2.0 (the "License"); 12 you may not use this file except in compliance with the License. 13 You may obtain a copy of the License at 14 15 http://www.apache.org/licenses/LICENSE-2.0 16 17 Unless required by applicable law or agreed to in writing, software 18 distributed under the License is distributed on an "AS IS" BASIS, 19 WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 20 See the License for the specific language governing permissions and 21 limitations under the License. 22 --> 23 <p><em>2017 3 6 | 2017 3 7 </em></p> 24 <p>Android Android 25 . (OTA) 26 Google . Google 27 <a href="https://developers.google.com/android/nexus/images">Google </a> . 2017 3 5 28 . <a href="https://support.google.com/pixelphone/answer/4457705#pixel_phones&nexus_devices">Pixel Nexus </a> 29 .</p> 30 <p> 31 2017 2 6 . 32 Android (AOSP) . 33 AOSP .</p> 34 <p> 35 , MMS 36 .</p> 37 <p> 38 . <a href="https://developer.android.com/training/safetynet/index.html">SafetyNet</a> Android 39 <a href="{@docRoot}security/enhancements/index.html">Android </a> 40 <a href="#mitigations">Android Google </a> 41 .</p> 42 <p> .</p> 43 <h2 id="announcements"></h2> 44 <ul> 45 <li> Android Android 46 47 . <a href="#common-questions-and-answers"> 48 </a> . 49 <ul> 50 <li><strong>2017-03-01</strong>: . 51 2017-03-01 52 .</li> 53 <li><strong>2017-03-05</strong>: . 54 2017-03-01 2017-03-05 55 .</li> 56 </ul> 57 </li> 58 <li> Google 2017 3 5 OTA 59 .</li> 60 </ul> 61 <h2 id="security-vulnerability-summary"> </h2> 62 <p> , ID(CVE), 63 Google 64 . <a href="{@docRoot}security/overview/updates-resources.html#severity"> </a> 65 66 67 .</p> 68 <h3 id="2017-03-01-summary">2017-03-01 69 </h3> 70 <p> 2017-03-01 .</p> 71 <table> 72 <col width="55%"> 73 <col width="20%"> 74 <col width="13%"> 75 <col width="12%"> 76 <tr> 77 <th></th> 78 <th>CVE</th> 79 <th></th> 80 <th>Google </th> 81 </tr> 82 <tr> 83 <td>OpenSSL & BoringSSL </td> 84 <td>CVE-2016-2182</td> 85 <td></td> 86 <td></td> 87 </tr> 88 <tr> 89 <td> </td> 90 <td>CVE-2017-0466, CVE-2017-0467, CVE-2017-0468, CVE-2017-0469, 91 CVE-2017-0470, CVE-2017-0471, CVE-2017-0472, CVE-2017-0473, CVE-2017-0474</td> 92 <td></td> 93 <td></td> 94 </tr> 95 <tr> 96 <td> </td> 97 <td>CVE-2017-0475</td> 98 <td></td> 99 <td></td> 100 </tr> 101 <tr> 102 <td>AOSP </td> 103 <td>CVE-2017-0476</td> 104 <td></td> 105 <td></td> 106 </tr> 107 <tr> 108 <td>libgdx </td> 109 <td>CVE-2017-0477</td> 110 <td></td> 111 <td></td> 112 </tr> 113 <tr> 114 <td>Framesequence </td> 115 <td>CVE-2017-0478</td> 116 <td></td> 117 <td></td> 118 </tr> 119 <tr> 120 <td>NFC </td> 121 <td>CVE-2017-0481</td> 122 <td></td> 123 <td></td> 124 </tr> 125 <tr> 126 <td> </td> 127 <td>CVE-2017-0479, CVE-2017-0480</td> 128 <td></td> 129 <td></td> 130 </tr> 131 <tr> 132 <td> (DoS) </td> 133 <td>CVE-2017-0482, CVE-2017-0483, CVE-2017-0484, CVE-2017-0485, 134 CVE-2017-0486, CVE-2017-0487, CVE-2017-0488</td> 135 <td></td> 136 <td></td> 137 </tr> 138 <tr> 139 <td> </td> 140 <td>CVE-2017-0489</td> 141 <td></td> 142 <td></td> 143 </tr> 144 <tr> 145 <td>Wi-Fi </td> 146 <td>CVE-2017-0490</td> 147 <td></td> 148 <td></td> 149 </tr> 150 <tr> 151 <td> </td> 152 <td>CVE-2017-0491</td> 153 <td></td> 154 <td></td> 155 </tr> 156 <tr> 157 <td> UI </td> 158 <td>CVE-2017-0492</td> 159 <td></td> 160 <td></td> 161 </tr> 162 <tr> 163 <td>AOSP </td> 164 <td>CVE-2017-0494</td> 165 <td></td> 166 <td></td> 167 </tr> 168 <tr> 169 <td> </td> 170 <td>CVE-2017-0495</td> 171 <td></td> 172 <td></td> 173 </tr> 174 <tr> 175 <td> (DoS) </td> 176 <td>CVE-2017-0496</td> 177 <td></td> 178 <td></td> 179 </tr> 180 <tr> 181 <td> (DoS) </td> 182 <td>CVE-2017-0497</td> 183 <td></td> 184 <td></td> 185 </tr> 186 <tr> 187 <td> (DoS) </td> 188 <td>CVE-2017-0498</td> 189 <td></td> 190 <td>*</td> 191 </tr> 192 <tr> 193 <td> (DoS) </td> 194 <td>CVE-2017-0499</td> 195 <td></td> 196 <td></td> 197 </tr> 198 </table> 199 <p>* Android 7.0 Google 200 .</p> 201 <h3 id="2017-03-05-summary">2017-03-05 202 </h3> 203 <p>2017-03-01 2017-03-05 204 .</p> 205 <table> 206 <col width="55%"> 207 <col width="20%"> 208 <col width="13%"> 209 <col width="12%"> 210 <tr> 211 <th></th> 212 <th>CVE</th> 213 <th></th> 214 <th>Google </th> 215 </tr> 216 <tr> 217 <td>MediaTek </td> 218 <td>CVE-2017-0500, CVE-2017-0501, CVE-2017-0502, CVE-2017-0503, 219 CVE-2017-0504, CVE-2017-0505, CVE-2017-0506</td> 220 <td></td> 221 <td>*</td> 222 </tr> 223 <tr> 224 <td>NVIDIA GPU </td> 225 <td>CVE-2017-0337, CVE-2017-0338, CVE-2017-0333, CVE-2017-0306, CVE-2017-0335</td> 226 <td></td> 227 <td></td> 228 </tr> 229 <tr> 230 <td> ION </td> 231 <td>CVE-2017-0507, CVE-2017-0508</td> 232 <td></td> 233 <td></td> 234 </tr> 235 <tr> 236 <td>Broadcom Wi-Fi </td> 237 <td>CVE-2017-0509</td> 238 <td></td> 239 <td>*</td> 240 </tr> 241 <tr> 242 <td> FIQ </td> 243 <td>CVE-2017-0510</td> 244 <td></td> 245 <td></td> 246 </tr> 247 <tr> 248 <td>Qualcomm GPU </td> 249 <td>CVE-2016-8479</td> 250 <td></td> 251 <td></td> 252 </tr> 253 <tr> 254 <td> </td> 255 <td>CVE-2016-9806, CVE-2016-10200</td> 256 <td></td> 257 <td></td> 258 </tr> 259 <tr> 260 <td>Qualcomm </td> 261 <td>CVE-2016-8484, CVE-2016-8485, CVE-2016-8486, CVE-2016-8487, CVE-2016-8488</td> 262 <td></td> 263 <td>*</td> 264 </tr> 265 <tr> 266 <td> </td> 267 <td>CVE-2016-8655, CVE-2016-9793</td> 268 <td></td> 269 <td></td> 270 </tr> 271 <tr> 272 <td>Qualcomm </td> 273 <td>CVE-2017-0516</td> 274 <td></td> 275 <td></td> 276 </tr> 277 <tr> 278 <td>MediaTek </td> 279 <td>CVE-2017-0517</td> 280 <td></td> 281 <td>*</td> 282 </tr> 283 <tr> 284 <td>Qualcomm ADSPRPC </td> 285 <td>CVE-2017-0457</td> 286 <td></td> 287 <td></td> 288 </tr> 289 <tr> 290 <td>Qualcomm 291 </td> 292 <td>CVE-2017-0518, CVE-2017-0519</td> 293 <td></td> 294 <td></td> 295 </tr> 296 <tr> 297 <td>Qualcomm </td> 298 <td>CVE-2017-0520</td> 299 <td></td> 300 <td></td> 301 </tr> 302 <tr> 303 <td>Qualcomm </td> 304 <td>CVE-2017-0458, CVE-2017-0521</td> 305 <td></td> 306 <td></td> 307 </tr> 308 <tr> 309 <td>MediaTek APK </td> 310 <td>CVE-2017-0522</td> 311 <td></td> 312 <td>*</td> 313 </tr> 314 <tr> 315 <td>Qualcomm Wi-Fi </td> 316 <td>CVE-2017-0464, CVE-2017-0453, CVE-2017-0523</td> 317 <td></td> 318 <td></td> 319 </tr> 320 <tr> 321 <td>Synaptics </td> 322 <td>CVE-2017-0524</td> 323 <td></td> 324 <td></td> 325 </tr> 326 <tr> 327 <td>Qualcomm IPA </td> 328 <td>CVE-2017-0456, CVE-2017-0525</td> 329 <td></td> 330 <td></td> 331 </tr> 332 <tr> 333 <td>HTC </td> 334 <td>CVE-2017-0526, CVE-2017-0527</td> 335 <td></td> 336 <td></td> 337 </tr> 338 <tr> 339 <td>NVIDIA GPU </td> 340 <td>CVE-2017-0307</td> 341 <td></td> 342 <td>*</td> 343 </tr> 344 <tr> 345 <td>Qualcomm </td> 346 <td>CVE-2017-0463, CVE-2017-0460</td> 347 <td></td> 348 <td></td> 349 </tr> 350 <tr> 351 <td> </td> 352 <td>CVE-2017-0528</td> 353 <td></td> 354 <td></td> 355 </tr> 356 <tr> 357 <td>Qualcomm SPCom </td> 358 <td>CVE-2016-5856, CVE-2016-5857</td> 359 <td></td> 360 <td>*</td> 361 </tr> 362 <tr> 363 <td> </td> 364 <td>CVE-2014-8709</td> 365 <td></td> 366 <td></td> 367 </tr> 368 <tr> 369 <td>MediaTek </td> 370 <td>CVE-2017-0529</td> 371 <td></td> 372 <td>*</td> 373 </tr> 374 <tr> 375 <td>Qualcomm </td> 376 <td>CVE-2017-0455</td> 377 <td></td> 378 <td></td> 379 </tr> 380 <tr> 381 <td>Qualcomm </td> 382 <td>CVE-2016-8483</td> 383 <td></td> 384 <td></td> 385 </tr> 386 <tr> 387 <td>NVIDIA GPU </td> 388 <td>CVE-2017-0334, CVE-2017-0336</td> 389 <td></td> 390 <td></td> 391 </tr> 392 <tr> 393 <td> (DoS) </td> 394 <td>CVE-2016-8650</td> 395 <td></td> 396 <td></td> 397 </tr> 398 <tr> 399 <td>Qualcomm ( 400 )</td> 401 <td>CVE-2016-8417</td> 402 <td></td> 403 <td></td> 404 </tr> 405 <tr> 406 <td>Qualcomm Wi-Fi </td> 407 <td>CVE-2017-0461, CVE-2017-0459, CVE-2017-0531</td> 408 <td></td> 409 <td></td> 410 </tr> 411 <tr> 412 <td>MediaTek </td> 413 <td>CVE-2017-0532</td> 414 <td></td> 415 <td>*</td> 416 </tr> 417 <tr> 418 <td>Qualcomm </td> 419 <td>CVE-2017-0533, CVE-2017-0534, CVE-2016-8416, CVE-2016-8478</td> 420 <td></td> 421 <td></td> 422 </tr> 423 <tr> 424 <td>Qualcomm </td> 425 <td>CVE-2016-8413, CVE-2016-8477</td> 426 <td></td> 427 <td></td> 428 </tr> 429 <tr> 430 <td>HTC </td> 431 <td>CVE-2017-0535</td> 432 <td></td> 433 <td></td> 434 </tr> 435 <tr> 436 <td>Synaptics </td> 437 <td>CVE-2017-0536</td> 438 <td></td> 439 <td></td> 440 </tr> 441 <tr> 442 <td> USB </td> 443 <td>CVE-2017-0537</td> 444 <td></td> 445 <td></td> 446 </tr> 447 <tr> 448 <td>Qualcomm </td> 449 <td>CVE-2017-0452</td> 450 <td></td> 451 <td></td> 452 </tr> 453 </table> 454 <p>* Android 7.0 Google 455 .</p> 456 <h2 id="mitigations">Android Google 457 </h2> 458 <p> SafetyNet <a href="{@docRoot}security/enhancements/index.html">Android </a> 459 . 460 Android 461 .</p> 462 <ul> 463 <li>Android Android 464 . Android 465 .</li> 466 <li>Android <a href="http://static.googleusercontent.com/media/source.android.com/en//security/reports/Google_Android_Security_PHA_classifications.pdf"> </a> 467 <a href="http://static.googleusercontent.com/media/source.android.com/en//security/reports/Google_Android_Security_2015_Report_Final.pdf"> SafetyNet</a> 468 . <a href="http://www.android.com/gms">Google </a> 469 Google Play 470 . Google 471 Play 472 473 . 474 475 . 476 .</li> 477 <li> Google 478 .</li> 479 </ul> 480 <h2 id="acknowledgements"> </h2> 481 <p> .</p> 482 <ul> 483 <li>Google Dynamic Tools Alexander Potapenko: CVE-2017-0537 484 <li>Alibaba Mobile Security Group Baozeng Ding, Chengming Yang, 485 Peng Xiao, Yang Song: CVE-2017-0506 486 <li>Alibaba Mobile Security Group Baozeng Ding, Ning You, Chengming Yang, 487 Peng Xiao, Yang Song: CVE-2017-0463 488 <li>Android Billy Lau: CVE-2017-0335, CVE-2017-0336, CVE-2017-0338, 489 CVE-2017-0460 490 <li><a href="mailto:derrek.haxx (a] gmail.com">derrek</a>(<a href="https://twitter.com/derrekr6">@derrekr6</a>): CVE-2016-8413, 491 CVE-2016-8477, CVE-2017-0531 492 <li><a href="mailto:derrek.haxx (a] gmail.com">derrek</a>(<a href="https://twitter.com/derrekr6">@derrekr6</a>), <a href="mailto:sbauer (a] plzdonthack.me">Scott Bauer</a>(<a href="https://twitter.com/ScottyBauer1">@ScottyBauer1</a>): CVE-2017-0521 493 <li>Tencent KeenLab(<a href="https://twitter.com/keen_lab">@keen_lab</a>) 494 Di Shen(<a href="https://twitter.com/returnsme">@returnsme</a>): CVE-2017-0334, 495 CVE-2017-0456, CVE-2017-0457, CVE-2017-0525 496 <li><a href="http://www.ms509.com">MS509Team</a> En He(<a href="https://twitter.com/heeeeen4x">@heeeeen4x</a>), 497 Bo Liu: CVE-2017-0490 498 <li>Qihoo 360 Technology Co. Ltd. 499 IceSword Lab Gengjia Chen(<a href="https://twitter.com/chengjia4574">@chengjia4574</a>), 500 <a href="http://weibo.com/jfpan">pjf</a>: CVE-2017-0500, CVE-2017-0501, CVE-2017-0502, CVE-2017-0503, 501 CVE-2017-0509, CVE-2017-0524, CVE-2017-0529, CVE-2017-0536 502 <li>Qihoo 360 Technology Co. Ltd Alpha Team Hao Chen, Guang Gong: 503 CVE-2017-0453, CVE-2017-0461, CVE-2017-0464 504 <li>Sony Mobile Communications Inc. Hiroki Yamamoto, Fang Chen: 505 CVE-2017-0481 506 <li>IBM Security X-Force Sagi Kedmi, Roee Hay: CVE-2017-0510 507 <li><a href="https://skyeye.360safe.com">Qihoo 360 Skyeye Labs</a> Jianjun Dai(<a href="https://twitter.com/Jioun_dai">@Jioun_dai</a>): CVE-2017-0478 508 <li>Qihoo 360 IceSword Lab Jianqiang Zhao(<a href="https://twitter.com/jianqiangzhao">@jianqiangzhao</a>), <a href="http://weibo.com/jfpan">pjf</a>: CVE-2016-8416, 509 CVE-2016-8478, CVE-2017-0458, CVE-2017-0459, CVE-2017-0518, CVE-2017-0519, 510 CVE-2017-0533, CVE-2017-0534 511 <li><a href="http://c0reteam.org">C0RE Team</a> <a href="mailto:zlbzlb815 (a] 163.com">Lubo Zhang</a>, <a href="mailto:segfault5514 (a] gmail.com">Tong Lin</a>, <a href="mailto:computernik (a] gmail.com">Yuan-Tsung Lo</a>, Xuxian Jiang: CVE-2016-8479 512 <li>Google Makoto Onuki: CVE-2017-0491 513 <li><a href="http://c0reteam.org">C0RE Team</a> Mingjian Zhou(<a href="https://twitter.com/Mingjian_Zhou">@Mingjian_Zhou</a>), <a href="mailto:arnow117 (a] gmail.com">Hanxiang Wen</a>, Xuxian Jiang: CVE-2017-0479, CVE-2017-0480 514 <li>Nathan Crandall(<a href="https://twitter.com/natecray">@natecray</a>): 515 CVE-2017-0535 516 <li>Tesla Motors Product Security Team 517 Nathan Crandall(<a href="https://twitter.com/natecray">@natecray</a>): CVE-2017-0306 518 <li>Baidu X-Lab() Pengfei Ding(), Chenfu Bao(), 519 Lenx Wei(): CVE-2016-8417 520 <li>Tencent KeenLab Qidan He() 521 (<a href="https://twitter.com/flanker_hqd">@flanker_hqd</a>): CVE-2017-0337, CVE-2017-0476 522 <li>Qihoo 360 Qing Zhang, Singapore Institute of Technology(SIT) 523 Guangdong Bai: CVE-2017-0496 524 <li>Ant-financial Light-Year Security Lab() 525 Quhe, wanchouchou: CVE-2017-0522 526 <li>DarkMatter 527 Secure Communications <a href="mailto:keun-o.park (a] darkmatter.ae">Sahara</a>: CVE-2017-0528 528 <li>UC Santa Barbara 529 Shellphish Grill Team salls(<a href="https://twitter.com/chris_salls">@chris_salls</a>): CVE-2017-0505 530 <li><a href="mailto:sbauer (a] plzdonthack.me">Scott Bauer</a>(<a href="https://twitter.com/ScottyBauer1">@ScottyBauer1</a>): CVE-2017-0504, 531 CVE-2017-0516 532 <li>Sean Beaupre(beaups): CVE-2017-0455 533 <li>Trend Micro Seven Shen(<a href="https://twitter.com/lingtongshen">@lingtongshen</a>): 534 CVE-2017-0452 535 <li>Fujitsu Shinichi Matsumoto: CVE-2017-0498 536 <li><a href="http://www.byterev.com">ByteRev</a> <a href="mailto:smarques84 (a] gmail.com">Stphane Marques</a>: CVE-2017-0489 537 <li>Google Svetoslav Ganov: CVE-2017-0492 538 <li><a href="http://c0reteam.org">C0RE Team</a> <a href="mailto:segfault5514 (a] gmail.com">Tong Lin</a>, <a href="mailto:computernik (a] gmail.com">Yuan-Tsung Lo</a>, Xuxian Jiang: CVE-2017-0333 539 <li><a href="http://www.trendmicro.com">Trend Micro</a> <a href="http://blog.trendmicro.com/trendlabs-security-intelligence/category/mobile">Mobile 540 Threat Response Team</a> V.E.O(<a href="https://twitter.com/vysea">@VYSEa</a>): 541 CVE-2017-0466, CVE-2017-0467, CVE-2017-0468, CVE-2017-0469, CVE-2017-0470, 542 CVE-2017-0471, CVE-2017-0472, CVE-2017-0473, CVE-2017-0482, CVE-2017-0485, 543 CVE-2017-0486, CVE-2017-0487, CVE-2017-0494, CVE-2017-0495 544 <li>Ant-financial Light-Year Security Lab() 545 Wish Wu( )(<a href="https://twitter.com/wish_wu">@wish_wu</a>): CVE-2017-0477 546 <li>Qihoo 360 Technology Co. Ltd Vulpecker Team Yu Pan: CVE-2017-0517, 547 CVE-2017-0532 548 <li><a href="http://c0reteam.org">C0RE Team</a> <a href="mailto:computernik (a] gmail.com">Yuan-Tsung Lo</a>, 549 Xuxian Jiang: CVE-2017-0526, CVE-2017-0527 550 <li><a href="http://c0reteam.org">C0RE Team</a> Yuqi Lu(<a href="https://twitter.com/nikos233__">@nikos233</a>), <a href="mailto:vancouverdou (a] gmail.com">Wenke Dou</a>, <a href="mailto:shaodacheng2016 (a] gmail.com">Dacheng Shao</a>, Mingjian Zhou(<a href="https://twitter.com/Mingjian_Zhou">@Mingjian_Zhou</a>), 551 Xuxian Jiang: CVE-2017-0483</li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></ul> 552 553 <h2 id="2017-03-01-details">2017-03-01 554 </h2> 555 <p> 556 <a href="#2017-03-01-summary">2017-03-01 557 </a> 558 . , 559 CVE, , , Google , 560 AOSP ( ), . 561 AOSP ID 562 . 563 ID .</p> 564 565 566 <h3 id="rce-in-openssl-&-boringssl">OpenSSL & BoringSSL 567 </h3> 568 <p>OpenSSL BoringSSL 569 570 . 571 .</p> 572 573 <table> 574 <col width="18%"> 575 <col width="17%"> 576 <col width="10%"> 577 <col width="19%"> 578 <col width="18%"> 579 <col width="17%"> 580 <tr> 581 <th>CVE</th> 582 <th></th> 583 <th></th> 584 <th> Google </th> 585 <th> AOSP </th> 586 <th> </th> 587 </tr> 588 <tr> 589 <td>CVE-2016-2182</td> 590 <td><a href="https://android.googlesource.com/platform/external/boringssl/+/54bf62a81586d99d0a951ca3342d569b59e69b80"> 591 A-32096880</a></td> 592 <td></td> 593 <td></td> 594 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1</td> 595 <td>2016 8 5</td> 596 </tr> 597 </table> 598 599 600 <h3 id="rce-in-mediaserver-"> 601 </h3> 602 <p> 603 604 . 605 .</p> 606 607 <table> 608 <col width="18%"> 609 <col width="17%"> 610 <col width="10%"> 611 <col width="19%"> 612 <col width="18%"> 613 <col width="17%"> 614 <tr> 615 <th>CVE</th> 616 <th></th> 617 <th></th> 618 <th> Google </th> 619 <th> AOSP </th> 620 <th> </th> 621 </tr> 622 <tr> 623 <td>CVE-2017-0466</td> 624 <td><a href="https://android.googlesource.com/platform/external/libavc/+/c4f152575bd6d8cc6db1f89806e2ba1fd1bb314f">A-33139050</a> 625 [<a href="https://android.googlesource.com/platform/external/libavc/+/ec9ab83ac437d31f484a86643e2cc66db8efae4c">2</a>] 626 </td> 627 <td></td> 628 <td></td> 629 <td>6.0, 6.0.1, 7.0, 7.1.1</td> 630 <td>2016 11 25</td> 631 </tr> 632 <tr> 633 <td>CVE-2017-0467</td> 634 <td><a href="https://android.googlesource.com/platform/external/libavc/+/c4f152575bd6d8cc6db1f89806e2ba1fd1bb314f">A-33250932</a> 635 [<a href="https://android.googlesource.com/platform/external/libavc/+/fd9a12f9fdd9dd3e66c59dd7037e864b948085f7">2</a>] 636 </td> 637 <td></td> 638 <td></td> 639 <td>6.0, 6.0.1, 7.0, 7.1.1</td> 640 <td>2016 11 30</td> 641 </tr> 642 <tr> 643 <td>CVE-2017-0468</td> 644 <td><a href="https://android.googlesource.com/platform/external/libavc/+/0e8b1dff88e08b9d738d2360f05b96108e190995">A-33351708</a> 645 [<a href="https://android.googlesource.com/platform/external/libavc/+/fd9a12f9fdd9dd3e66c59dd7037e864b948085f7">2</a>] 646 </td> 647 <td></td> 648 <td></td> 649 <td>6.0, 6.0.1, 7.0, 7.1.1</td> 650 <td>2016 12 5</td> 651 </tr> 652 <tr> 653 <td>CVE-2017-0469</td> 654 <td><a href="https://android.googlesource.com/platform/external/libavc/+/21851eaecc814be709cb0c20f732cb858cfe1440"> 655 A-33450635</a></td> 656 <td></td> 657 <td></td> 658 <td>6.0, 6.0.1, 7.0, 7.1.1</td> 659 <td>2016 12 8</td> 660 </tr> 661 <tr> 662 <td>CVE-2017-0470</td> 663 <td><a href="https://android.googlesource.com/platform/external/libavc/+/6aac82003d665708b4e21e9b91693b642e2fa64f"> 664 A-33818500</a></td> 665 <td></td> 666 <td></td> 667 <td>6.0, 6.0.1, 7.0, 7.1.1</td> 668 <td>2016 12 21</td> 669 </tr> 670 <tr> 671 <td>CVE-2017-0471</td> 672 <td><a href="https://android.googlesource.com/platform/external/libavc/+/4a61d15e7b0ab979ba7e80db8ddbde025c1ce6cc"> 673 A-33816782</a></td> 674 <td></td> 675 <td></td> 676 <td>6.0, 6.0.1, 7.0, 7.1.1</td> 677 <td>2016 12 21</td> 678 </tr> 679 <tr> 680 <td>CVE-2017-0472</td> 681 <td><a href="https://android.googlesource.com/platform/external/libhevc/+/dfa7251ff270ae7e12a019e6735542e36b2a47e0"> 682 A-33862021</a></td> 683 <td></td> 684 <td></td> 685 <td>6.0, 6.0.1, 7.0, 7.1.1</td> 686 <td>2016 12 23</td> 687 </tr> 688 <tr> 689 <td>CVE-2017-0473</td> 690 <td><a href="https://android.googlesource.com/platform/external/libavc/+/0a4463e2beddb8290e05ad552e48b17686f854ce"> 691 A-33982658</a></td> 692 <td></td> 693 <td></td> 694 <td>6.0, 6.0.1, 7.0, 7.1.1</td> 695 <td>2016 12 30</td> 696 </tr> 697 <tr> 698 <td>CVE-2017-0474</td> 699 <td><a href="https://android.googlesource.com/platform/external/libvpx/+/6f5927de29337fa532c64d0ef8c7cb68f7c89889"> 700 A-32589224</a></td> 701 <td></td> 702 <td></td> 703 <td>7.0, 7.1.1</td> 704 <td>Google </td> 705 </tr> 706 </table> 707 708 <h3 id="eop-in-recovery-verifier"> 709 </h3> 710 <p> 711 712 . 713 , 714 .</p> 715 716 <table> 717 <col width="18%"> 718 <col width="17%"> 719 <col width="10%"> 720 <col width="19%"> 721 <col width="18%"> 722 <col width="17%"> 723 <tr> 724 <th>CVE</th> 725 <th></th> 726 <th></th> 727 <th> Google </th> 728 <th> AOSP </th> 729 <th> </th> 730 </tr> 731 <tr> 732 <td>CVE-2017-0475</td> 733 <td><a href="https://android.googlesource.com/platform/bootable/recovery/+/2c6c23f651abb3d215134dfba463eb72a5e9f8eb"> 734 A-31914369</a></td> 735 <td></td> 736 <td></td> 737 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1</td> 738 <td>2016 10 2</td> 739 </tr> 740 </table> 741 742 743 <h3 id="rce-in-aosp-messaging">AOSP 744 </h3> 745 <p>AOSP 746 747 . 748 .</p> 749 750 <table> 751 <col width="18%"> 752 <col width="17%"> 753 <col width="10%"> 754 <col width="19%"> 755 <col width="18%"> 756 <col width="17%"> 757 <tr> 758 <th>CVE</th> 759 <th></th> 760 <th></th> 761 <th> Google </th> 762 <th> AOSP </th> 763 <th> </th> 764 </tr> 765 <tr> 766 <td>CVE-2017-0476</td> 767 <td><a href="https://android.googlesource.com/platform/packages/apps/Messaging/+/8ba22b48ebff50311d7eaa8d512f9d507f0bdd0d"> 768 A-33388925</a></td> 769 <td></td> 770 <td></td> 771 <td>6.0, 6.0.1, 7.0, 7.1.1</td> 772 <td>2016 12 6</td> 773 </tr> 774 </table> 775 776 777 <h3 id="rce-in-libgdx">libgdx </h3> 778 <p>libgdx 779 780 . 781 .</p> 782 783 <table> 784 <col width="18%"> 785 <col width="17%"> 786 <col width="10%"> 787 <col width="19%"> 788 <col width="18%"> 789 <col width="17%"> 790 <tr> 791 <th>CVE</th> 792 <th></th> 793 <th></th> 794 <th> Google </th> 795 <th> AOSP </th> 796 <th> </th> 797 </tr> 798 <tr> 799 <td>CVE-2017-0477</td> 800 <td><a href="https://android.googlesource.com/platform/external/libgdx/+/fba04a52f43315cdb7dd38766822af0324eab7c5"> 801 A-33621647</a></td> 802 <td></td> 803 <td></td> 804 <td>7.1.1</td> 805 <td>2016 12 14</td> 806 </tr> 807 </table> 808 809 810 <h3 id="rce-in-framesequence-library">Framesequence 811 </h3> 812 <p>Framesequence 813 814 . Framesequence 815 816 .</p> 817 818 <table> 819 <col width="18%"> 820 <col width="17%"> 821 <col width="10%"> 822 <col width="19%"> 823 <col width="18%"> 824 <col width="17%"> 825 <tr> 826 <th>CVE</th> 827 <th></th> 828 <th></th> 829 <th> Google </th> 830 <th> AOSP </th> 831 <th> </th> 832 </tr> 833 <tr> 834 <td>CVE-2017-0478</td> 835 <td><a href="https://android.googlesource.com/platform/frameworks/ex/+/7c824f17b3eea976ca58be7ea097cb807126f73b"> 836 A-33718716</a></td> 837 <td></td> 838 <td></td> 839 <td>5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1</td> 840 <td>2016 12 16</td> 841 </tr> 842 </table> 843 844 <h3 id="eop-in-nfc">NFC </h3> 845 <p>NFC 846 . 847 848 849 .</p> 850 851 <table> 852 <col width="18%"> 853 <col width="17%"> 854 <col width="10%"> 855 <col width="19%"> 856 <col width="18%"> 857 <col width="17%"> 858 <tr> 859 <th>CVE</th> 860 <th></th> 861 <th></th> 862 <th> Google </th> 863 <th> AOSP </th> 864 <th> </th> 865 </tr> 866 <tr> 867 <td>CVE-2017-0481</td> 868 <td><a href="https://android.googlesource.com/platform/external/libnfc-nci/+/c67cc6ad2addddcb7185a33b08d27290ce54e350"> 869 A-33434992</a></td> 870 <td></td> 871 <td></td> 872 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1</td> 873 <td>2016 11 6</td> 874 </tr> 875 </table> 876 877 <h3 id="eop-in-audioserver"> 878 </h3> 879 <p> 880 881 . 882 883 .</p> 884 885 <table> 886 <col width="18%"> 887 <col width="17%"> 888 <col width="10%"> 889 <col width="19%"> 890 <col width="18%"> 891 <col width="17%"> 892 <tr> 893 <th>CVE</th> 894 <th></th> 895 <th></th> 896 <th> Google </th> 897 <th> AOSP </th> 898 <th> </th> 899 </tr> 900 <tr> 901 <td>CVE-2017-0479</td> 902 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/22e26d8ee73488c58ba3e7928e5da155151abfd0"> 903 A-32707507</a> 904 [<a href="https://android.googlesource.com/platform/frameworks/av/+/8415635765380be496da9b4578d8f134a527d86b">2</a>] 905 </td> 906 <td></td> 907 <td></td> 908 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1</td> 909 <td>2016 11 7</td> 910 </tr> 911 <tr> 912 <td>CVE-2017-0480</td> 913 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/22e26d8ee73488c58ba3e7928e5da155151abfd0"> 914 A-32705429</a> 915 [<a href="https://android.googlesource.com/platform/frameworks/av/+/8415635765380be496da9b4578d8f134a527d86b">2</a>] 916 </td> 917 <td></td> 918 <td></td> 919 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1</td> 920 <td>2016 11 7</td> 921 </tr> 922 </table> 923 924 925 <h3 id="dos-in-mediaserver"> (DoS) </h3> 926 <p> (DoS) 927 . 928 .</p> 929 930 <table> 931 <col width="18%"> 932 <col width="17%"> 933 <col width="10%"> 934 <col width="19%"> 935 <col width="18%"> 936 <col width="17%"> 937 <tr> 938 <th>CVE</th> 939 <th></th> 940 <th></th> 941 <th> Google </th> 942 <th> AOSP </th> 943 <th> </th> 944 </tr> 945 <tr> 946 <td>CVE-2017-0482</td> 947 <td><a href="https://android.googlesource.com/platform/external/libavc/+/ec9ab83ac437d31f484a86643e2cc66db8efae4c"> 948 A-33090864</a> 949 [<a href="https://android.googlesource.com/platform/external/libavc/+/0e8b1dff88e08b9d738d2360f05b96108e190995">2</a>] 950 [<a href="https://android.googlesource.com/platform/external/libavc/+/a467b1fb2956fdcee5636ab63573a4bca8150dbe">3</a>] 951 [<a href="https://android.googlesource.com/platform/external/libavc/+/3695b6bdaa183bb2852da06b63ebd5b9c2cace36">4</a>] 952 [<a href="https://android.googlesource.com/platform/external/libavc/+/c4f152575bd6d8cc6db1f89806e2ba1fd1bb314f">5</a>] 953 [<a href="https://android.googlesource.com/platform/external/libavc/+/fd9a12f9fdd9dd3e66c59dd7037e864b948085f7">6</a>]</td> 954 <td></td> 955 <td></td> 956 <td>6.0, 6.0.1, 7.0, 7.1.1</td> 957 <td>2016 11 22</td> 958 </tr> 959 <tr> 960 <td>CVE-2017-0483</td> 961 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/bc62c086e9ba7530723dc8874b83159f4d77d976"> 962 A-33137046</a> 963 [<a href="https://android.googlesource.com/platform/frameworks/av/+/5cabe32a59f9be1e913b6a07a23d4cfa55e3fb2f">2</a>]</td> 964 <td></td> 965 <td></td> 966 <td>5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1</td> 967 <td>2016 11 24</td> 968 </tr> 969 <tr> 970 <td>CVE-2017-0484</td> 971 <td><a href="https://android.googlesource.com/platform/external/libavc/+/fd9a12f9fdd9dd3e66c59dd7037e864b948085f7"> 972 A-33298089</a> 973 [<a href="https://android.googlesource.com/platform/external/libavc/+/a467b1fb2956fdcee5636ab63573a4bca8150dbe">2</a>]</td> 974 <td></td> 975 <td></td> 976 <td>6.0, 6.0.1, 7.0, 7.1.1</td> 977 <td>2016 12 1</td> 978 </tr> 979 <tr> 980 <td>CVE-2017-0485</td> 981 <td><a href="https://android.googlesource.com/platform/external/libavc/+/3695b6bdaa183bb2852da06b63ebd5b9c2cace36"> 982 A-33387820</a></td> 983 <td></td> 984 <td></td> 985 <td>6.0, 6.0.1, 7.0, 7.1.1</td> 986 <td>2016 12 6</td> 987 </tr> 988 <tr> 989 <td>CVE-2017-0486</td> 990 <td><a href="https://android.googlesource.com/platform/external/libavc/+/19814b7ad4ea6f0cc4cab34e50ebab2e180fc269"> 991 A-33621215</a></td> 992 <td></td> 993 <td></td> 994 <td>6.0, 6.0.1, 7.0, 7.1.1</td> 995 <td>2016 12 14</td> 996 </tr> 997 <tr> 998 <td>CVE-2017-0487</td> 999 <td><a href="https://android.googlesource.com/platform/external/libavc/+/aa78b96e842fc1fb70a18acff22be35c7a715b23"> 1000 A-33751193</a></td> 1001 <td></td> 1002 <td></td> 1003 <td>6.0, 6.0.1, 7.0, 7.1.1</td> 1004 <td>2016 12 19</td> 1005 </tr> 1006 <tr> 1007 <td>CVE-2017-0488</td> 1008 <td><a href="https://android.googlesource.com/platform/external/libavc/+/0340381cd8c220311fd4fe2e8b23e1534657e399"> 1009 A-34097213</a></td> 1010 <td></td> 1011 <td></td> 1012 <td>6.0, 6.0.1, 7.0, 7.1.1</td> 1013 <td>Google </td> 1014 </tr> 1015 </table> 1016 1017 <h3 id="eop-in-location-manager"> 1018 </h3> 1019 <p> 1020 1021 . 1022 .</p> 1023 1024 <table> 1025 <col width="18%"> 1026 <col width="17%"> 1027 <col width="10%"> 1028 <col width="19%"> 1029 <col width="18%"> 1030 <col width="17%"> 1031 <tr> 1032 <th>CVE</th> 1033 <th></th> 1034 <th></th> 1035 <th> Google </th> 1036 <th> AOSP </th> 1037 <th> </th> 1038 </tr> 1039 <tr> 1040 <td>CVE-2017-0489</td> 1041 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/d22261fef84481651e12995062105239d551cbc6"> 1042 A-33091107</a></td> 1043 <td></td> 1044 <td></td> 1045 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1</td> 1046 <td>2016 11 20</td> 1047 </tr> 1048 </table> 1049 1050 1051 <h3 id="eop-in-wi-fi">Wi-Fi </h3> 1052 <p>Wi-Fi 1053 . 1054 1055 . </p> 1056 1057 <table> 1058 <col width="18%"> 1059 <col width="17%"> 1060 <col width="10%"> 1061 <col width="19%"> 1062 <col width="18%"> 1063 <col width="17%"> 1064 <tr> 1065 <th>CVE</th> 1066 <th></th> 1067 <th></th> 1068 <th> Google </th> 1069 <th> AOSP </th> 1070 <th> </th> 1071 </tr> 1072 <tr> 1073 <td>CVE-2017-0490</td> 1074 <td><a href="https://android.googlesource.com/platform/packages/apps/CertInstaller/+/1166ca8adba9b49c9185dad11b28b02e72124d95"> 1075 A-33178389</a> 1076 [<a href="https://android.googlesource.com/platform/packages/apps/CertInstaller/+/1ad3b1e3256a226be362de1a4959f2a642d349b7">2</a>] 1077 [<a href="https://android.googlesource.com/platform/frameworks/opt/net/wifi/+/41c42f5bb544acf8bede2d05c6325657d92bd83c">3</a>] 1078 </td> 1079 <td></td> 1080 <td></td> 1081 <td>6.0, 6.0.1, 7.0, 7.1.1</td> 1082 <td>2016 11 25</td> 1083 </tr> 1084 </table> 1085 1086 1087 <h3 id="eop-in-package-manager"> 1088 </h3> 1089 <p> 1090 1091 . 1092 .</p> 1093 1094 <table> 1095 <col width="18%"> 1096 <col width="17%"> 1097 <col width="10%"> 1098 <col width="19%"> 1099 <col width="18%"> 1100 <col width="17%"> 1101 <tr> 1102 <th>CVE</th> 1103 <th></th> 1104 <th></th> 1105 <th> Google </th> 1106 <th> AOSP </th> 1107 <th> </th> 1108 </tr> 1109 <tr> 1110 <td>CVE-2017-0491</td> 1111 <td><a href="https://android.googlesource.com/platform/packages/apps/PackageInstaller/+/5c49b6bf732c88481466dea341917b8604ce53fa"> 1112 A-32553261</a> 1113 </td> 1114 <td></td> 1115 <td></td> 1116 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1</td> 1117 <td>Google </td> 1118 </tr> 1119 </table> 1120 1121 1122 <h3 id="eop-in-system-ui"> UI 1123 </h3> 1124 <p> UI 1125 UI . 1126 1127 1128 .</p> 1129 1130 <table> 1131 <col width="18%"> 1132 <col width="17%"> 1133 <col width="10%"> 1134 <col width="19%"> 1135 <col width="18%"> 1136 <col width="17%"> 1137 <tr> 1138 <th>CVE</th> 1139 <th></th> 1140 <th></th> 1141 <th> Google </th> 1142 <th> AOSP </th> 1143 <th> </th> 1144 </tr> 1145 <tr> 1146 <td>CVE-2017-0492</td> 1147 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/f4bed684c939b0f8809ef404b8609fe4ef849263"> 1148 A-30150688</a> 1149 </td> 1150 <td></td> 1151 <td></td> 1152 <td>7.1.1</td> 1153 <td>Google </td> 1154 </tr> 1155 </table> 1156 1157 1158 <h3 id="id-in-aosp-messaging">AOSP 1159 </h3> 1160 <p>AOSP 1161 1162 . 1163 .</p> 1164 1165 <table> 1166 <col width="18%"> 1167 <col width="17%"> 1168 <col width="10%"> 1169 <col width="19%"> 1170 <col width="18%"> 1171 <col width="17%"> 1172 <tr> 1173 <th>CVE</th> 1174 <th></th> 1175 <th></th> 1176 <th> Google </th> 1177 <th> AOSP </th> 1178 <th> </th> 1179 </tr> 1180 <tr> 1181 <td>CVE-2017-0494</td> 1182 <td><a href="https://android.googlesource.com/platform/packages/apps/Messaging/+/3f9821128abd66c4cd2f040d8243efb334bfad2d"> 1183 A-32764144</a></td> 1184 <td></td> 1185 <td></td> 1186 <td>6.0, 6.0.1, 7.0, 7.1.1</td> 1187 <td>2016 11 9</td> 1188 </tr> 1189 </table> 1190 1191 1192 <h3 id="id-in-mediaserver"> 1193 </h3> 1194 <p> 1195 . 1196 1197 .</p> 1198 1199 <table> 1200 <col width="18%"> 1201 <col width="17%"> 1202 <col width="10%"> 1203 <col width="19%"> 1204 <col width="18%"> 1205 <col width="17%"> 1206 <tr> 1207 <th>CVE</th> 1208 <th></th> 1209 <th></th> 1210 <th> Google </th> 1211 <th> AOSP </th> 1212 <th> </th> 1213 </tr> 1214 <tr> 1215 <td>CVE-2017-0495</td> 1216 <td><a href="https://android.googlesource.com/platform/external/libavc/+/85c0ec4106659a11c220cd1210f8d76c33d9e2ae"> 1217 A-33552073</a></td> 1218 <td></td> 1219 <td></td> 1220 <td>6.0, 6.0.1, 7.0, 7.1.1</td> 1221 <td>2016 12 11</td> 1222 </tr> 1223 </table> 1224 1225 1226 <h3 id="dos-in-setup-wizard"> (DoS) 1227 </h3> 1228 <p> 1229 . 1230 .</p> 1231 1232 <table> 1233 <col width="18%"> 1234 <col width="17%"> 1235 <col width="10%"> 1236 <col width="19%"> 1237 <col width="18%"> 1238 <col width="17%"> 1239 <tr> 1240 <th>CVE</th> 1241 <th></th> 1242 <th></th> 1243 <th> Google </th> 1244 <th> AOSP </th> 1245 <th> </th> 1246 </tr> 1247 <tr> 1248 <td>CVE-2017-0496</td> 1249 <td>A-31554152*</td> 1250 <td></td> 1251 <td>**</td> 1252 <td>5.0.2, 5.1.1, 6.0, 6.0.1</td> 1253 <td>2016 9 14</td> 1254 </tr> 1255 </table> 1256 <p>* . 1257 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Google 1258 .</p> 1259 <p>** Android 7.0 Google 1260 .</p> 1261 1262 <h3 id="dos-in-mediaserver-2"> (DoS) 1263 </h3> 1264 <p> (DoS) 1265 . 1266 .</p> 1267 1268 <table> 1269 <col width="18%"> 1270 <col width="17%"> 1271 <col width="10%"> 1272 <col width="19%"> 1273 <col width="18%"> 1274 <col width="17%"> 1275 <tr> 1276 <th>CVE</th> 1277 <th></th> 1278 <th></th> 1279 <th> Google </th> 1280 <th> AOSP </th> 1281 <th> </th> 1282 </tr> 1283 <tr> 1284 <td>CVE-2017-0497</td> 1285 <td><a href="https://android.googlesource.com/platform/external/skia/+/8888cbf8e74671d44e9ff92ec3847cd647b8cdfb"> 1286 A-33300701</a></td> 1287 <td></td> 1288 <td></td> 1289 <td>7.0, 7.1.1</td> 1290 <td>2016 12 2</td> 1291 </tr> 1292 </table> 1293 1294 1295 <h3 id="dos-in-setup-wizard-2"> (DoS) 1296 </h3> 1297 <p> 1298 Google . 1299 . </p> 1300 1301 <table> 1302 <col width="18%"> 1303 <col width="17%"> 1304 <col width="10%"> 1305 <col width="19%"> 1306 <col width="18%"> 1307 <col width="17%"> 1308 <tr> 1309 <th>CVE</th> 1310 <th></th> 1311 <th></th> 1312 <th> Google </th> 1313 <th> AOSP </th> 1314 <th> </th> 1315 </tr> 1316 <tr> 1317 <td>CVE-2017-0498</td> 1318 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/1c4d535d0806dbeb6d2fa5cea0373cbd9ab6d33b"> 1319 A-30352311</a> 1320 [<a href="https://android.googlesource.com/platform/frameworks/base/+/5f621b5b1549e8379aee05807652d5111382ccc6">2</a>] 1321 </td> 1322 <td></td> 1323 <td></td> 1324 <td>5.1.1, 6.0, 6.0.1, 7.0, 7.1.1</td> 1325 <td>Google </td> 1326 </tr> 1327 </table> 1328 1329 1330 <h3 id="dos-in-audioserver"> (DoS) </h3> 1331 <p> 1332 . 1333 .</p> 1334 1335 <table> 1336 <col width="18%"> 1337 <col width="17%"> 1338 <col width="10%"> 1339 <col width="19%"> 1340 <col width="18%"> 1341 <col width="17%"> 1342 <tr> 1343 <th>CVE</th> 1344 <th></th> 1345 <th></th> 1346 <th> Google </th> 1347 <th> AOSP </th> 1348 <th> </th> 1349 </tr> 1350 <tr> 1351 <td>CVE-2017-0499</td> 1352 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/22e26d8ee73488c58ba3e7928e5da155151abfd0"> 1353 A-32095713</a></td> 1354 <td></td> 1355 <td></td> 1356 <td>5.1.1, 6.0, 6.0.1, 7.0, 7.1.1</td> 1357 <td>2016 10 11</td> 1358 </tr> 1359 </table> 1360 1361 1362 <h2 id="2017-03-05-details">2017-03-05 1363 </h2> 1364 <p> 1365 <a href="#2017-03-05-summary">2017-03-05 1366 </a> 1367 . , 1368 CVE, , , Google , 1369 AOSP ( ), . 1370 AOSP ID 1371 . 1372 ID .</p> 1373 1374 1375 <h3 id="eop-in-mediatek-components">MediaTek 1376 </h3> 1377 <p>M4U , , , GPU , 1378 MediaTek 1379 1380 . 1381 , 1382 .</p> 1383 1384 <table> 1385 <col width="19%"> 1386 <col width="20%"> 1387 <col width="10%"> 1388 <col width="23%"> 1389 <col width="17%"> 1390 <tr> 1391 <th>CVE</th> 1392 <th></th> 1393 <th></th> 1394 <th> Google </th> 1395 <th> </th> 1396 </tr> 1397 <tr> 1398 <td>CVE-2017-0500</td> 1399 <td>A-28429685*<br> 1400 M-ALPS02710006</td> 1401 <td></td> 1402 <td>**</td> 1403 <td>2016 4 27</td> 1404 </tr> 1405 <tr> 1406 <td>CVE-2017-0501</td> 1407 <td>A-28430015*<br> 1408 M-ALPS02708983</td> 1409 <td></td> 1410 <td>**</td> 1411 <td>2016 4 27</td> 1412 </tr> 1413 <tr> 1414 <td>CVE-2017-0502</td> 1415 <td>A-28430164*<br> 1416 M-ALPS02710027</td> 1417 <td></td> 1418 <td>**</td> 1419 <td>2016 4 27</td> 1420 </tr> 1421 <tr> 1422 <td>CVE-2017-0503</td> 1423 <td>A-28449045*<br> 1424 M-ALPS02710075</td> 1425 <td></td> 1426 <td>**</td> 1427 <td>2016 4 28</td> 1428 </tr> 1429 <tr> 1430 <td>CVE-2017-0504</td> 1431 <td>A-30074628*<br> 1432 M-ALPS02829371</td> 1433 <td></td> 1434 <td>**</td> 1435 <td>2016 7 9</td> 1436 </tr> 1437 <tr> 1438 <td>CVE-2017-0505</td> 1439 <td>A-31822282*<br> 1440 M-ALPS02992041</td> 1441 <td></td> 1442 <td>**</td> 1443 <td>2016 9 28</td> 1444 </tr> 1445 <tr> 1446 <td>CVE-2017-0506</td> 1447 <td>A-32276718*<br> 1448 M-ALPS03006904</td> 1449 <td></td> 1450 <td>**</td> 1451 <td>2016 10 18</td> 1452 </tr> 1453 </table> 1454 <p>* . 1455 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1456 1457 1458 .</p> 1459 <p>** Android 7.0 Google 1460 .</p> 1461 1462 1463 <h3 id="eop-in-nvidia-gpu-driver">NVIDIA GPU 1464 </h3> 1465 <p>NVIDIA GPU 1466 1467 . 1468 , 1469 .</p> 1470 1471 <table> 1472 <col width="19%"> 1473 <col width="20%"> 1474 <col width="10%"> 1475 <col width="23%"> 1476 <col width="17%"> 1477 <tr> 1478 <th>CVE</th> 1479 <th></th> 1480 <th></th> 1481 <th> Google </th> 1482 <th> </th> 1483 </tr> 1484 <tr> 1485 <td>CVE-2017-0337</td> 1486 <td>A-31992762*<br> 1487 N-CVE-2017-0337</td> 1488 <td></td> 1489 <td>Pixel C</td> 1490 <td>2016 10 6</td> 1491 </tr> 1492 <tr> 1493 <td>CVE-2017-0338</td> 1494 <td>A-33057977*<br> 1495 N-CVE-2017-0338</td> 1496 <td></td> 1497 <td>Pixel C</td> 1498 <td>2016 11 21</td> 1499 </tr> 1500 <tr> 1501 <td>CVE-2017-0333</td> 1502 <td>A-33899363*<br> 1503 N-CVE-2017-0333</td> 1504 <td></td> 1505 <td>Pixel C</td> 1506 <td>2016 12 25</td> 1507 </tr> 1508 <tr> 1509 <td>CVE-2017-0306</td> 1510 <td>A-34132950*<br> 1511 N-CVE-2017-0306</td> 1512 <td></td> 1513 <td>Nexus 9</td> 1514 <td>2017 1 6</td> 1515 </tr> 1516 <tr> 1517 <td>CVE-2017-0335</td> 1518 <td>A-33043375*<br> 1519 N-CVE-2017-0335</td> 1520 <td></td> 1521 <td>Pixel C</td> 1522 <td>Google </td> 1523 </tr> 1524 </table> 1525 <p>* . 1526 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1527 1528 1529 .</p> 1530 1531 1532 <h3 id="eop-in-kernel-ion-subsystem"> ION 1533 </h3> 1534 <p> ION 1535 1536 . 1537 , 1538 .</p> 1539 1540 <table> 1541 <col width="19%"> 1542 <col width="20%"> 1543 <col width="10%"> 1544 <col width="23%"> 1545 <col width="17%"> 1546 <tr> 1547 <th>CVE</th> 1548 <th></th> 1549 <th></th> 1550 <th> Google </th> 1551 <th> </th> 1552 </tr> 1553 <tr> 1554 <td>CVE-2017-0507</td> 1555 <td>A-31992382*</td> 1556 <td></td> 1557 <td>Android One, Nexus 5X, Nexus 6, Nexus 6P, Nexus 9, Nexus Player, Pixel 1558 C, Pixel, Pixel XL</td> 1559 <td>2016 10 6</td> 1560 </tr> 1561 <tr> 1562 <td>CVE-2017-0508</td> 1563 <td>A-33940449*</td> 1564 <td></td> 1565 <td>Pixel C</td> 1566 <td>2016 12 28</td> 1567 </tr> 1568 </table> 1569 <p>* . 1570 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1571 1572 1573 .</p> 1574 1575 1576 <h3 id="eop-in-broadcom-wi-fi-driver">Broadcom Wi-Fi 1577 </h3> 1578 <p>Broadcom Wi-Fi 1579 1580 . 1581 , 1582 .</p> 1583 1584 <table> 1585 <col width="19%"> 1586 <col width="20%"> 1587 <col width="10%"> 1588 <col width="23%"> 1589 <col width="17%"> 1590 <tr> 1591 <th>CVE</th> 1592 <th></th> 1593 <th></th> 1594 <th> Google </th> 1595 <th> </th> 1596 </tr> 1597 <tr> 1598 <td>CVE-2017-0509</td> 1599 <td>A-32124445*<br> 1600 B-RB#110688</td> 1601 <td></td> 1602 <td>**</td> 1603 <td>2016 10 12</td> 1604 </tr> 1605 </table> 1606 <p>* . 1607 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1608 1609 1610 .</p> 1611 <p>** Android 7.0 Google 1612 .</p> 1613 1614 1615 <h3 id="eop-in-kernel-fiq-debugger"> FIQ 1616 </h3> 1617 <p> FIQ 1618 1619 . 1620 , 1621 .</p> 1622 1623 <table> 1624 <col width="19%"> 1625 <col width="20%"> 1626 <col width="10%"> 1627 <col width="23%"> 1628 <col width="17%"> 1629 <tr> 1630 <th>CVE</th> 1631 <th></th> 1632 <th></th> 1633 <th> Google </th> 1634 <th> </th> 1635 </tr> 1636 <tr> 1637 <td>CVE-2017-0510</td> 1638 <td>A-32402555*</td> 1639 <td></td> 1640 <td>Nexus 9</td> 1641 <td>2016 10 25</td> 1642 </tr> 1643 </table> 1644 <p>* . 1645 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1646 1647 1648 .</p> 1649 1650 1651 <h3 id="eop-in-qualcomm-gpu-driver">Qualcomm GPU 1652 </h3> 1653 <p>Qualcomm GPU 1654 1655 . 1656 , 1657 .</p> 1658 1659 <table> 1660 <col width="19%"> 1661 <col width="20%"> 1662 <col width="10%"> 1663 <col width="23%"> 1664 <col width="17%"> 1665 <tr> 1666 <th>CVE</th> 1667 <th></th> 1668 <th></th> 1669 <th> Google </th> 1670 <th> </th> 1671 </tr> 1672 <tr> 1673 <td>CVE-2016-8479</td> 1674 <td>A-31824853*<br> 1675 QC-CR#1093687</td> 1676 <td></td> 1677 <td>Android One, Nexus 5X, Nexus 6, Nexus 6P, Pixel, Pixel XL</td> 1678 <td>2016 9 29</td> 1679 </tr> 1680 </table> 1681 <p>* . 1682 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1683 1684 1685 .</p> 1686 1687 1688 <h3 id="eop-in-kernel-networking-subsystem"> 1689 </h3> 1690 <p> 1691 1692 . 1693 , 1694 .</p> 1695 1696 <table> 1697 <col width="19%"> 1698 <col width="20%"> 1699 <col width="10%"> 1700 <col width="23%"> 1701 <col width="17%"> 1702 <tr> 1703 <th>CVE</th> 1704 <th></th> 1705 <th></th> 1706 <th> Google </th> 1707 <th> </th> 1708 </tr> 1709 <tr> 1710 <td>CVE-2016-9806</td> 1711 <td>A-33393474<br> 1712 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=92964c79b357efd980812c4de5c1fd2ec8bb5520"> 1713 </a></td> 1714 <td></td> 1715 <td>Pixel C, Pixel, Pixel XL</td> 1716 <td>2016 12 4</td> 1717 </tr> 1718 <tr> 1719 <td>CVE-2016-10200</td> 1720 <td>A-33753815<br> 1721 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=32c231164b762dddefa13af5a0101032c70b50ef"> 1722 </a></td> 1723 <td></td> 1724 <td>Nexus 5X, Nexus 6P, Pixel, Pixel XL</td> 1725 <td>2016 12 19</td> 1726 </tr> 1727 </table> 1728 1729 1730 <h3 id="vulnerabilities-in-qualcomm-components">Qualcomm 1731 </h3> 1732 <p> Qualcomm Qualcomm AMSS 1733 2016 9 .</p> 1734 1735 <table> 1736 <col width="19%"> 1737 <col width="20%"> 1738 <col width="10%"> 1739 <col width="23%"> 1740 <col width="17%"> 1741 <tr> 1742 <th>CVE</th> 1743 <th></th> 1744 <th></th> 1745 <th> Google </th> 1746 <th> </th> 1747 </tr> 1748 <tr> 1749 <td>CVE-2016-8484</td> 1750 <td>A-28823575**</td> 1751 <td></td> 1752 <td>***</td> 1753 <td>Qualcomm </td> 1754 </tr> 1755 <tr> 1756 <td>CVE-2016-8485</td> 1757 <td>A-28823681**</td> 1758 <td></td> 1759 <td>***</td> 1760 <td>Qualcomm </td> 1761 </tr> 1762 <tr> 1763 <td>CVE-2016-8486</td> 1764 <td>A-28823691**</td> 1765 <td></td> 1766 <td>***</td> 1767 <td>Qualcomm </td> 1768 </tr> 1769 <tr> 1770 <td>CVE-2016-8487</td> 1771 <td>A-28823724**</td> 1772 <td></td> 1773 <td>***</td> 1774 <td>Qualcomm </td> 1775 </tr> 1776 <tr> 1777 <td>CVE-2016-8488</td> 1778 <td>A-31625756**</td> 1779 <td></td> 1780 <td>***</td> 1781 <td>Qualcomm </td> 1782 </tr> 1783 </table> 1784 <p>* .</p> 1785 <p>* . 1786 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1787 1788 1789 .</p> 1790 <p>*** Android 7.0 Google 1791 .</p> 1792 1793 1794 <h3 id="eop-in-kernel-networking-subsystem-2"> 1795 </h3> 1796 <p> 1797 1798 . 1799 .</p> 1800 1801 <table> 1802 <col width="19%"> 1803 <col width="20%"> 1804 <col width="10%"> 1805 <col width="23%"> 1806 <col width="17%"> 1807 <tr> 1808 <th>CVE</th> 1809 <th></th> 1810 <th></th> 1811 <th> Google </th> 1812 <th> </th> 1813 </tr> 1814 <tr> 1815 <td>CVE-2016-8655</td> 1816 <td>A-33358926<br> 1817 <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=84ac7260236a49c79eede91617700174c2c19b0c"> 1818 </a></td> 1819 <td></td> 1820 <td>Android One, Nexus 5X, Nexus 6, Nexus 6P, Nexus 9, Nexus Player, Pixel 1821 C, Pixel, Pixel XL</td> 1822 <td>2016 10 12</td> 1823 </tr> 1824 <tr> 1825 <td>CVE-2016-9793</td> 1826 <td>A-33363517<br> 1827 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=b98b0bc8c431e3ceb4b26b0dfc8db509518fb290"> 1828 </a></td> 1829 <td></td> 1830 <td>Android One, Nexus 5X, Nexus 6, Nexus 6P, Nexus 9, Nexus Player, Pixel 1831 C, Pixel, Pixel XL</td> 1832 <td>2016 12 2</td> 1833 </tr> 1834 </table> 1835 1836 1837 <h3 id="eop-in-qualcomm-input-hardware-driver">Qualcomm 1838 </h3> 1839 <p>Qualcomm 1840 1841 . 1842 .</p> 1843 1844 <table> 1845 <col width="19%"> 1846 <col width="20%"> 1847 <col width="10%"> 1848 <col width="23%"> 1849 <col width="17%"> 1850 <tr> 1851 <th>CVE</th> 1852 <th></th> 1853 <th></th> 1854 <th> Google </th> 1855 <th> </th> 1856 </tr> 1857 <tr> 1858 <td>CVE-2017-0516</td> 1859 <td>A-32341680*<br> 1860 QC-CR#1096301</td> 1861 <td></td> 1862 <td>Android One, Pixel, Pixel XL</td> 1863 <td>2016 10 21</td> 1864 </tr> 1865 </table> 1866 <p>* . 1867 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1868 1869 1870 .</p> 1871 1872 1873 <h3 id="eop-in-mediatek-hardware-sensor-driver">MediaTek 1874 </h3> 1875 <p>MediaTek 1876 1877 . 1878 .</p> 1879 1880 <table> 1881 <col width="19%"> 1882 <col width="20%"> 1883 <col width="10%"> 1884 <col width="23%"> 1885 <col width="17%"> 1886 <tr> 1887 <th>CVE</th> 1888 <th></th> 1889 <th></th> 1890 <th> Google </th> 1891 <th> </th> 1892 </tr> 1893 <tr> 1894 <td>CVE-2017-0517</td> 1895 <td>A-32372051*<br> 1896 M-ALPS02973195</td> 1897 <td></td> 1898 <td>**</td> 1899 <td>2016 10 22</td> 1900 </tr> 1901 </table> 1902 <p>* . 1903 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1904 1905 1906 .</p> 1907 <p>** Android 7.0 Google 1908 .</p> 1909 1910 1911 <h3 id="eop-in-qualcomm-adsprpc-driver">Qualcomm ADSPRPC 1912 </h3> 1913 <p>Qualcomm ADSPRPC 1914 1915 . 1916 .</p> 1917 1918 <table> 1919 <col width="19%"> 1920 <col width="20%"> 1921 <col width="10%"> 1922 <col width="23%"> 1923 <col width="17%"> 1924 <tr> 1925 <th>CVE</th> 1926 <th></th> 1927 <th></th> 1928 <th> Google </th> 1929 <th> </th> 1930 </tr> 1931 <tr> 1932 <td>CVE-2017-0457</td> 1933 <td>A-31695439*<br> 1934 QC-CR#1086123<br> 1935 QC-CR#1100695</td> 1936 <td></td> 1937 <td>Nexus 5X, Nexus 6P, Pixel, Pixel XL</td> 1938 <td>2016 9 22</td> 1939 </tr> 1940 </table> 1941 <p>* . 1942 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1943 1944 1945 .</p> 1946 1947 1948 <h3 id="eop-in-qualcomm-fingerprint-sensor-driver">Qualcomm 1949 </h3> 1950 <p>Qualcomm 1951 1952 . 1953 .</p> 1954 1955 <table> 1956 <col width="19%"> 1957 <col width="20%"> 1958 <col width="10%"> 1959 <col width="23%"> 1960 <col width="17%"> 1961 <tr> 1962 <th>CVE</th> 1963 <th></th> 1964 <th></th> 1965 <th> Google </th> 1966 <th> </th> 1967 </tr> 1968 <tr> 1969 <td>CVE-2017-0518</td> 1970 <td>A-32370896*<br> 1971 QC-CR#1086530</td> 1972 <td></td> 1973 <td>Pixel, Pixel XL</td> 1974 <td>2016 10 24</td> 1975 </tr> 1976 <tr> 1977 <td>CVE-2017-0519</td> 1978 <td>A-32372915*<br> 1979 QC-CR#1086530</td> 1980 <td></td> 1981 <td>Pixel, Pixel XL</td> 1982 <td>2016 10 24</td> 1983 </tr> 1984 </table> 1985 <p>* . 1986 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 1987 1988 1989 .</p> 1990 1991 1992 <h3 id="eop-in-qualcomm-crypto-engine-driver">Qualcomm 1993 </h3> 1994 <p>Qualcomm 1995 1996 . 1997 .</p> 1998 1999 <table> 2000 <col width="19%"> 2001 <col width="20%"> 2002 <col width="10%"> 2003 <col width="23%"> 2004 <col width="17%"> 2005 <tr> 2006 <th>CVE</th> 2007 <th></th> 2008 <th></th> 2009 <th> Google </th> 2010 <th> </th> 2011 </tr> 2012 <tr> 2013 <td>CVE-2017-0520</td> 2014 <td>A-31750232<br> 2015 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=eb2aad752c43f57e88ab9b0c3c5ee7b976ee31dd"> 2016 QC-CR#1082636</a></td> 2017 <td></td> 2018 <td>Nexus 5X, Nexus 6, Nexus 6P, Android One, Pixel, Pixel XL</td> 2019 <td>2016 9 24</td> 2020 </tr> 2021 </table> 2022 2023 2024 <h3 id="eop-in-qualcomm-camera-driver">Qualcomm 2025 </h3> 2026 <p>Qualcomm 2027 2028 . 2029 .</p> 2030 2031 <table> 2032 <col width="19%"> 2033 <col width="20%"> 2034 <col width="10%"> 2035 <col width="23%"> 2036 <col width="17%"> 2037 <tr> 2038 <th>CVE</th> 2039 <th></th> 2040 <th></th> 2041 <th> Google </th> 2042 <th> </th> 2043 </tr> 2044 <tr> 2045 <td>CVE-2017-0458</td> 2046 <td>A-32588962<br> 2047 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=eba46cb98431ba1d7a6bd859f26f6ad03f1bf4d4"> 2048 QC-CR#1089433</a></td> 2049 <td></td> 2050 <td>Pixel, Pixel XL</td> 2051 <td>2016 10 31</td> 2052 </tr> 2053 <tr> 2054 <td>CVE-2017-0521</td> 2055 <td>A-32919951<br> 2056 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=dbe4f26f200db10deaf38676b96d8738afcc10c8"> 2057 QC-CR#1097709</a></td> 2058 <td></td> 2059 <td>Nexus 5X, Nexus 6P, Android One, Pixel, Pixel XL</td> 2060 <td>2016 11 15</td> 2061 </tr> 2062 </table> 2063 2064 2065 <h3 id="eop-in-mediatek-apk">MediaTek APK 2066 </h3> 2067 <p>MediaTek APK 2068 2069 . 2070 .</p> 2071 2072 <table> 2073 <col width="19%"> 2074 <col width="20%"> 2075 <col width="10%"> 2076 <col width="23%"> 2077 <col width="17%"> 2078 <tr> 2079 <th>CVE</th> 2080 <th></th> 2081 <th></th> 2082 <th> Google </th> 2083 <th> </th> 2084 </tr> 2085 <tr> 2086 <td>CVE-2017-0522</td> 2087 <td>A-32916158*<br> 2088 M-ALPS03032516</td> 2089 <td></td> 2090 <td>**</td> 2091 <td>2016 11 15</td> 2092 </tr> 2093 </table> 2094 <p>* . 2095 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 2096 2097 2098 .</p> 2099 <p>** Android 7.0 Google 2100 .</p> 2101 2102 2103 <h3 id="eop-in-qualcomm-wi-fi-driver">Qualcomm Wi-Fi 2104 </h3> 2105 <p>Qualcomm Wi-Fi 2106 2107 . 2108 .</p> 2109 2110 <table> 2111 <col width="19%"> 2112 <col width="20%"> 2113 <col width="10%"> 2114 <col width="23%"> 2115 <col width="17%"> 2116 <tr> 2117 <th>CVE</th> 2118 <th></th> 2119 <th></th> 2120 <th> Google </th> 2121 <th> </th> 2122 </tr> 2123 <tr> 2124 <td>CVE-2017-0464</td> 2125 <td>A-32940193<br> 2126 <a href="https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-2.0/commit/?id=051597a4fe19fd1292fb7ea2e627d12d1fd2934f"> 2127 QC-CR#1102593</a></td> 2128 <td></td> 2129 <td>Nexus 5X, Pixel, Pixel XL</td> 2130 <td>2016 11 15</td> 2131 </tr> 2132 <tr> 2133 <td>CVE-2017-0453</td> 2134 <td>A-33979145<br> 2135 <a href="https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-2.0/commit/?id=05af1f34723939f477cb7d25adb320d016d68513"> 2136 QC-CR#1105085</a></td> 2137 <td></td> 2138 <td>Nexus 5X, Android One</td> 2139 <td>2016 12 30</td> 2140 </tr> 2141 <tr> 2142 <td>CVE-2017-0523</td> 2143 <td>A-32835279<br> 2144 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=5bb646471da76d3d5cd02cf3da7a03ce6e3cb582"> 2145 QC-CR#1096945</a></td> 2146 <td></td> 2147 <td>*</td> 2148 <td>Google </td> 2149 </tr> 2150 </table> 2151 <p>* Android 7.0 Google 2152 .</p> 2153 2154 2155 <h3 id="eop-in-synaptics-touchscreen-driver">Synaptics 2156 </h3> 2157 <p>Synaptics 2158 2159 . 2160 .</p> 2161 2162 <table> 2163 <col width="19%"> 2164 <col width="20%"> 2165 <col width="10%"> 2166 <col width="23%"> 2167 <col width="17%"> 2168 <tr> 2169 <th>CVE</th> 2170 <th></th> 2171 <th></th> 2172 <th> Google </th> 2173 <th> </th> 2174 </tr> 2175 <tr> 2176 <td>CVE-2017-0524</td> 2177 <td>A-33002026</td> 2178 <td></td> 2179 <td>Android One, Nexus 5X, Nexus 6P, Nexus 9, Pixel, Pixel XL</td> 2180 <td>2016 11 18</td> 2181 </tr> 2182 </table> 2183 <p>* . 2184 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 2185 2186 2187 .</p> 2188 2189 2190 <h3 id="eop-in-qualcomm-ipa-driver">Qualcomm IPA 2191 </h3> 2192 <p>Qualcomm IPA 2193 2194 . 2195 .</p> 2196 2197 <table> 2198 <col width="19%"> 2199 <col width="20%"> 2200 <col width="10%"> 2201 <col width="23%"> 2202 <col width="17%"> 2203 <tr> 2204 <th>CVE</th> 2205 <th></th> 2206 <th></th> 2207 <th> Google </th> 2208 <th> </th> 2209 </tr> 2210 <tr> 2211 <td>CVE-2017-0456</td> 2212 <td>A-33106520*<br> 2213 QC-CR#1099598</td> 2214 <td></td> 2215 <td>Nexus 5X, Nexus 6P, Android One, Pixel, Pixel XL</td> 2216 <td>2016 11 23</td> 2217 </tr> 2218 <tr> 2219 <td>CVE-2017-0525</td> 2220 <td>A-33139056*<br> 2221 QC-CR#1097714</td> 2222 <td></td> 2223 <td>Nexus 5X, Nexus 6P, Android One, Pixel, Pixel XL</td> 2224 <td>2016 11 25</td> 2225 </tr> 2226 </table> 2227 <p>* . 2228 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 2229 2230 2231 .</p> 2232 2233 2234 <h3 id="eop-in-htc-sensor-hub-driver">HTC 2235 </h3> 2236 <p>HTC 2237 2238 . 2239 .</p> 2240 2241 <table> 2242 <col width="19%"> 2243 <col width="20%"> 2244 <col width="10%"> 2245 <col width="23%"> 2246 <col width="17%"> 2247 <tr> 2248 <th>CVE</th> 2249 <th></th> 2250 <th></th> 2251 <th> Google </th> 2252 <th> </th> 2253 </tr> 2254 <tr> 2255 <td>CVE-2017-0526</td> 2256 <td>A-33897738*</td> 2257 <td></td> 2258 <td>Nexus 9</td> 2259 <td>2016 12 25</td> 2260 </tr> 2261 <tr> 2262 <td>CVE-2017-0527</td> 2263 <td>A-33899318*</td> 2264 <td></td> 2265 <td>Nexus 9, Pixel, Pixel XL</td> 2266 <td>2016 12 25</td> 2267 </tr> 2268 </table> 2269 <p>* . 2270 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 2271 2272 2273 .</p> 2274 2275 2276 <h3 id="eop-in-nvidia-gpu-driver-2">NVIDIA GPU 2277 </h3> 2278 <p>NVIDIA GPU 2279 2280 . 2281 , 2282 .</p> 2283 2284 <table> 2285 <col width="19%"> 2286 <col width="20%"> 2287 <col width="10%"> 2288 <col width="23%"> 2289 <col width="17%"> 2290 <tr> 2291 <th>CVE</th> 2292 <th></th> 2293 <th></th> 2294 <th> Google </th> 2295 <th> </th> 2296 </tr> 2297 <tr> 2298 <td>CVE-2017-0307</td> 2299 <td>A-33177895*<br> 2300 N-CVE-2017-0307</td> 2301 <td></td> 2302 <td>**</td> 2303 <td>2016 11 28</td> 2304 </tr> 2305 </table> 2306 <p>* . 2307 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 2308 2309 2310 .</p> 2311 <p>** Android 7.0 Google 2312 .</p> 2313 2314 2315 <h3 id="eop-in-qualcomm-networking-driver">Qualcomm 2316 </h3> 2317 <p>Qualcomm 2318 2319 . 2320 .</p> 2321 2322 <table> 2323 <col width="19%"> 2324 <col width="20%"> 2325 <col width="10%"> 2326 <col width="23%"> 2327 <col width="17%"> 2328 <tr> 2329 <th>CVE</th> 2330 <th></th> 2331 <th></th> 2332 <th> Google </th> 2333 <th> </th> 2334 </tr> 2335 <tr> 2336 <td>CVE-2017-0463</td> 2337 <td>A-33277611<br> 2338 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=955bd7e7ac097bdffbadafab90e5378038fefeb2"> 2339 QC-CR#1101792</a></td> 2340 <td></td> 2341 <td>Nexus 5X, Nexus 6, Nexus 6P, Android One, Pixel, Pixel XL</td> 2342 <td>2016 11 30</td> 2343 </tr> 2344 <tr> 2345 <td>CVE-2017-0460 </td> 2346 <td>A-31252965*<br> 2347 QC-CR#1098801</td> 2348 <td></td> 2349 <td>Nexus 5X, Nexus 6, Nexus 6P, Nexus 9, Android One, Pixel, Pixel XL</td> 2350 <td>Google </td> 2351 </tr> 2352 </table> 2353 <p>* . 2354 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 2355 2356 2357 .</p> 2358 2359 2360 <h3 id="eop-in-kernel-security-subsystem"> 2361 </h3> 2362 <p> 2363 2364 . 2365 .</p> 2366 2367 <table> 2368 <col width="19%"> 2369 <col width="20%"> 2370 <col width="10%"> 2371 <col width="23%"> 2372 <col width="17%"> 2373 <tr> 2374 <th>CVE</th> 2375 <th></th> 2376 <th></th> 2377 <th> Google </th> 2378 <th> </th> 2379 </tr> 2380 <tr> 2381 <td>CVE-2017-0528</td> 2382 <td>A-33351919*</td> 2383 <td></td> 2384 <td>Pixel, Pixel XL</td> 2385 <td>2016 12 4</td> 2386 </tr> 2387 </table> 2388 <p>* . 2389 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 2390 2391 2392 .</p> 2393 2394 2395 <h3 id="eop-in-qualcomm-spcom-driver">Qualcomm SPCom 2396 </h3> 2397 <p>Qualcomm SPCom 2398 2399 . 2400 .</p> 2401 2402 <table> 2403 <col width="19%"> 2404 <col width="20%"> 2405 <col width="10%"> 2406 <col width="23%"> 2407 <col width="17%"> 2408 <tr> 2409 <th>CVE</th> 2410 <th></th> 2411 <th></th> 2412 <th> Google </th> 2413 <th> </th> 2414 </tr> 2415 <tr> 2416 <td>CVE-2016-5856</td> 2417 <td>A-32610665<br> 2418 <a href="https://source.codeaurora.org/quic/la/kernel/msm-4.4/commit/?id=0c0622914ba53cdcb6e79e85f64bfdf7762c0368"> 2419 QC-CR#1094078</a></td> 2420 <td></td> 2421 <td>*</td> 2422 <td>Google </td> 2423 </tr> 2424 <tr> 2425 <td>CVE-2016-5857</td> 2426 <td>A-34386529<br> 2427 <a href="https://source.codeaurora.org/quic/la/kernel/msm-4.4/commit/?id=d9d2c405d46ca27b25ed55a8dbd02bd1e633e2d5"> 2428 QC-CR#1094140</a></td> 2429 <td></td> 2430 <td>*</td> 2431 <td>Google </td> 2432 </tr> 2433 </table> 2434 <p>* Android 7.0 Google 2435 .</p> 2436 2437 2438 <h3 id="id-in-kernel-networking-subsystem"> 2439 </h3> 2440 <p> 2441 2442 . 2443 .</p> 2444 2445 <table> 2446 <col width="19%"> 2447 <col width="20%"> 2448 <col width="10%"> 2449 <col width="23%"> 2450 <col width="17%"> 2451 <tr> 2452 <th>CVE</th> 2453 <th></th> 2454 <th></th> 2455 <th> Google </th> 2456 <th> </th> 2457 </tr> 2458 <tr> 2459 <td>CVE-2014-8709</td> 2460 <td>A-34077221<br> 2461 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=338f977f4eb441e69bb9a46eaa0ac715c931a67f"> 2462 </a></td> 2463 <td></td> 2464 <td>Nexus Player</td> 2465 <td>2014 11 9</td> 2466 </tr> 2467 </table> 2468 2469 2470 <h3 id="id-in-mediatek-driver">MediaTek 2471 </h3> 2472 <p>MediaTek 2473 . 2474 2475 .</p> 2476 2477 <table> 2478 <col width="19%"> 2479 <col width="20%"> 2480 <col width="10%"> 2481 <col width="23%"> 2482 <col width="17%"> 2483 <tr> 2484 <th>CVE</th> 2485 <th></th> 2486 <th></th> 2487 <th> Google </th> 2488 <th> </th> 2489 </tr> 2490 <tr> 2491 <td>CVE-2017-0529</td> 2492 <td>A-28449427*<br> 2493 M-ALPS02710042</td> 2494 <td></td> 2495 <td>**</td> 2496 <td>2016 4 27</td> 2497 </tr> 2498 </table> 2499 <p>* . 2500 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 2501 2502 2503 .</p> 2504 <p>** Android 7.0 Google 2505 .</p> 2506 2507 2508 <h3 id="id-in-qualcomm-bootloader">Qualcomm 2509 </h3> 2510 <p>Qualcomm 2511 2512 . 2513 2514 .</p> 2515 2516 <table> 2517 <col width="19%"> 2518 <col width="20%"> 2519 <col width="10%"> 2520 <col width="23%"> 2521 <col width="17%"> 2522 <tr> 2523 <th>CVE</th> 2524 <th></th> 2525 <th></th> 2526 <th> Google </th> 2527 <th> </th> 2528 </tr> 2529 <tr> 2530 <td>CVE-2017-0455</td> 2531 <td>A-32370952<br> 2532 <a href="https://source.codeaurora.org/quic/la/kernel/lk/commit/?id=2c00928b4884fdb0b1661bcc530d7e68c9561a2f"> 2533 QC-CR#1082755</a></td> 2534 <td></td> 2535 <td>Pixel, Pixel XL</td> 2536 <td>2016 10 21</td> 2537 </tr> 2538 </table> 2539 2540 2541 <h3 id="id-in-qualcomm-power-driver">Qualcomm 2542 </h3> 2543 <p>Qualcomm 2544 2545 . 2546 .</p> 2547 2548 <table> 2549 <col width="19%"> 2550 <col width="20%"> 2551 <col width="10%"> 2552 <col width="23%"> 2553 <col width="17%"> 2554 <tr> 2555 <th>CVE</th> 2556 <th></th> 2557 <th></th> 2558 <th> Google </th> 2559 <th> </th> 2560 </tr> 2561 <tr> 2562 <td>CVE-2016-8483</td> 2563 <td>A-33745862<br> 2564 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=6997dcb7ade1315474855821e64782205cb0b53a"> 2565 QC-CR#1035099</a></td> 2566 <td></td> 2567 <td>Nexus 5X, Nexus 6P</td> 2568 <td>2016 12 19</td> 2569 </tr> 2570 </table> 2571 2572 2573 <h3 id="id-in-nvidia-gpu-driver">NVIDIA GPU 2574 </h3> 2575 <p>NVIDIA GPU 2576 . 2577 2578 .</p> 2579 2580 <table> 2581 <col width="19%"> 2582 <col width="20%"> 2583 <col width="10%"> 2584 <col width="23%"> 2585 <col width="17%"> 2586 <tr> 2587 <th>CVE</th> 2588 <th></th> 2589 <th></th> 2590 <th> Google </th> 2591 <th> </th> 2592 </tr> 2593 <tr> 2594 <td>CVE-2017-0334</td> 2595 <td>A-33245849*<br> 2596 N-CVE-2017-0334</td> 2597 <td></td> 2598 <td>Pixel C</td> 2599 <td>2016 11 30</td> 2600 </tr> 2601 <tr> 2602 <td>CVE-2017-0336</td> 2603 <td>A-33042679*<br> 2604 N-CVE-2017-0336</td> 2605 <td></td> 2606 <td>Pixel C</td> 2607 <td>Google </td> 2608 </tr> 2609 </table> 2610 <p>* . 2611 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 2612 2613 2614 .</p> 2615 2616 2617 <h3 id="dos-in-kernel-cryptographic-subsystem"> 2618 (DoS) </h3> 2619 <p> 2620 2621 . 2622 .</p> 2623 2624 <table> 2625 <col width="19%"> 2626 <col width="20%"> 2627 <col width="10%"> 2628 <col width="23%"> 2629 <col width="17%"> 2630 <tr> 2631 <th>CVE</th> 2632 <th></th> 2633 <th></th> 2634 <th> Google </th> 2635 <th> </th> 2636 </tr> 2637 <tr> 2638 <td>CVE-2016-8650</td> 2639 <td>A-33401771<br> 2640 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=f5527fffff3f002b0a6b376163613b82f69de073"> 2641 </a></td> 2642 <td></td> 2643 <td>Nexus 5X, Nexus 6P, Pixel, Pixel XL</td> 2644 <td>2016 10 12</td> 2645 </tr> 2646 </table> 2647 2648 2649 <h3 id="eop-in-qualcomm-camera-driver-(device-specific)">Qualcomm 2650 ( )</h3> 2651 <p>Qualcomm 2652 2653 . 2654 2655 .</p> 2656 2657 <table> 2658 <col width="19%"> 2659 <col width="20%"> 2660 <col width="10%"> 2661 <col width="23%"> 2662 <col width="17%"> 2663 <tr> 2664 <th>CVE</th> 2665 <th></th> 2666 <th></th> 2667 <th> Google </th> 2668 <th> </th> 2669 </tr> 2670 <tr> 2671 <td>CVE-2016-8417</td> 2672 <td>A-32342399<br> 2673 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?id=01dcc0a7cc23f23a89adf72393d5a27c6d576cd0"> 2674 QC-CR#1088824</a></td> 2675 <td></td> 2676 <td>Nexus 5X, Nexus 6, Nexus 6P, Android One, Pixel, Pixel XL</td> 2677 <td>2016 10 21</td> 2678 </tr> 2679 </table> 2680 2681 2682 <h3 id="id-in-qualcomm-wi-fi-driver">Qualcomm Wi-Fi 2683 </h3> 2684 <p>Qualcomm Wi-Fi 2685 2686 . 2687 .</p> 2688 2689 <table> 2690 <col width="19%"> 2691 <col width="20%"> 2692 <col width="10%"> 2693 <col width="23%"> 2694 <col width="17%"> 2695 <tr> 2696 <th>CVE</th> 2697 <th></th> 2698 <th></th> 2699 <th> Google </th> 2700 <th> </th> 2701 </tr> 2702 <tr> 2703 <td>CVE-2017-0461</td> 2704 <td>A-32073794<br> 2705 <a href="https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-2.0/commit/?id=ce5d6f84420a2e6ca6aad6b866992970dd313a65"> 2706 QC-CR#1100132</a></td> 2707 <td></td> 2708 <td>Android One, Nexus 5X, Pixel, Pixel XL</td> 2709 <td>2016 10 9</td> 2710 </tr> 2711 <tr> 2712 <td>CVE-2017-0459</td> 2713 <td>A-32644895<br> 2714 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?h=rel/msm-3.18&id=ffacf6e2dc41b6063c3564791ed7a2f903e7e3b7"> 2715 QC-CR#1091939</a></td> 2716 <td></td> 2717 <td>Pixel, Pixel XL</td> 2718 <td>2016 11 3</td> 2719 </tr> 2720 <tr> 2721 <td>CVE-2017-0531</td> 2722 <td>A-32877245<br> 2723 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=530f3a0fd837ed105eddaf99810bc13d97dc4302"> 2724 QC-CR#1087469</a></td> 2725 <td></td> 2726 <td>Android One, Nexus 5X, Nexus 6P, Pixel, Pixel XL</td> 2727 <td>2016 11 13</td> 2728 </tr> 2729 </table> 2730 2731 2732 <h3 id="id-in-mediatek-video-codec-driver">MediaTek 2733 </h3> 2734 <p>MediaTek 2735 2736 . 2737 .</p> 2738 2739 <table> 2740 <col width="19%"> 2741 <col width="20%"> 2742 <col width="10%"> 2743 <col width="23%"> 2744 <col width="17%"> 2745 <tr> 2746 <th>CVE</th> 2747 <th></th> 2748 <th></th> 2749 <th> Google </th> 2750 <th> </th> 2751 </tr> 2752 <tr> 2753 <td>CVE-2017-0532</td> 2754 <td>A-32370398*<br> 2755 M-ALPS03069985</td> 2756 <td></td> 2757 <td>**</td> 2758 <td>2016 10 22</td> 2759 </tr> 2760 </table> 2761 <p>* . 2762 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 2763 2764 2765 .</p> 2766 <p>** Android 7.0 Google 2767 .</p> 2768 2769 2770 <h3 id="id-in-qualcomm-video-driver">Qualcomm 2771 </h3> 2772 <p>Qualcomm 2773 2774 . 2775 .</p> 2776 2777 <table> 2778 <col width="19%"> 2779 <col width="20%"> 2780 <col width="10%"> 2781 <col width="23%"> 2782 <col width="17%"> 2783 <tr> 2784 <th>CVE</th> 2785 <th></th> 2786 <th></th> 2787 <th> Google </th> 2788 <th> </th> 2789 </tr> 2790 <tr> 2791 <td>CVE-2017-0533</td> 2792 <td>A-32509422<br> 2793 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=e3af5e89426f1c8d4e703d415eff5435b925649f"> 2794 QC-CR#1088206</a></td> 2795 <td></td> 2796 <td>Pixel, Pixel XL</td> 2797 <td>2016 10 27</td> 2798 </tr> 2799 <tr> 2800 <td>CVE-2017-0534</td> 2801 <td>A-32508732<br> 2802 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=e3af5e89426f1c8d4e703d415eff5435b925649f"> 2803 QC-CR#1088206</a></td> 2804 <td></td> 2805 <td>Pixel, Pixel XL</td> 2806 <td>2016 10 28</td> 2807 </tr> 2808 <tr> 2809 <td>CVE-2016-8416</td> 2810 <td>A-32510746<br> 2811 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=e3af5e89426f1c8d4e703d415eff5435b925649f"> 2812 QC-CR#1088206</a></td> 2813 <td></td> 2814 <td>Pixel, Pixel XL</td> 2815 <td>2016 10 28</td> 2816 </tr> 2817 <tr> 2818 <td>CVE-2016-8478</td> 2819 <td>A-32511270<br> 2820 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=e3af5e89426f1c8d4e703d415eff5435b925649f"> 2821 QC-CR#1088206</a></td> 2822 <td></td> 2823 <td>Pixel, Pixel XL</td> 2824 <td>2016 10 28</td> 2825 </tr> 2826 </table> 2827 2828 2829 <h3 id="id-in-qualcomm-camera-driver">Qualcomm 2830 </h3> 2831 <p>Qualcomm 2832 2833 . 2834 .</p> 2835 2836 <table> 2837 <col width="19%"> 2838 <col width="20%"> 2839 <col width="10%"> 2840 <col width="23%"> 2841 <col width="17%"> 2842 <tr> 2843 <th>CVE</th> 2844 <th></th> 2845 <th></th> 2846 <th> Google </th> 2847 <th> </th> 2848 </tr> 2849 <tr> 2850 <td>CVE-2016-8413</td> 2851 <td>A-32709702<br> 2852 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?id=bc77232707df371ff6bab9350ae39676535c0e9d"> 2853 QC-CR#518731</a></td> 2854 <td></td> 2855 <td>Nexus 5X, Nexus 6, Nexus 6P, Android One, Pixel, Pixel XL</td> 2856 <td>2016 11 4</td> 2857 </tr> 2858 <tr> 2859 <td>CVE-2016-8477</td> 2860 <td>A-32720522<br> 2861 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?id=33c9042e38506b04461fa99e304482bc20923508"> 2862 QC-CR#1090007</a> 2863 [<a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=96145eb5f0631f0e105d47abebc8f940f7621eeb">2</a>]</td> 2864 <td></td> 2865 <td>Nexus 5X, Nexus 6, Nexus 6P, Android One, Pixel, Pixel XL</td> 2866 <td>2016 11 7</td> 2867 </tr> 2868 </table> 2869 2870 2871 <h3 id="id-in-htc-sound-codec-driver">HTC 2872 </h3> 2873 <p>HTC 2874 2875 . 2876 .</p> 2877 2878 <table> 2879 <col width="19%"> 2880 <col width="20%"> 2881 <col width="10%"> 2882 <col width="23%"> 2883 <col width="17%"> 2884 <tr> 2885 <th>CVE</th> 2886 <th></th> 2887 <th></th> 2888 <th> Google </th> 2889 <th> </th> 2890 </tr> 2891 <tr> 2892 <td>CVE-2017-0535</td> 2893 <td>A-33547247*</td> 2894 <td></td> 2895 <td>Nexus 9</td> 2896 <td>2016 12 11</td> 2897 </tr> 2898 </table> 2899 <p>* . 2900 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 2901 2902 2903 .</p> 2904 2905 2906 <h3 id="id-in-synaptics-touchscreen-driver">Synaptics 2907 </h3> 2908 <p>Synaptics 2909 2910 . 2911 .</p> 2912 2913 <table> 2914 <col width="19%"> 2915 <col width="20%"> 2916 <col width="10%"> 2917 <col width="23%"> 2918 <col width="17%"> 2919 <tr> 2920 <th>CVE</th> 2921 <th></th> 2922 <th></th> 2923 <th> Google </th> 2924 <th> </th> 2925 </tr> 2926 <tr> 2927 <td>CVE-2017-0536</td> 2928 <td>A-33555878*</td> 2929 <td></td> 2930 <td>Android One, Nexus 5X, Nexus 6P, Nexus 9, Pixel, Pixel XL</td> 2931 <td>2016 12 12</td> 2932 </tr> 2933 </table> 2934 <p>* . 2935 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 2936 2937 2938 .</p> 2939 2940 2941 <h3 id="id-in-kernel-usb-gadget-driver"> USB 2942 </h3> 2943 <p> USB 2944 2945 . 2946 .</p> 2947 2948 <table> 2949 <col width="19%"> 2950 <col width="20%"> 2951 <col width="10%"> 2952 <col width="23%"> 2953 <col width="17%"> 2954 <tr> 2955 <th>CVE</th> 2956 <th></th> 2957 <th></th> 2958 <th> Google </th> 2959 <th> </th> 2960 </tr> 2961 <tr> 2962 <td>CVE-2017-0537</td> 2963 <td>A-31614969*</td> 2964 <td></td> 2965 <td>Pixel C</td> 2966 <td>Google </td> 2967 </tr> 2968 </table> 2969 <p>* . 2970 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 2971 2972 2973 .</p> 2974 2975 2976 <h3 id="id-in-qualcomm-camera-driver-2">Qualcomm 2977 </h3> 2978 <p>Qualcomm 2979 2980 . 2981 .</p> 2982 2983 <table> 2984 <col width="19%"> 2985 <col width="20%"> 2986 <col width="10%"> 2987 <col width="23%"> 2988 <col width="17%"> 2989 <tr> 2990 <th>CVE</th> 2991 <th></th> 2992 <th></th> 2993 <th> Google </th> 2994 <th> </th> 2995 </tr> 2996 <tr> 2997 <td>CVE-2017-0452</td> 2998 <td>A-32873615*<br> 2999 QC-CR#1093693</td> 3000 <td></td> 3001 <td>Nexus 5X, Nexus 6P, Android One</td> 3002 <td>2016 11 10</td> 3003 </tr> 3004 </table> 3005 <p>* . 3006 <a href="https://developers.google.com/android/nexus/drivers">Google </a> Nexus 3007 3008 3009 .</p> 3010 <h2 id="common-questions-and-answers"> </h2> 3011 <p> .</p> 3012 <p><strong>1. ? 3013 </strong></p> 3014 <p> 3015 <a href="https://support.google.com/pixelphone/answer/4457705#pixel_phones&nexus_devices">Pixel Nexus </a> 3016 .</p> 3017 <ul> 3018 <li>2017-03-01 2017-03-01 3019 .</li> 3020 <li>2017-03-05 3021 2017-03-05 . 3022 </li> 3023 </ul> 3024 <p> 3025 .</p> 3026 <ul> 3027 <li>[ro.build.version.security_patch]:[2017-03-01]</li> 3028 <li>[ro.build.version.security_patch]:[2017-03-05]</li> 3029 </ul> 3030 <p><strong>2 ?</strong></p> 3031 <p> Android Android 3032 3033 . Android 3034 .</p> 3035 <ul> 3036 <li>2017 3 1 3037 3038 .</li> 3039 <li>2017 3 5 3040 3041 .</li> 3042 </ul> 3043 <p> .</p> 3044 <p><strong>3. Google ?</strong></p> 3045 <p><a href="#2017-03-01-details">2017-03-01</a> 3046 <a href="#2017-03-05-details">2017-03-05</a> 3047 <em> Google 3048 </em> . 3049 Google . .</p> 3050 <ul> 3051 <li><strong> Google </strong>: Google Pixel 3052 , <em> Google </em> 3053 '' . '' <a href="https://support.google.com/pixelphone/answer/4457705#pixel_phones&nexus_devices"> </a> 3054 . Nexus 5X, Nexus 6, Nexus 6P, Nexus 7(2013), Nexus 9, 3055 Android One, Nexus Player, Pixel C, Pixel, Pixel XL.</li> 3056 <li><strong> Google </strong>: Google 3057 , Google <em> Google </em> 3058 .</li> 3059 <li><strong>Google </strong>: Android 7.0 Google 3060 , <em> Google </em> '' 3061 . </li> 3062 </ul> 3063 <p><strong>4. ?</strong></p> 3064 <p> <em></em> 3065 . 3066 .</p> 3067 <table> 3068 <tr> 3069 <th></th> 3070 <th> </th> 3071 </tr> 3072 <tr> 3073 <td>A-</td> 3074 <td>Android ID</td> 3075 </tr> 3076 <tr> 3077 <td>QC-</td> 3078 <td>Qualcomm </td> 3079 </tr> 3080 <tr> 3081 <td>M-</td> 3082 <td>MediaTek </td> 3083 </tr> 3084 <tr> 3085 <td>N-</td> 3086 <td>NVIDIA </td> 3087 </tr> 3088 <tr> 3089 <td>B-</td> 3090 <td>Broadcom </td> 3091 </tr> 3092 </table> 3093 <h2 id="revisions"> </h2> 3094 <ul> 3095 <li>2017 3 6: </li> 3096 <li>2017 3 7: AOSP </li> 3097 </ul> 3098 </body> 3099 </html> 3100
