1 <html devsite> 2 <head> 3 <title> Nexus 2016.</title> 4 <meta name="project_path" value="/_project.yaml" /> 5 <meta name="book_path" value="/_book.yaml" /> 6 </head> 7 <body> 8 <!-- 9 Copyright 2017 The Android Open Source Project 10 11 Licensed under the Apache License, Version 2.0 (the "License"); 12 you may not use this file except in compliance with the License. 13 You may obtain a copy of the License at 14 15 http://www.apache.org/licenses/LICENSE-2.0 16 17 Unless required by applicable law or agreed to in writing, software 18 distributed under the License is distributed on an "AS IS" BASIS, 19 WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 20 See the License for the specific language governing permissions and 21 limitations under the License. 22 --> 23 24 25 26 <p><em> 1 2016. | 7 2016.</em></p> 27 28 <p> Android 29 Nexus 30 31 Nexus <a href="https://developers.google.com/android/nexus/images"> </a>. 32 33 LMY49G , 34 AndroidM 1 2016 . , 35 , 36 <a href="https://support.google.com/nexus/answer/4457705"> Nexus</a>.</p> 37 38 <p> 4 2016 . 39 Android Open Source Project (AOSP).</p> 40 41 <p> 42 (, 43 , 44 MMS). , 45 Wi-Fi- Broadcom, 46 , 47 .</p> 48 49 <p> . <a href="#mitigations"> </a> 50 , <a href="/security/enhancements/index.html"> </a> , 51 SafetyNet, Android. 52 .</p> 53 54 <h2 id="security_vulnerability_summary"> </h2> 55 56 57 <p> , (CVE) 58 . <a href="/security/overview/updates-resources.html#severity"></a> , 59 , 60 .</p> 61 <table> 62 <tr> 63 <th></th> 64 <th>CVE</th> 65 <th> </th> 66 </tr> 67 <tr> 68 <td> Wi-Fi- Broadcom</td> 69 <td>CVE-2016-0801<br> 70 CVE-2016-0802</td> 71 <td></td> 72 </tr> 73 <tr> 74 <td> mediaserver</td> 75 <td>CVE-2016-0803<br> 76 CVE-2016-0804</td> 77 <td></td> 78 </tr> 79 <tr> 80 <td> Qualcomm</td> 81 <td>CVE-2016-0805</td> 82 <td></td> 83 </tr> 84 <tr> 85 <td> Wi-Fi- Qualcomm</td> 86 <td>CVE-2016-0806</td> 87 <td></td> 88 </tr> 89 <tr> 90 <td> Debuggerd</td> 91 <td>CVE-2016-0807</td> 92 <td></td> 93 </tr> 94 <tr> 95 <td> Minikin</td> 96 <td>CVE-2016-0808</td> 97 <td></td> 98 </tr> 99 <tr> 100 <td> Wi-Fi</td> 101 <td>CVE-2016-0809</td> 102 <td></td> 103 </tr> 104 <tr> 105 <td> mediaserver</td> 106 <td>CVE-2016-0810</td> 107 <td></td> 108 </tr> 109 <tr> 110 <td> libmediaplayerservice</td> 111 <td>CVE-2016-0811</td> 112 <td></td> 113 </tr> 114 <tr> 115 <td> </td> 116 <td>CVE-2016-0812<br> 117 CVE-2016-0813</td> 118 <td></td> 119 </tr> 120 </table> 121 122 123 <h3 id="mitigations"> </h3> 124 125 126 <p> , <a href="https://source.android.com/security/enhancements/index.html"> </a> , 127 SafetyNet, Android.</p> 128 129 <ul> 130 <li> Android, 131 . 132 <li> , Android, 133 SafetyNet. 134 . Google Play . 135 , 136 , " " . 137 - 138 . , 139 , , 140 . , 141 . 142 <li> Google Hangouts Messenger 143 , mediaserver, . 144 </li></li></li></ul> 145 146 <h3 id="acknowledgements"></h3> 147 148 149 <p> , :</p> 150 151 <ul> 152 <li> Android Chrome: CVE-2016-0809, CVE-2016-0810 153 <li> Broadgate: CVE-2016-0801, CVE-2015-0802 154 <li> (<a href="https://twitter.com/chiachih_wu">@chiachih_wu</a>), (<a href="https://twitter.com/Mingjian_Zhou">@Mingjian_Zhou</a>) 155 <a href="http://c0reteam.org"> C0RE</a>, <a href="http://www.360safe.com/">Qihoo 360</a>: CVE-2016-0804 156 <li> Google Pixel C: CVE-2016-0812 157 <li> (<a href="https://twitter.com/@chengjia4574">@chengjia4574</a>) 158 Lab IceSword, Qihoo 360: CVE-2016-0805 159 <li> (<a href="https://twitter.com/@Flanker_hqd">@Flanker_hqd</a>) 160 KeenLab (<a href="https://twitter.com/keen_lab">@keen_lab</a>), Tencent: CVE-2016-0811 161 <li> (<a href="https://twitter.com/@lingtongshen">@lingtongshen</a>) 162 Trend Micro (<a href="http://www.trendmicro.com">www.trendmicro.com</a>): CVE-2016-0803 163 <li> (<a href="https://twitter.com/sunblate">@sunblate</a>) Alibaba Inc: CVE-2016-0808 164 <li> (<a href="https://twitter.com/@ebeip90">@ebeip90</a>) Android: CVE-2016-0807 165 </li></li></li></li></li></li></li></li></li></li></li></ul> 166 167 <h2 id="security_vulnerability_details"> </h2> 168 169 170 <p> <a href="#security_vulnerability_summary"> </a> 171 : , , CVE, 172 , , 173 . 174 , AOSP, 175 , 176 .</p> 177 178 <h3 id="remote_code_execution_vulnerability_in_broadcom_wi-fi_driver"> Wi-Fi- Broadcom</h3> 179 180 181 <p> Wi-Fi- Broadcom . 182 183 . 184 , 185 . - 186 187 .</p> 188 <table> 189 <tr> 190 <th>CVE</th> 191 <th></th> 192 <th> </th> 193 <th>, </th> 194 <th> </th> 195 </tr> 196 <tr> 197 <td>CVE-2016-0801</td> 198 <td><a href="https://android.googlesource.com/kernel/msm/+/68cdc8df1cb6622980b791ce03e99c255c9888af^!">ANDROID-25662029</a><br> 199 <a href="https://android.googlesource.com/kernel/msm/+/68cdc8df1cb6622980b791ce03e99c255c9888af^!">ANDROID-25662233</a></td> 200 <td></td> 201 <td>4.4.4, 5.0, 5.1.1, 6.0, 6.0.1</td> 202 <td>25 2015.</td> 203 </tr> 204 <tr> 205 <td>CVE-2016-0802</td> 206 <td><a href="https://android.googlesource.com/kernel/msm/+/3fffc78f70dc101add8b82af878d53457713d005^%21/">ANDROID-25306181</a></td> 207 <td></td> 208 <td>4.4.4, 5.0, 5.1.1, 6.0, 6.0.1</td> 209 <td>26 2015.</td> 210 </tr> 211 </table> 212 213 <h3 id="remote_code_execution_vulnerability_in_mediaserver"> mediaserver</h3> 214 215 <p> 216 mediaserver, 217 218 mediaserver.</p> 219 220 <p> . 221 , MMS- 222 , .</p> 223 224 <p> - 225 mediaserver. - 226 , , .</p> 227 <table> 228 <tr> 229 <th>CVE</th> 230 <th> AOSP</th> 231 <th> </th> 232 <th>, </th> 233 <th> </th> 234 </tr> 235 <tr> 236 <td>CVE-2016-0803</td> 237 <td><a href="https://android.googlesource.com/platform%2Fframeworks%2Fav/+/50270d98e26fa18b20ca88216c3526667b724ba7">ANDROID-25812794</a></td> 238 <td></td> 239 <td>4.4.4, 5.0, 5.1.1, 6.0, 6.0.1</td> 240 <td>19 2015.</td> 241 </tr> 242 <tr> 243 <td>CVE-2016-0804</td> 244 <td><a href="https://android.googlesource.com/platform%2Fframeworks%2Fav/+/224858e719d045c8554856b12c4ab73d2375cf33">ANDROID-25070434</a></td> 245 <td></td> 246 <td>5.0, 5.1.1, 6.0, 6.0.1</td> 247 <td>12 2015.</td> 248 </tr> 249 </table> 250 251 252 <h3 id="elevation_of_privilege_vulnerability_in_qualcomm_performance_module"> Qualcomm</h3> 253 254 255 <p> 256 ARM- Qualcomm. 257 . 258 , - . 259 .</p> 260 <table> 261 <tr> 262 <th>CVE</th> 263 <th></th> 264 <th> </th> 265 <th>, </th> 266 <th> </th> 267 </tr> 268 <tr> 269 <td>CVE-2016-0805</td> 270 <td>ANDROID-25773204*</td> 271 <td></td> 272 <td>4.4.4, 5.0, 5.1.1, 6.0, 6.0.1</td> 273 <td>15 2015.</td> 274 </tr> 275 </table> 276 277 <p>* AOSP. 278 Nexus, 279 <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 280 281 <h3 id="elevation_of_privilege_vulnerability_in_qualcomm_wifi_driver"> Wi-Fi- Qualcomm</h3> 282 283 284 <p> Wi-Fi- Qualcomm 285 . 286 , - . 287 .</p> 288 <table> 289 <tr> 290 <th>CVE</th> 291 <th></th> 292 <th> </th> 293 <th>, </th> 294 <th> </th> 295 </tr> 296 <tr> 297 <td>CVE-2016-0806</td> 298 <td>ANDROID-25344453*</td> 299 <td></td> 300 <td>4.4.4, 5.0, 5.1.1, 6.0, 6.0.1</td> 301 <td>15 2015.</td> 302 </tr> 303 </table> 304 305 <p>* AOSP. 306 Nexus, 307 <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 308 309 <h3 id="elevation_of_privilege_vulnerability_in_the_debuggerd"> Debuggerd </h3> 310 311 312 <p> Debuggerd 313 , root-. , - 314 . .</p> 315 <table> 316 <tr> 317 <th>CVE</th> 318 <th> AOSP</th> 319 <th> </th> 320 <th>, </th> 321 <th> </th> 322 </tr> 323 <tr> 324 <td>CVE-2016-0807</td> 325 <td><a href="https://android.googlesource.com/platform%2Fsystem%2Fcore/+/d917514bd6b270df431ea4e781a865764d406120">ANDROID-25187394</a></td> 326 <td></td> 327 <td>6.0, 6.0.1</td> 328 <td> Google</td> 329 </tr> 330 </table> 331 332 333 <h3 id="denial_of_service_vulnerability_in_minikin"> Minikin</h3> 334 335 336 <p> Minikin 337 . 338 , Minikin 339 . , 340 - 341 .</p> 342 <table> 343 <tr> 344 <th>CVE</th> 345 <th> AOSP</th> 346 <th> </th> 347 <th>, </th> 348 <th> </th> 349 </tr> 350 <tr> 351 <td>CVE-2016-0808</td> 352 <td><a href="https://android.googlesource.com/platform/frameworks/minikin/+/ed4c8d79153baab7f26562afb8930652dfbf853b">ANDROID-25645298</a></td> 353 <td></td> 354 <td>5.0, 5.1.1, 6.0, 6.0.1</td> 355 <td>3 2015.</td> 356 </tr> 357 </table> 358 359 360 <h3 id="elevation_of_privilege_vulnerability_in_wi-fi"> Wi-Fi</h3> 361 362 363 <p> Wi-Fi , 364 , 365 . , 366 <a href="http://developer.android.com/guide/topics/manifest/permission-element.html#plevel"> normal</a> (). 367 , , 368 .</p> 369 <table> 370 <tr> 371 <th>CVE</th> 372 <th> AOSP</th> 373 <th> </th> 374 <th>, </th> 375 <th> </th> 376 </tr> 377 <tr> 378 <td>CVE-2016-0809</td> 379 <td><a href="https://android.googlesource.com/platform/hardware/broadcom/wlan/+/2c5a4fac8bc8198f6a2635ede776f8de40a0c3e1^%21/#F0">ANDROID-25753768</a></td> 380 <td></td> 381 <td>6.0, 6.0.1</td> 382 <td> Google</td> 383 </tr> 384 </table> 385 386 387 <h3 id="elevation_of_privilege_vulnerability_in_mediaserver"> mediaserver </h3> 388 389 390 <p> mediaserver 391 . 392 , 393 , 394 (, <a href="http://developer.android.com/guide/topics/manifest/permission-element.html#plevel">Signature</a> <a href="http://developer.android.com/guide/topics/manifest/permission-element.html#plevel">SignatureOrSystem</a>).</p> 395 <table> 396 <tr> 397 <th>CVE</th> 398 <th> AOSP</th> 399 <th> </th> 400 <th>, </th> 401 <th> </th> 402 </tr> 403 <tr> 404 <td>CVE-2016-0810</td> 405 <td><a href="https://android.googlesource.com/platform%2Fframeworks%2Fav/+/19c47afbc402542720ddd280e1bbde3b2277b586">ANDROID-25781119</a></td> 406 <td></td> 407 <td>4.4.4, 5.0, 5.1.1, 6.0, 6.0.1</td> 408 <td> Google</td> 409 </tr> 410 </table> 411 412 413 <h3 id="information_disclosure_vulnerability_in_libmediaplayerservice"> libmediaplayerservice </h3> 414 415 416 <p> libmediaplayerservice , , . 417 , , 418 (, <a href="http://developer.android.com/guide/topics/manifest/permission-element.html#plevel">Signature</a> <a href="http://developer.android.com/guide/topics/manifest/permission-element.html#plevel">SignatureOrSystem</a>).</p> 419 <table> 420 <tr> 421 <th>CVE</th> 422 <th> AOSP</th> 423 <th> </th> 424 <th>, </th> 425 <th> </th> 426 </tr> 427 <tr> 428 <td>CVE-2016-0811</td> 429 <td><a href="https://android.googlesource.com/platform%2Fframeworks%2Fav/+/22f824feac43d5758f9a70b77f2aca840ba62c3b">ANDROID-25800375</a></td> 430 <td></td> 431 <td>6.0, 6.0.1</td> 432 <td>16 2015.</td> 433 </tr> 434 </table> 435 436 437 <h3 id="elevation_of_privilege_vulnerability_in_setup_wizard"> </h3> 438 439 440 <p> , 441 , 442 . , 443 .</p> 444 <table> 445 <tr> 446 <th>CVE</th> 447 <th> AOSP</th> 448 <th> </th> 449 <th>, </th> 450 <th> </th> 451 </tr> 452 <tr> 453 <td>CVE-2016-0812</td> 454 <td><a href="https://android.googlesource.com/platform%2Fframeworks%2Fbase/+/84669ca8de55d38073a0dcb01074233b0a417541">ANDROID-25229538</a></td> 455 <td></td> 456 <td>5.1.1, 6.0</td> 457 <td> Google</td> 458 </tr> 459 <tr> 460 <td>CVE-2016-0813</td> 461 <td><a href="https://android.googlesource.com/platform%2Fframeworks%2Fbase/+/16a76dadcc23a13223e9c2216dad1fe5cad7d6e1">ANDROID-25476219</a></td> 462 <td></td> 463 <td>5.1.1, 6.0, 6.0.1</td> 464 <td> Google</td> 465 </tr> 466 </table> 467 468 <h3 id="common_questions_and_answers"> </h3> 469 470 <p> , 471 .</p> 472 473 <p><strong>1. , , ?</strong></p> 474 475 <p> LMY49G , Android6.0 1 2016 . , 476 , 477 <a href="https://support.google.com/nexus/answer/4457705"> Nexus</a>. , 478 , 479 [ro.build.version.security_patch]:[2016-02-01].</p> 480 481 <h2 id="revisions"></h2> 482 483 484 <ul> 485 <li> 1 2016. . 486 <li> 2 2016. AOSP. 487 <li> 7 2016. AOSP. 488 489 </li></li></li></ul> 490 491 </body> 492 </html> 493
