1 <html devsite> 2 <head> 3 <title> Android 2016.</title> 4 <meta name="project_path" value="/_project.yaml" /> 5 <meta name="book_path" value="/_book.yaml" /> 6 </head> 7 <body> 8 <!-- 9 Copyright 2017 The Android Open Source Project 10 11 Licensed under the Apache License, Version 2.0 (the "License"); 12 you may not use this file except in compliance with the License. 13 You may obtain a copy of the License at 14 15 http://www.apache.org/licenses/LICENSE-2.0 16 17 Unless required by applicable law or agreed to in writing, software 18 distributed under the License is distributed on an "AS IS" BASIS, 19 WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 20 See the License for the specific language governing permissions and 21 limitations under the License. 22 --> 23 24 25 26 <p><em> 6 2016. | 14 2016.</em></p> 27 <p> 28 Android. 29 Nexus 30 Nexus <a href="https://developers.google.com/android/nexus/images"> </a>. , 31 , 5 2016 32 . , , 33 <a href="https://support.google.com/nexus/answer/4457705#nexus_devices"> </a>.</p> 34 <p> 35 6 2016 . 36 Android Open Source Project (AOSP). 37 38 AOSP.</p> 39 40 <p> 41 42 (, , 43 MMS).</p> 44 <p> . <a href="mitigations"> </a> 45 , <a href="/security/enhancements/index.html"> </a> , 46 SafetyNet, Android.</p> 47 <p> .</p> 48 <h2 id="announcements"></h2> 49 <ul> 50 <li> , 51 52 , Android. 53 54 <a href="#common-questions-and-answers"> </a>. 55 <ul> 56 <li><strong>2016-07-01</strong>: , 2016-07-01. 57 <li><strong>2016-07-05</strong>: , 2016-07-01 2016-07-05.</li> 58 </li></ul> 59 </li> 60 <li> Nexus 61 5 2016.</li> 62 </ul> 63 <h2 id="security_vulnerability_summary"> </h2> 64 <p> , (CVE) 65 , , Nexus. <a href="/security/overview/updates-resources.html#severity"> </a> , 66 , 67 .</p> 68 69 <h3 id="2016-07-01_summary"> ( 2016-07-01)</h3> 70 <p> 71 1 2016 .</p> 72 73 <table> 74 <col width="55%"> 75 <col width="20%"> 76 <col width="13%"> 77 <col width="12%"> 78 <tr> 79 <th></th> 80 <th>CVE</th> 81 <th> </th> 82 <th> Nexus?</th> 83 </tr> 84 <tr> 85 <td> mediaserver</td> 86 <td>CVE-2016-2506, CVE-2016-2505, CVE-2016-2507, CVE-2016-2508, 87 CVE-2016-3741, CVE-2016-3742, CVE-2016-3743</td> 88 <td></td> 89 <td></td> 90 </tr> 91 <tr> 92 <td> OpenSSL BoringSSL</td> 93 <td>CVE-2016-2108</td> 94 <td></td> 95 <td></td> 96 </tr> 97 <tr> 98 <td> Bluetooth</td> 99 <td>CVE-2016-3744</td> 100 <td></td> 101 <td></td> 102 </tr> 103 <tr> 104 <td> libpng</td> 105 <td>CVE-2016-3751</td> 106 <td></td> 107 <td></td> 108 </tr> 109 <tr> 110 <td> mediaserver</td> 111 <td>CVE-2016-3745, CVE-2016-3746, CVE-2016-3747</td> 112 <td></td> 113 <td></td> 114 </tr> 115 <tr> 116 <td> </td> 117 <td>CVE-2016-3748</td> 118 <td></td> 119 <td></td> 120 </tr> 121 <tr> 122 <td> LockSettingsService</td> 123 <td>CVE-2016-3749</td> 124 <td></td> 125 <td></td> 126 </tr> 127 <tr> 128 <td> Framework API</td> 129 <td>CVE-2016-3750</td> 130 <td></td> 131 <td></td> 132 </tr> 133 <tr> 134 <td> ChooserTarget</td> 135 <td>CVE-2016-3752</td> 136 <td></td> 137 <td></td> 138 </tr> 139 <tr> 140 <td> mediaserver</td> 141 <td>CVE-2016-3753</td> 142 <td></td> 143 <td>*</td> 144 </tr> 145 <tr> 146 <td> OpenSSL</td> 147 <td>CVE-2016-2107</td> 148 <td></td> 149 <td>*</td> 150 </tr> 151 <tr> 152 <td> mediaserver</td> 153 <td>CVE-2016-3754, CVE-2016-3755, CVE-2016-3756</td> 154 <td></td> 155 <td></td> 156 </tr> 157 <tr> 158 <td> libc</td> 159 <td>CVE-2016-3818</td> 160 <td></td> 161 <td>*</td> 162 </tr> 163 <tr> 164 <td> lsof</td> 165 <td>CVE-2016-3757</td> 166 <td></td> 167 <td></td> 168 </tr> 169 <tr> 170 <td> DexClassLoader</td> 171 <td>CVE-2016-3758</td> 172 <td></td> 173 <td></td> 174 </tr> 175 <tr> 176 <td> Framework API</td> 177 <td>CVE-2016-3759</td> 178 <td></td> 179 <td></td> 180 </tr> 181 <tr> 182 <td> Bluetooth</td> 183 <td>CVE-2016-3760</td> 184 <td></td> 185 <td></td> 186 </tr> 187 <tr> 188 <td> NFC</td> 189 <td>CVE-2016-3761</td> 190 <td></td> 191 <td></td> 192 </tr> 193 <tr> 194 <td> </td> 195 <td>CVE-2016-3762</td> 196 <td></td> 197 <td></td> 198 </tr> 199 <tr> 200 <td> Proxy Auto-Config</td> 201 <td>CVE-2016-3763</td> 202 <td></td> 203 <td></td> 204 </tr> 205 <tr> 206 <td> mediaserver</td> 207 <td>CVE-2016-3764, CVE-2016-3765</td> 208 <td></td> 209 <td></td> 210 </tr> 211 <tr> 212 <td> mediaserver</td> 213 <td>CVE-2016-3766</td> 214 <td></td> 215 <td></td> 216 </tr> 217 </table> 218 <p>* Nexus, 219 .</p> 220 221 222 <h3 id="2016-07-05_summary"> ( 2016-07-05)</h3> 223 <p> 224 5 2016 , 225 2016-07-01, , .</p> 226 227 <table> 228 <col width="55%"> 229 <col width="20%"> 230 <col width="13%"> 231 <col width="12%"> 232 <tr> 233 <th></th> 234 <th>CVE</th> 235 <th> </th> 236 <th> Nexus?</th> 237 </tr> 238 <tr> 239 <td> Qualcomm 240 ( )</td> 241 <td>CVE-2016-2503, CVE-2016-2067</td> 242 <td></td> 243 <td></td> 244 </tr> 245 <tr> 246 <td> Wi-Fi- MediaTek 247 ( )</td> 248 <td>CVE-2016-3767</td> 249 <td></td> 250 <td></td> 251 </tr> 252 <tr> 253 <td> Qualcomm 254 ( )</td> 255 <td>CVE-2016-3768</td> 256 <td></td> 257 <td></td> 258 </tr> 259 <tr> 260 <td> NVIDIA 261 ( )</td> 262 <td>CVE-2016-3769</td> 263 <td></td> 264 <td></td> 265 </tr> 266 <tr> 267 <td> MediaTek 268 ( )</td> 269 <td>CVE-2016-3770, CVE-2016-3771, CVE-2016-3772, CVE-2016-3773, 270 CVE-2016-3774</td> 271 <td></td> 272 <td></td> 273 </tr> 274 <tr> 275 <td> 276 ( )</td> 277 <td>CVE-2016-3775</td> 278 <td></td> 279 <td></td> 280 </tr> 281 <tr> 282 <td> USB- ( )</td> 283 <td>CVE-2015-8816</td> 284 <td></td> 285 <td></td> 286 </tr> 287 <tr> 288 <td> Qualcomm 289 ( )</td> 290 <td>CVE-2014-9794, CVE-2014-9795, CVE-2015-8892, CVE-2013-7457, CVE-2014-9781, 291 CVE-2014-9786, CVE-2014-9788, CVE-2014-9779, CVE-2014-9780, CVE-2014-9789, 292 CVE-2014-9793, CVE-2014-9782, CVE-2014-9783, CVE-2014-9785, CVE-2014-9787, 293 CVE-2014-9784, CVE-2014-9777, CVE-2014-9778, CVE-2014-9790, CVE-2014-9792, 294 CVE-2014-9797, CVE-2014-9791, CVE-2014-9796, CVE-2014-9800, CVE-2014-9799, 295 CVE-2014-9801, CVE-2014-9802, CVE-2015-8891, CVE-2015-8888, CVE-2015-8889, 296 CVE-2015-8890</td> 297 <td></td> 298 <td></td> 299 </tr> 300 <tr> 301 <td> USB- Qualcomm 302 ( )</td> 303 <td>CVE-2016-2502</td> 304 <td></td> 305 <td></td> 306 </tr> 307 <tr> 308 <td> Wi-Fi- Qualcomm 309 ( )</td> 310 <td>CVE-2016-3792</td> 311 <td></td> 312 <td></td> 313 </tr> 314 <tr> 315 <td> Qualcomm 316 ( )</td> 317 <td>CVE-2016-2501</td> 318 <td></td> 319 <td></td> 320 </tr> 321 <tr> 322 <td> NVIDIA 323 ( )</td> 324 <td>CVE-2016-3793</td> 325 <td></td> 326 <td></td> 327 </tr> 328 <tr> 329 <td> MediaTek 330 ( )</td> 331 <td>CVE-2016-3795, CVE-2016-3796</td> 332 <td></td> 333 <td></td> 334 </tr> 335 <tr> 336 <td> Wi-Fi- Qualcomm 337 ( )</td> 338 <td>CVE-2016-3797</td> 339 <td></td> 340 <td></td> 341 </tr> 342 <tr> 343 <td> MediaTek 344 ( )</td> 345 <td>CVE-2016-3798</td> 346 <td></td> 347 <td></td> 348 </tr> 349 <tr> 350 <td> MediaTek 351 ( )</td> 352 <td>CVE-2016-3799, CVE-2016-3800</td> 353 <td></td> 354 <td></td> 355 </tr> 356 <tr> 357 <td> GPS- MediaTek 358 ( )</td> 359 <td>CVE-2016-3801</td> 360 <td></td> 361 <td></td> 362 </tr> 363 <tr> 364 <td> 365 ( )</td> 366 <td>CVE-2016-3802, CVE-2016-3803</td> 367 <td></td> 368 <td></td> 369 </tr> 370 <tr> 371 <td> MediaTek 372 ( )</td> 373 <td>CVE-2016-3804, CVE-2016-3805</td> 374 <td></td> 375 <td></td> 376 </tr> 377 <tr> 378 <td> MediaTek 379 ( )</td> 380 <td>CVE-2016-3806</td> 381 <td></td> 382 <td></td> 383 </tr> 384 <tr> 385 <td> SPI 386 ( )</td> 387 <td>CVE-2016-3807, CVE-2016-3808</td> 388 <td></td> 389 <td></td> 390 </tr> 391 <tr> 392 <td> Qualcomm 393 ( )</td> 394 <td>CVE-2016-2068</td> 395 <td></td> 396 <td></td> 397 </tr> 398 <tr> 399 <td> ( )</td> 400 <td>CVE-2014-9803</td> 401 <td></td> 402 <td></td> 403 </tr> 404 <tr> 405 <td> ( )</td> 406 <td>CVE-2016-3809</td> 407 <td></td> 408 <td></td> 409 </tr> 410 <tr> 411 <td> Wi-Fi- MediaTek 412 ( )</td> 413 <td>CVE-2016-3810</td> 414 <td></td> 415 <td></td> 416 </tr> 417 <tr> 418 <td> 419 ( )</td> 420 <td>CVE-2016-3811</td> 421 <td></td> 422 <td></td> 423 </tr> 424 <tr> 425 <td> MediaTek 426 ( )</td> 427 <td>CVE-2016-3812</td> 428 <td></td> 429 <td></td> 430 </tr> 431 <tr> 432 <td> USB- Qualcomm 433 ( )</td> 434 <td>CVE-2016-3813</td> 435 <td></td> 436 <td></td> 437 </tr> 438 <tr> 439 <td> NVIDIA 440 ( )</td> 441 <td>CVE-2016-3814, CVE-2016-3815</td> 442 <td></td> 443 <td></td> 444 </tr> 445 <tr> 446 <td> MediaTek 447 ( )</td> 448 <td>CVE-2016-3816</td> 449 <td></td> 450 <td></td> 451 </tr> 452 <tr> 453 <td> 454 ( )</td> 455 <td>CVE-2016-0723</td> 456 <td></td> 457 <td></td> 458 </tr> 459 <tr> 460 <td> Qualcomm 461 ( )</td> 462 <td>CVE-2014-9798, CVE-2015-8893</td> 463 <td></td> 464 <td></td> 465 </tr> 466 </table> 467 468 <h2 id="mitigations"> </h2> 469 <p> , <a href="/security/enhancements/index.html"> </a> 470 , SafetyNet, 471 Android.</p> 472 <ul> 473 <li> 474 Android, 475 .</li> 476 <li>, Android, 477 <a href="/security/reports/Google_Android_Security_2015_Report_Final.pdf"> SafetyNet</a>. 478 <a href="/security/reports/Google_Android_Security_PHA_classifications.pdf"> </a>. 479 <a href="http://www.android.com/gms"> Google</a>. , 480 . 481 Google Play , 482 . 483 , . 484 , , 485 , 486 . , 487 .</li> 488 <li> Google Hangouts Messenger 489 , mediaserver, .</li> 490 </ul> 491 492 <h2 id="acknowledgements"></h2> 493 <p> , :</p> 494 <ul> 495 <li> , 496 Google Chrome: CVE-2016-3756, CVE-2016-3741, CVE-2016-3743, CVE-2016-3742 497 <li> Check Point Software Technologies Ltd.: CVE-2016-2503 498 <li> Google: CVE-2016-3752 499 <li> Context Information Security: CVE-2016-3763 500 <li> (<a href="https://twitter.com/ticarpi">@ticarpi</a>) 501 <a href="https://www.e2e-assure.com/">e2e-assure</a>: CVE-2016-2457 502 <li> Google Project Zero: CVE-2016-3775 503 <li> (<a href="https://twitter.com/chiachih_wu">@chiachih_wu</a>), 504 - (<a href="mailto:computernik (a] gmail.com">computernik (a] gmail.com</a>) 505 <a href="http://c0reteam.org">C0RE Team</a>: CVE-2016-3770, 506 CVE-2016-3771, CVE-2016-3772, CVE-2016-3773, CVE-2016-3774 507 <li> Google: CVE-2016-3759 508 <li> (<a href="https://twitter.com/returnsme">@returnsme</a>) KeenLab 509 (<a href="https://twitter.com/keen_lab">@keen_lab</a>), Tencent: CVE-2016-3762 510 <li> (<a href="https://twitter.com/chengjia4574">@chengjia4574</a>) 511 pjf (<a href="http://weibo.com/jfpan">weibo.com/jfpan</a>) IceSword Lab, 512 <a href="http://www.360.com">Qihoo 360 Technology Co. Ltd.</a>: CVE-2016-3806, 513 CVE-2016-3816, CVE-2016-3805, CVE-2016-3804, CVE-2016-3767, CVE-2016-3810, 514 CVE-2016-3795, CVE-2016-3796 515 <li> Google Android: CVE-2016-3758 516 <li> () (<a href="https://twitter.com/oldfresher">@oldfresher</a>) 517 Mobile Safe Team, <a href="http://www.360.com">Qihoo 360 Technology Co. 518 Ltd</a>.: CVE-2016-3764 519 <li> Mobile Safe Team, <a href="http://www.360.com"> 520 Qihoo 360 Technology Co. Ltd</a>.: CVE-2016-3792, CVE-2016-3768 521 <li> Security Research Lab, <a href="http://www.cmcm.com">Cheetah 522 Mobile</a>: CVE-2016-3754, CVE-2016-3766 523 <li> (<a href="https://twitter.com/jianqiangzhao">@jianqiangzhao</a>) 524 pjf (<a href="http://weibo.com/jfpan">weibo.com/jfpan</a>) IceSword Lab, 525 <a href="http://www.360.com">Qihoo 360 Technology Co. Ltd</a>: CVE-2016-3814, 526 CVE-2016-3802, CVE-2016-3769, CVE-2016-3807, CVE-2016-3808 527 <li> Google: CVE-2016-3818 528 <li> Google Project Zero: CVE-2016-3757 529 <li><a href="https://github.com/michalbednarski"> </a>: CVE-2016-3750 530 <li> (<a href="https://twitter.com/Mingjian_Zhou">@Mingjian_Zhou</a>), 531 (<a href="https://twitter.com/chiachih_wu">@chiachih_wu</a>) 532 <a href="http://c0reteam.org">C0RE Team</a>: CVE-2016-3747, 533 CVE-2016-3746, CVE-2016-3765 534 <li> , , , Alibaba 535 Mobile Security Group: CVE-2016-3800, CVE-2016-3799, CVE-2016-3801, 536 CVE-2016-3812, CVE-2016-3798 537 <li> (<a href="https://twitter.com/heisecode">@heisecode</a>) Trend 538 Micro: CVE-2016-3793 539 <li> Google: CVE-2016-3749 540 <li> : CVE-2016-3753 541 <li> (<a href="https://twitter.com/ScottyBauer1">@ScottyBauer1</a>): 542 CVE-2016-3797, CVE-2016-3813, CVE-2016-3815, CVE-2016-2501, CVE-2016-2502 543 <li> : CVE-2016-2507 544 <li> (<a href="https://twitter.com/sunblate">@sunblate</a>) 545 Alibaba Inc.: CVE-2016-2508, CVE-2016-3755 546 <li> (<a href="https://twitter.com/NWMonster">@NWMonster</a>) KeenLab 547 (<a href="https://twitter.com/keen_lab">@keen_lab</a>), Tencent: CVE-2016-3809 548 <li> Tencent: CVE-2016-3745 549 <li> TCA : 550 CVE-2016-3761 551 <li> (<a href="https://twitter.com/Rudykewang">@Rudykewang</a>) 552 Xuanwu LAB, Tencent: CVE-2016-2505 553 <li> (<a href="https://twitter.com/Rudykewang">@Rudykewang</a>) 554 (<a href="https://twitter.com/Danny__Wei">@Danny__Wei</a>) Xuanwu 555 LAB, Tencent: CVE-2016-2506 556 <li> () Baidu X-Lab: CVE-2016-3744</li> 557 </li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></li></ul> 558 559 <h2 id="2016-07-01_details"> ( 2016-07-01)</h2> 560 <p> 561 <a href="#2016-07-01_summary"> </a> : , 562 CVE, , , 563 Nexus AOSP ( ), 564 . , 565 , (, AOSP), 566 .</p> 567 568 <h3 id="remote-code-execution-vulnerability-in-mediaserver"> 569 mediaserver</h3> 570 <p> 571 . 572 - 573 mediaserver. 574 - , , 575 .</p> 576 <p> . 577 , MMS- 578 , .</p> 579 580 <table> 581 <col width="19%"> 582 <col width="19%"> 583 <col width="10%"> 584 <col width="16%"> 585 <col width="17%"> 586 <col width="17%"> 587 <tr> 588 <th>CVE</th> 589 <th></th> 590 <th> </th> 591 <th> Nexus</th> 592 <th> AOSP</th> 593 <th> </th> 594 </tr> 595 <tr> 596 <td>CVE-2016-2506</td> 597 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/e248db02fbab2ee9162940bc19f087fd7d96cb9d"> 598 A-28175045</a></td> 599 <td></td> 600 <td><a href="#all_nexus"> </a></td> 601 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1</td> 602 <td>11 2016.</td> 603 </tr> 604 <tr> 605 <td>CVE-2016-2505</td> 606 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/4f236c532039a61f0cf681d2e3c6e022911bbb5c"> 607 A-28333006</a></td> 608 <td></td> 609 <td><a href="#all_nexus"> </a></td> 610 <td>6.0, 6.0.1</td> 611 <td>21 2016.</td> 612 </tr> 613 <tr> 614 <td>CVE-2016-2507</td> 615 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/60547808ca4e9cfac50028c00c58a6ceb2319301"> 616 A-28532266</a></td> 617 <td></td> 618 <td><a href="#all_nexus"> </a></td> 619 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1</td> 620 <td>2 2016.</td> 621 </tr> 622 <tr> 623 <td>CVE-2016-2508</td> 624 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/f81038006b4c59a5a148dcad887371206033c28f"> 625 A-28799341</a> 626 [<a href="https://android.googlesource.com/platform/frameworks/av/+/d112f7d0c1dbaf0368365885becb11ca8d3f13a4">2</a>] 627 </td> 628 <td></td> 629 <td><a href="#all_nexus"> </a></td> 630 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1</td> 631 <td>16 2016.</td> 632 </tr> 633 <tr> 634 <td>CVE-2016-3741</td> 635 <td><a href="https://android.googlesource.com/platform/external/libavc/+/e629194c62a9a129ce378e08cb1059a8a53f1795"> 636 A-28165661</a> 637 [<a href="https://android.googlesource.com/platform/external/libavc/+/cc676ebd95247646e67907ccab150fb77a847335">2</a>] 638 </td> 639 <td></td> 640 <td><a href="#all_nexus"> </a></td> 641 <td>6.0, 6.0.1</td> 642 <td> Google</td> 643 </tr> 644 <tr> 645 <td>CVE-2016-3742</td> 646 <td><a href="https://android.googlesource.com/platform/external/libavc/+/a583270e1c96d307469c83dc42bd3c5f1b9ef63f"> 647 A-28165659</a> 648 </td> 649 <td></td> 650 <td><a href="#all_nexus"> </a></td> 651 <td>6.0, 6.0.1</td> 652 <td> Google</td> 653 </tr> 654 <tr> 655 <td>CVE-2016-3743</td> 656 <td><a href="https://android.googlesource.com/platform/external/libavc/+/ecf6c7ce6d5a22d52160698aab44fc234c63291a"> 657 A-27907656</a> 658 </td> 659 <td></td> 660 <td><a href="#all_nexus"> </a></td> 661 <td>6.0, 6.0.1</td> 662 <td> Google</td> 663 </tr> 664 </table> 665 666 667 <h3 id="remote-code-execution-vulnerability-in-openssl-&-boringssl"> 668 OpenSSL BoringSSL</h3> 669 <p> 670 . 671 - 672 .</p> 673 674 <table> 675 <col width="19%"> 676 <col width="16%"> 677 <col width="10%"> 678 <col width="19%"> 679 <col width="18%"> 680 <col width="16%"> 681 <tr> 682 <th>CVE</th> 683 <th></th> 684 <th> </th> 685 <th> Nexus</th> 686 <th> AOSP</th> 687 <th> </th> 688 </tr> 689 <tr> 690 <td>CVE-2016-2108</td> 691 <td><a href="https://android.googlesource.com/platform/external/boringssl/+/74750e1fb24149043a533497f79c577b704d6e30"> 692 A-28175332</a> 693 </td> 694 <td></td> 695 <td><a href="#all_nexus"> </a></td> 696 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1</td> 697 <td>3 2016.</td> 698 </tr> 699 </table> 700 701 <h3 id="remote-code-execution-vulnerability-in-bluetooth"> 702 Bluetooth</h3> 703 <p> 704 Bluetooth. - 705 .</p> 706 707 <table> 708 <col width="19%"> 709 <col width="16%"> 710 <col width="10%"> 711 <col width="19%"> 712 <col width="18%"> 713 <col width="16%"> 714 <tr> 715 <th>CVE</th> 716 <th></th> 717 <th> </th> 718 <th> Nexus</th> 719 <th> AOSP</th> 720 <th> </th> 721 </tr> 722 <tr> 723 <td>CVE-2016-3744</td> 724 <td><a href="https://android.googlesource.com/platform/system/bt/+/514139f4b40cbb035bb92f3e24d5a389d75db9e6"> 725 A-27930580</a></td> 726 <td></td> 727 <td><a href="#all_nexus"> </a></td> 728 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1</td> 729 <td>30 2016.</td> 730 </tr> 731 </table> 732 733 <h3 id="elevation-of-privilege-vulnerability-in-libpng"> 734 libpng</h3> 735 <p> 736 737 . , 738 , 739 (, 740 <a href="https://developer.android.com/guide/topics/manifest/permission-element.html#plevel">Signature</a> 741 <a href="https://developer.android.com/guide/topics/manifest/permission-element.html#plevel">SignatureOrSystem</a>).</p> 742 743 <table> 744 <col width="19%"> 745 <col width="16%"> 746 <col width="10%"> 747 <col width="19%"> 748 <col width="18%"> 749 <col width="16%"> 750 <tr> 751 <th>CVE</th> 752 <th></th> 753 <th> </th> 754 <th> Nexus</th> 755 <th> AOSP</th> 756 <th> </th> 757 </tr> 758 <tr> 759 <td>CVE-2016-3751</td> 760 <td><a href="https://android.googlesource.com/platform/external/libpng/+/9d4853418ab2f754c2b63e091c29c5529b8b86ca"> 761 A-23265085</a> 762 </td> 763 <td></td> 764 <td><a href="#all_nexus"> </a></td> 765 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1</td> 766 <td>3 2015.</td> 767 </tr> 768 </table> 769 770 <h3 id="elevation-of-privilege-vulnerability-in-mediaserver"> 771 mediaserver</h3> 772 <p> 773 774 . , 775 , 776 (, 777 <a href="https://developer.android.com/guide/topics/manifest/permission-element.html#plevel">Signature</a> 778 <a href="https://developer.android.com/guide/topics/manifest/permission-element.html#plevel">SignatureOrSystem</a>).</p> 779 780 <table> 781 <col width="19%"> 782 <col width="16%"> 783 <col width="10%"> 784 <col width="19%"> 785 <col width="18%"> 786 <col width="16%"> 787 <tr> 788 <th>CVE</th> 789 <th></th> 790 <th> </th> 791 <th> Nexus</th> 792 <th> AOSP</th> 793 <th> </th> 794 </tr> 795 <tr> 796 <td>CVE-2016-3745</td> 797 <td><a href="https://android.googlesource.com/platform/hardware/qcom/audio/+/073a80800f341325932c66818ce4302b312909a4"> 798 A-28173666</a> 799 </td> 800 <td></td> 801 <td><a href="#all_nexus"> </a></td> 802 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1</td> 803 <td>10 2016.</td> 804 </tr> 805 <tr> 806 <td>CVE-2016-3746</td> 807 <td><a href="https://android.googlesource.com/platform/hardware/qcom/media/+/5b82f4f90c3d531313714df4b936f92fb0ff15cf"> 808 A-27890802</a> 809 </td> 810 <td></td> 811 <td><a href="#all_nexus"> </a></td> 812 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1</td> 813 <td>27 2016.</td> 814 </tr> 815 <tr> 816 <td>CVE-2016-3747</td> 817 <td><a href="https://android.googlesource.com/platform/hardware/qcom/media/+/4ed06d14080d8667d5be14eed200e378cba78345"> 818 A-27903498</a> 819 </td> 820 <td></td> 821 <td><a href="#all_nexus"> </a></td> 822 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1</td> 823 <td>28 2016.</td> 824 </tr> 825 </table> 826 827 <h3 id="elevation-of-privilege-vulnerability-in-sockets"> 828 </h3> 829 <p> 830 . 831 832 , , 833 .</p> 834 835 <table> 836 <col width="19%"> 837 <col width="16%"> 838 <col width="10%"> 839 <col width="19%"> 840 <col width="18%"> 841 <col width="16%"> 842 <tr> 843 <th>CVE</th> 844 <th></th> 845 <th> </th> 846 <th> Nexus</th> 847 <th> AOSP</th> 848 <th> </th> 849 </tr> 850 <tr> 851 <td>CVE-2016-3748</td> 852 <td><a href="https://android.googlesource.com/platform/external/sepolicy/+/556bb0f55324e8839d7b735a0de9bc31028e839e"> 853 A-28171804</a> 854 </td> 855 <td></td> 856 <td><a href="#all_nexus"> </a></td> 857 <td>6.0, 6.0.1</td> 858 <td>13 2016.</td> 859 </tr> 860 </table> 861 862 <h3 id="elevation-of-privilege-vulnerability-in-locksettingsservice"> 863 LockSettingsService</h3> 864 <p> . , .</p> 865 866 <table> 867 <col width="19%"> 868 <col width="16%"> 869 <col width="10%"> 870 <col width="19%"> 871 <col width="17%"> 872 <col width="17%"> 873 <tr> 874 <th>CVE</th> 875 <th></th> 876 <th> </th> 877 <th> Nexus</th> 878 <th> AOSP</th> 879 <th> </th> 880 </tr> 881 <tr> 882 <td>CVE-2016-3749</td> 883 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/e83f0f6a5a6f35323f5367f99c8e287c440f33f5"> 884 A-28163930</a> 885 </td> 886 <td></td> 887 <td><a href="#all_nexus"> </a></td> 888 <td>6.0, 6.0.1</td> 889 <td> Google</td> 890 </tr> 891 </table> 892 893 <h3 id="elevation-of-privilege-vulnerability-in-framework-apis"> 894 Framework API</h3> 895 <p> Parcels Framework API 896 , 897 . 898 , 899 .</p> 900 901 <table> 902 <col width="19%"> 903 <col width="16%"> 904 <col width="10%"> 905 <col width="19%"> 906 <col width="17%"> 907 <col width="17%"> 908 <tr> 909 <th>CVE</th> 910 <th></th> 911 <th> </th> 912 <th> Nexus</th> 913 <th> AOSP</th> 914 <th> </th> 915 </tr> 916 <tr> 917 <td>CVE-2016-3750</td> 918 <td><a href="https://android.googlesource.com/platform/frameworks/native/+/54cb02ad733fb71b1bdf78590428817fb780aff8"> 919 A-28395952</a> 920 </td> 921 <td></td> 922 <td><a href="#all_nexus"> </a></td> 923 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1</td> 924 <td>16 2015.</td> 925 </tr> 926 </table> 927 928 <h3 id="elevation-of-privilege-vulnerability-in-choosertarget-service"> 929 ChooserTarget</h3> 930 <p> 931 . 932 , 933 .</p> 934 935 <table> 936 <col width="19%"> 937 <col width="16%"> 938 <col width="10%"> 939 <col width="19%"> 940 <col width="17%"> 941 <col width="17%"> 942 <tr> 943 <th>CVE</th> 944 <th></th> 945 <th> </th> 946 <th> Nexus</th> 947 <th> AOSP</th> 948 <th> </th> 949 </tr> 950 <tr> 951 <td>CVE-2016-3752</td> 952 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/ddbf2db5b946be8fdc45c7b0327bf560b2a06988"> 953 A-28384423</a> 954 </td> 955 <td></td> 956 <td><a href="#all_nexus"> </a></td> 957 <td>6.0, 6.0.1</td> 958 <td> Google</td> 959 </tr> 960 </table> 961 962 <h3 id="information-disclosure-vulnerability-in-mediaserver"> 963 mediaserver</h3> 964 <p> 965 , 966 , . - 967 .</p> 968 969 <table> 970 <col width="19%"> 971 <col width="16%"> 972 <col width="10%"> 973 <col width="19%"> 974 <col width="18%"> 975 <col width="16%"> 976 <tr> 977 <th>CVE</th> 978 <th></th> 979 <th> </th> 980 <th> Nexus</th> 981 <th> AOSP</th> 982 <th> </th> 983 </tr> 984 <tr> 985 <td>CVE-2016-3753</td> 986 <td>A-27210135</td> 987 <td></td> 988 <td>*</td> 989 <td>4.4.4</td> 990 <td>15 2016.</td> 991 </tr> 992 </table> 993 <p>* Nexus, 994 .</p> 995 996 <h3 id="information-disclosure-vulnerability-in-openssl"> 997 OpenSSL</h3> 998 <p> 999 , 1000 , . - 1001 .</p> 1002 1003 <table> 1004 <col width="19%"> 1005 <col width="16%"> 1006 <col width="10%"> 1007 <col width="19%"> 1008 <col width="18%"> 1009 <col width="16%"> 1010 <tr> 1011 <th>CVE</th> 1012 <th></th> 1013 <th> </th> 1014 <th> Nexus</th> 1015 <th> AOSP</th> 1016 <th> </th> 1017 </tr> 1018 <tr> 1019 <td>CVE-2016-2107</td> 1020 <td>A-28550804</td> 1021 <td></td> 1022 <td>*</td> 1023 <td>4.4.4, 5.0.2, 5.1.1</td> 1024 <td>13 2016.</td> 1025 </tr> 1026 </table> 1027 <p>* Nexus, 1028 .</p> 1029 1030 <h3 id="denial-of-service-vulnerability-in-mediaserver"> 1031 mediaserver</h3> 1032 <p> 1033 . 1034 , 1035 .</p> 1036 1037 <table> 1038 <col width="19%"> 1039 <col width="19%"> 1040 <col width="10%"> 1041 <col width="16%"> 1042 <col width="17%"> 1043 <col width="17%"> 1044 <tr> 1045 <th>CVE</th> 1046 <th></th> 1047 <th> </th> 1048 <th> Nexus</th> 1049 <th> AOSP</th> 1050 <th> </th> 1051 </tr> 1052 <tr> 1053 <td>CVE-2016-3754</td> 1054 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/6fdee2a83432b3b150d6a34f231c4e2f7353c01e"> 1055 A-28615448</a> 1056 [<a href="https://android.googlesource.com/platform/frameworks/av/+/e7142a0703bc93f75e213e96ebc19000022afed9">2</a>] 1057 </td> 1058 <td></td> 1059 <td><a href="#all_nexus"> </a></td> 1060 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1</td> 1061 <td>5 2016.</td> 1062 </tr> 1063 <tr> 1064 <td>CVE-2016-3755</td> 1065 <td><a href="https://android.googlesource.com/platform/external/libavc/+/d4841f1161bdb5e13cb19e81af42437a634dd6ef"> 1066 A-28470138</a> 1067 </td> 1068 <td></td> 1069 <td><a href="#all_nexus"> </a></td> 1070 <td>6.0, 6.0.1</td> 1071 <td>29 2016.</td> 1072 </tr> 1073 <tr> 1074 <td>CVE-2016-3756</td> 1075 <td><a href="https://android.googlesource.com/platform/external/tremolo/+/659030a2e80c38fb8da0a4eb68695349eec6778b"> 1076 A-28556125</a> 1077 </td> 1078 <td></td> 1079 <td><a href="#all_nexus"> </a></td> 1080 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1</td> 1081 <td> Google</td> 1082 </tr> 1083 </table> 1084 1085 <h3 id="denial-of-service-vulnerability-in-libc"> 1086 libc</h3> 1087 <p> 1088 . 1089 , 1090 .</p> 1091 1092 <table> 1093 <col width="19%"> 1094 <col width="16%"> 1095 <col width="10%"> 1096 <col width="19%"> 1097 <col width="17%"> 1098 <col width="17%"> 1099 <tr> 1100 <th>CVE</th> 1101 <th></th> 1102 <th> </th> 1103 <th> Nexus</th> 1104 <th> AOSP</th> 1105 <th> </th> 1106 </tr> 1107 <tr> 1108 <td>CVE-2016-3818</td> 1109 <td>A-28740702</td> 1110 <td></td> 1111 <td>*</td> 1112 <td>4.4.4</td> 1113 <td> Google</td> 1114 </tr> 1115 </table> 1116 <p>* Nexus, 1117 .</p> 1118 1119 <h3 id="elevation-of-privilege-vulnerability-in-lsof"> 1120 lsof</h3> 1121 <p> 1122 . - 1123 . 1124 , 1125 .</p> 1126 1127 <table> 1128 <col width="19%"> 1129 <col width="16%"> 1130 <col width="10%"> 1131 <col width="19%"> 1132 <col width="18%"> 1133 <col width="16%"> 1134 <tr> 1135 <th>CVE</th> 1136 <th></th> 1137 <th> </th> 1138 <th> Nexus</th> 1139 <th> AOSP</th> 1140 <th> </th> 1141 </tr> 1142 <tr> 1143 <td>CVE-2016-3757</td> 1144 <td><a href="https://android.googlesource.com/platform/system/core/+/ae18eb014609948a40e22192b87b10efc680daa7"> 1145 A-28175237</a> 1146 </td> 1147 <td></td> 1148 <td><a href="#all_nexus"> </a></td> 1149 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1</td> 1150 <td>11 2016.</td> 1151 </tr> 1152 </table> 1153 1154 <h3 id="elevation-of-privilege-vulnerability-in-dexclassloader"> 1155 DexClassLoader</h3> 1156 <p> 1157 . , 1158 1159 .</p> 1160 1161 <table> 1162 <col width="19%"> 1163 <col width="16%"> 1164 <col width="10%"> 1165 <col width="19%"> 1166 <col width="17%"> 1167 <col width="17%"> 1168 <tr> 1169 <th>CVE</th> 1170 <th></th> 1171 <th> </th> 1172 <th> Nexus</th> 1173 <th> AOSP</th> 1174 <th> </th> 1175 </tr> 1176 <tr> 1177 <td>CVE-2016-3758</td> 1178 <td><a href="https://android.googlesource.com/platform/dalvik/+/338aeaf28e9981c15d0673b18487dba61eb5447c"> 1179 A-27840771</a> 1180 </td> 1181 <td></td> 1182 <td><a href="#all_nexus"> </a></td> 1183 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1</td> 1184 <td> Google</td> 1185 </tr> 1186 </table> 1187 1188 <h3 id="elevation-of-privilege-vulnerability-in-framework-apis-2"> 1189 Framework API</h3> 1190 <p> 1191 . 1192 , 1193 , 1194 .</p> 1195 1196 <table> 1197 <col width="19%"> 1198 <col width="16%"> 1199 <col width="10%"> 1200 <col width="19%"> 1201 <col width="17%"> 1202 <col width="17%"> 1203 <tr> 1204 <th>CVE</th> 1205 <th></th> 1206 <th> </th> 1207 <th> Nexus</th> 1208 <th> AOSP</th> 1209 <th> </th> 1210 </tr> 1211 <tr> 1212 <td>CVE-2016-3759</td> 1213 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/9b8c6d2df35455ce9e67907edded1e4a2ecb9e28"> 1214 A-28406080</a> 1215 </td> 1216 <td></td> 1217 <td><a href="#all_nexus"> </a></td> 1218 <td>5.0.2, 5.1.1, 6.0, 6.0.1</td> 1219 <td> Google</td> 1220 </tr> 1221 </table> 1222 1223 <h3 id="elevation-of-privilege-vulnerability-in-bluetooth"> 1224 Bluetooth</h3> 1225 <p> , , 1226 Bluetooth 1227 . , 1228 1229 .</p> 1230 1231 <table> 1232 <col width="19%"> 1233 <col width="16%"> 1234 <col width="10%"> 1235 <col width="19%"> 1236 <col width="18%"> 1237 <col width="16%"> 1238 <tr> 1239 <th>CVE</th> 1240 <th></th> 1241 <th> </th> 1242 <th> Nexus</th> 1243 <th> AOSP</th> 1244 <th> </th> 1245 </tr> 1246 <tr> 1247 <td>CVE-2016-3760</td> 1248 <td><a href="https://android.googlesource.com/platform/hardware/libhardware/+/8b3d5a64c3c8d010ad4517f652731f09107ae9c5">A-27410683</a> 1249 [<a href="https://android.googlesource.com/platform/system/bt/+/37c88107679d36c419572732b4af6e18bb2f7dce">2</a>] 1250 [<a href="https://android.googlesource.com/platform/packages/apps/Bluetooth/+/122feb9a0b04290f55183ff2f0384c6c53756bd8">3</a>] 1251 </td> 1252 <td></td> 1253 <td><a href="#all_nexus"> </a></td> 1254 <td>5.0.2, 5.1.1, 6.0, 6.0.1</td> 1255 <td>29 2016.</td> 1256 </tr> 1257 </table> 1258 1259 <h3 id="elevation-of-privilege-vulnerability-in-nfc"> 1260 NFC</h3> 1261 <p> , 1262 , 1263 . , 1264 1265 .</p> 1266 1267 <table> 1268 <col width="19%"> 1269 <col width="16%"> 1270 <col width="10%"> 1271 <col width="19%"> 1272 <col width="18%"> 1273 <col width="16%"> 1274 <tr> 1275 <th>CVE</th> 1276 <th></th> 1277 <th> </th> 1278 <th> Nexus</th> 1279 <th> AOSP</th> 1280 <th> </th> 1281 </tr> 1282 <tr> 1283 <td>CVE-2016-3761</td> 1284 <td><a href="https://android.googlesource.com/platform/packages/apps/Nfc/+/9ea802b5456a36f1115549b645b65c791eff3c2c"> 1285 A-28300969</a> 1286 </td> 1287 <td></td> 1288 <td><a href="#all_nexus"> </a></td> 1289 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1</td> 1290 <td>20 2016.</td> 1291 </tr> 1292 </table> 1293 1294 <h3 id="elevation-of-privilege-vulnerability-in-sockets-2"> 1295 </h3> 1296 <p> 1297 , , 1298 . 1299 , , .</p> 1300 1301 <table> 1302 <col width="19%"> 1303 <col width="16%"> 1304 <col width="10%"> 1305 <col width="19%"> 1306 <col width="18%"> 1307 <col width="16%"> 1308 <tr> 1309 <th>CVE</th> 1310 <th></th> 1311 <th> </th> 1312 <th> Nexus</th> 1313 <th> AOSP</th> 1314 <th> </th> 1315 </tr> 1316 <tr> 1317 <td>CVE-2016-3762</td> 1318 <td><a href="https://android.googlesource.com/platform/external/sepolicy/+/abf0663ed884af7bc880a05e9529e6671eb58f39"> 1319 A-28612709</a> 1320 </td> 1321 <td></td> 1322 <td><a href="#all_nexus"> </a></td> 1323 <td>5.0.2, 5.1.1, 6.0, 6.0.1</td> 1324 <td>21 2016.</td> 1325 </tr> 1326 </table> 1327 1328 <h3 id="information-disclosure-vulnerability-in-proxy-auto-config"> 1329 Proxy Auto-Config</h3> 1330 <p> 1331 . - 1332 .</p> 1333 1334 <table> 1335 <col width="19%"> 1336 <col width="16%"> 1337 <col width="10%"> 1338 <col width="19%"> 1339 <col width="18%"> 1340 <col width="16%"> 1341 <tr> 1342 <th>CVE</th> 1343 <th></th> 1344 <th> </th> 1345 <th> Nexus</th> 1346 <th> AOSP</th> 1347 <th> </th> 1348 </tr> 1349 <tr> 1350 <td>CVE-2016-3763</td> 1351 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/ec2fc50d202d975447211012997fe425496c849c"> 1352 A-27593919</a> 1353 </td> 1354 <td></td> 1355 <td><a href="#all_nexus"> </a></td> 1356 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1</td> 1357 <td>10 2016.</td> 1358 </tr> 1359 </table> 1360 1361 <h3 id="information-disclosure-vulnerability-in-mediaserver-2"> 1362 mediaserver</h3> 1363 <p> 1364 . - 1365 .</p> 1366 1367 <table> 1368 <col width="19%"> 1369 <col width="16%"> 1370 <col width="10%"> 1371 <col width="19%"> 1372 <col width="18%"> 1373 <col width="16%"> 1374 <tr> 1375 <th>CVE</th> 1376 <th></th> 1377 <th> </th> 1378 <th> Nexus</th> 1379 <th> AOSP</th> 1380 <th> </th> 1381 </tr> 1382 <tr> 1383 <td>CVE-2016-3764</td> 1384 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/daef4327fe0c75b0a90bb8627458feec7a301e1f"> 1385 A-28377502</a> 1386 </td> 1387 <td></td> 1388 <td><a href="#all_nexus"> </a></td> 1389 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1</td> 1390 <td>25 2016.</td> 1391 </tr> 1392 <tr> 1393 <td>CVE-2016-3765</td> 1394 <td><a href="https://android.googlesource.com/platform/external/libmpeg2/+/d1c775d1d8d2ed117d1e026719b7f9f089716597"> 1395 A-28168413</a> 1396 </td> 1397 <td></td> 1398 <td><a href="#all_nexus"> </a></td> 1399 <td>6.0, 6.0.1</td> 1400 <td>8 2016.</td> 1401 </tr> 1402 </table> 1403 1404 <h3 id="denial-of-service-vulnerability-in-mediaserver-2"> 1405 mediaserver</h3> 1406 <p> 1407 . 1408 , 1409 .</p> 1410 1411 <table> 1412 <col width="19%"> 1413 <col width="16%"> 1414 <col width="10%"> 1415 <col width="19%"> 1416 <col width="18%"> 1417 <col width="16%"> 1418 <tr> 1419 <th>CVE</th> 1420 <th></th> 1421 <th> </th> 1422 <th> Nexus</th> 1423 <th> AOSP</th> 1424 <th> </th> 1425 </tr> 1426 <tr> 1427 <td>CVE-2016-3766</td> 1428 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/6fdee2a83432b3b150d6a34f231c4e2f7353c01e"> 1429 A-28471206</a> 1430 [<a href="https://android.googlesource.com/platform/frameworks/av/+/e7142a0703bc93f75e213e96ebc19000022afed9">2</a>] 1431 </td> 1432 <td></td> 1433 <td><a href="#all_nexus"> </a></td> 1434 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1</td> 1435 <td>29 2016.</td> 1436 </tr> 1437 </table> 1438 1439 <h2 id="2016-07-05_details"> ( 2016-07-05)</h2> 1440 <p> 1441 <a href="2016-07-05_summary"> </a> : , 1442 CVE, , , 1443 Nexus AOSP ( ), 1444 . , 1445 , (, AOSP), 1446 .</p> 1447 1448 <h3 id="elevation-of-privilege-vulnerability-in-qualcomm-gpu-driver"> 1449 Qualcomm </h3> 1450 <p> 1451 . , 1452 - . , 1453 .</p> 1454 1455 <table> 1456 <col width="19%"> 1457 <col width="16%"> 1458 <col width="10%"> 1459 <col width="27%"> 1460 <col width="16%"> 1461 <tr> 1462 <th>CVE</th> 1463 <th></th> 1464 <th> </th> 1465 <th> Nexus</th> 1466 <th> </th> 1467 </tr> 1468 <tr> 1469 <td>CVE-2016-2503</td> 1470 <td>A-28084795* 1471 QC-CR1006067</td> 1472 <td></td> 1473 <td>Nexus5X, Nexus6P</td> 1474 <td>5 2016.</td> 1475 </tr> 1476 <tr> 1477 <td>CVE-2016-2067</td> 1478 <td>A-28305757 1479 <a href="https://us.codeaurora.org/cgit/quic/la//kernel/msm-3.18/commit/?id=410cfa95f0a1cf58819cbfbd896f9aa45b004ac0"> 1480 QC-CR988993</a></td> 1481 <td></td> 1482 <td>Nexus5X, Nexus6, Nexus6P</td> 1483 <td>20 2016.</td> 1484 </tr> 1485 </table> 1486 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 1487 1488 <h3 id="elevation-of-privilege-vulnerability-in-mediatek-wi-fi-driver"> 1489 Wi-Fi- MediaTek</h3> 1490 <p> 1491 . , 1492 - . , 1493 .</p> 1494 1495 <table> 1496 <col width="19%"> 1497 <col width="20%"> 1498 <col width="10%"> 1499 <col width="23%"> 1500 <col width="16%"> 1501 <tr> 1502 <th>CVE</th> 1503 <th></th> 1504 <th> </th> 1505 <th> Nexus</th> 1506 <th> </th> 1507 </tr> 1508 <tr> 1509 <td>CVE-2016-3767</td> 1510 <td>A-28169363* 1511 <br>M-ALPS02689526</td> 1512 <td></td> 1513 <td>AndroidOne</td> 1514 <td>6 2016.</td> 1515 </tr> 1516 </table> 1517 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 1518 1519 <h3 id="elevation-of-privilege-vulnerability-in-qualcomm-performance-component"> 1520 Qualcomm</h3> 1521 <p> 1522 . , 1523 - . , 1524 .</p> 1525 1526 <table> 1527 <col width="19%"> 1528 <col width="16%"> 1529 <col width="10%"> 1530 <col width="27%"> 1531 <col width="16%"> 1532 <tr> 1533 <th>CVE</th> 1534 <th></th> 1535 <th> </th> 1536 <th> Nexus</th> 1537 <th> </th> 1538 </tr> 1539 <tr> 1540 <td>CVE-2016-3768</td> 1541 <td>A-28172137* 1542 QC-CR1010644</td> 1543 <td></td> 1544 <td>Nexus5, Nexus6, Nexus5X, Nexus6P, Nexus7 (2013)</td> 1545 <td>9 2016.</td> 1546 </tr> 1547 </table> 1548 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 1549 1550 <h3 id="elevation-of-privilege-vulnerability-in-nvidia-video-driver"> 1551 NVIDIA</h3> 1552 <p> 1553 . , 1554 - . , 1555 .</p> 1556 1557 <table> 1558 <col width="19%"> 1559 <col width="20%"> 1560 <col width="10%"> 1561 <col width="23%"> 1562 <col width="16%"> 1563 <tr> 1564 <th>CVE</th> 1565 <th></th> 1566 <th> </th> 1567 <th> Nexus</th> 1568 <th> </th> 1569 </tr> 1570 <tr> 1571 <td>CVE-2016-3769</td> 1572 <td>A-28376656*<br> 1573 N-CVE20163769</td> 1574 <td></td> 1575 <td>Nexus9</td> 1576 <td>18 2016.</td> 1577 </tr> 1578 </table> 1579 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 1580 1581 <h3 id="elevation-of-privilege-vulnerability-in-mediatek-drivers-device-specific"> 1582 MediaTek ( )</h3> 1583 <p> 1584 . , 1585 - . , 1586 .</p> 1587 1588 <table> 1589 <col width="19%"> 1590 <col width="20%"> 1591 <col width="10%"> 1592 <col width="23%"> 1593 <col width="16%"> 1594 <tr> 1595 <th>CVE</th> 1596 <th></th> 1597 <th> </th> 1598 <th> Nexus</th> 1599 <th> </th> 1600 </tr> 1601 <tr> 1602 <td>CVE-2016-3770</td> 1603 <td>A-28346752*<br> 1604 M-ALPS02703102</td> 1605 <td></td> 1606 <td>AndroidOne</td> 1607 <td>22 2016.</td> 1608 </tr> 1609 <tr> 1610 <td>CVE-2016-3771</td> 1611 <td>A-29007611*<br> 1612 M-ALPS02703102</td> 1613 <td></td> 1614 <td>AndroidOne</td> 1615 <td>22 2016.</td> 1616 </tr> 1617 <tr> 1618 <td>CVE-2016-3772</td> 1619 <td>A-29008188*<br> 1620 M-ALPS02703102</td> 1621 <td></td> 1622 <td>AndroidOne</td> 1623 <td>22 2016.</td> 1624 </tr> 1625 <tr> 1626 <td>CVE-2016-3773</td> 1627 <td>A-29008363*<br> 1628 M-ALPS02703102</td> 1629 <td></td> 1630 <td>AndroidOne</td> 1631 <td>22 2016.</td> 1632 </tr> 1633 <tr> 1634 <td>CVE-2016-3774</td> 1635 <td>A-29008609*<br> 1636 M-ALPS02703102</td> 1637 <td></td> 1638 <td>AndroidOne</td> 1639 <td>22 2016.</td> 1640 </tr> 1641 </table> 1642 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 1643 1644 <h3 id="elevation-of-privilege-vulnerability-in-kernel-file-system"> 1645 </h3> 1646 <p> 1647 . , 1648 - . , 1649 .</p> 1650 1651 <table> 1652 <col width="19%"> 1653 <col width="16%"> 1654 <col width="10%"> 1655 <col width="27%"> 1656 <col width="16%"> 1657 <tr> 1658 <th>CVE</th> 1659 <th></th> 1660 <th> </th> 1661 <th> Nexus</th> 1662 <th> </th> 1663 </tr> 1664 <tr> 1665 <td>CVE-2016-3775</td> 1666 <td>A-28588279*</td> 1667 <td></td> 1668 <td>Nexus5X, Nexus6, Nexus6P Nexus Player, PixelC</td> 1669 <td>4 2016.</td> 1670 </tr> 1671 </table> 1672 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 1673 1674 <h3 id="elevation-of-privilege-vulnerability-in-usb-driver"> 1675 USB-</h3> 1676 <p> 1677 . , 1678 - . , 1679 .</p> 1680 1681 <table> 1682 <col width="19%"> 1683 <col width="16%"> 1684 <col width="10%"> 1685 <col width="27%"> 1686 <col width="16%"> 1687 <tr> 1688 <th>CVE</th> 1689 <th></th> 1690 <th> </th> 1691 <th> Nexus</th> 1692 <th> </th> 1693 </tr> 1694 <tr> 1695 <td>CVE-2015-8816</td> 1696 <td>A-28712303*</td> 1697 <td></td> 1698 <td>Nexus5X, Nexus6, Nexus6P, Nexus7 (2013), Nexus9, Nexus Player, PixelC</td> 1699 <td>4 2016.</td> 1700 </tr> 1701 </table> 1702 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 1703 1704 <h3 id="elevation-of-privilege-vulnerability-in-qualcomm-components"> 1705 Qualcomm</h3> 1706 <p> , 1707 Qualcomm, , , 1708 , , .</p> 1709 <p> , 1710 - . , 1711 .</p> 1712 1713 <table> 1714 <col width="19%"> 1715 <col width="20%"> 1716 <col width="10%"> 1717 <col width="23%"> 1718 <col width="16%"> 1719 <tr> 1720 <th>CVE</th> 1721 <th></th> 1722 <th> *</th> 1723 <th> Nexus</th> 1724 <th> </th> 1725 </tr> 1726 <tr> 1727 <td>CVE-2014-9795</td> 1728 <td>A-28820720<br> 1729 <a href="https://us.codeaurora.org/cgit/quic/la//kernel/lk/commit/?id=ce2a0ea1f14298abc83729f3a095adab43342342">QC-CR681957</a> 1730 [<a href="https://us.codeaurora.org/cgit/quic/la//kernel/lk/commit/?id=fc3b31f81a1c128c2bcc745564a075022cd72a2e">2</a>] 1731 </td> 1732 <td></td> 1733 <td>Nexus5</td> 1734 <td>8 2014.</td> 1735 </tr> 1736 <tr> 1737 <td>CVE-2014-9794</td> 1738 <td>A-28821172<br> 1739 <a href="https://us.codeaurora.org/cgit/quic/la//kernel/lk/commit/?id=f39085971c8c4e36cadbf8a72aabe6c7ff538ffa">QC-CR646385</a> 1740 </td> 1741 <td></td> 1742 <td>Nexus7 (2013)</td> 1743 <td>8 2014.</td> 1744 </tr> 1745 <tr> 1746 <td>CVE-2015-8892</td> 1747 <td>A-28822807<br> 1748 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/lk/commit/?id=fae606b9dd92c021e2419369975264f24f60db23">QC-CR902998</a> 1749 </td> 1750 <td></td> 1751 <td>Nexus5X, Nexus6P</td> 1752 <td>30 2015.</td> 1753 </tr> 1754 <tr> 1755 <td>CVE-2014-9781</td> 1756 <td>A-28410333<br> 1757 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm/commit/drivers/video/?h=LA.BF.1.1.3_rb1.12&id=a2b5237ad265ec634489c8b296d870827b2a1b13&context=20&ignorews=0&dt=0">QC-CR556471</a> 1758 </td> 1759 <td></td> 1760 <td>Nexus7 (2013)</td> 1761 <td>6 2014.</td> 1762 </tr> 1763 <tr> 1764 <td>CVE-2014-9786</td> 1765 <td>A-28557260<br> 1766 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm-3.10/patch/?id=2fb303d9c6ca080f253b10ed9384293ca69ad32b">QC-CR545979</a></td> 1767 <td></td> 1768 <td>Nexus5, Nexus7 (2013)</td> 1769 <td>13 2014.</td> 1770 </tr> 1771 <tr> 1772 <td>CVE-2014-9788</td> 1773 <td>A-28573112<br> 1774 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm-3.10/commit/?id=73bfc22aa70cc0b7e6709381125a0a42aa72a4f2">QC-CR548872</a></td> 1775 <td></td> 1776 <td>Nexus5</td> 1777 <td>13 2014.</td> 1778 </tr> 1779 <tr> 1780 <td>CVE-2014-9779</td> 1781 <td>A-28598347<br> 1782 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm/commit/arch/arm/mach-msm/qdsp6v2/msm_audio_ion.c?h=LA.BF.1.1.3_rb1.12&id=0b5f49b360afdebf8ef55df1e48ec141b3629621">QC-CR548679</a></td> 1783 <td></td> 1784 <td>Nexus5</td> 1785 <td>13 2014.</td> 1786 </tr> 1787 <tr> 1788 <td>CVE-2014-9780</td> 1789 <td>A-28602014<br> 1790 <a href="https://us.codeaurora.org/cgit/quic/la//kernel/msm-3.10/commit/?id=b5bb13e1f738f90df11e0c17f843c73999a84a54">QC-CR542222</a></td> 1791 <td></td> 1792 <td>Nexus5, Nexus5X, Nexus6P</td> 1793 <td>13 2014.</td> 1794 </tr> 1795 <tr> 1796 <td>CVE-2014-9789</td> 1797 <td>A-28749392<br> 1798 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm/commit/?id=5720ed5c3a786e3ba0a2428ac45da5d7ec996b4e">QC-CR556425</a></td> 1799 <td></td> 1800 <td>Nexus5</td> 1801 <td>13 2014.</td> 1802 </tr> 1803 <tr> 1804 <td>CVE-2014-9793</td> 1805 <td>A-28821253<br> 1806 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/lk/commit/?id=0dcccecc4a6a9a9b3314cb87b2be8b52df1b7a81">QC-CR580567</a></td> 1807 <td></td> 1808 <td>Nexus7 (2013)</td> 1809 <td>13 2014.</td> 1810 </tr> 1811 <tr> 1812 <td>CVE-2014-9782</td> 1813 <td>A-28431531<br> 1814 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm-3.10/patch/?id=2e57a46ab2ba7299d99d9cdc1382bd1e612963fb">QC-CR511349</a></td> 1815 <td></td> 1816 <td>Nexus5, Nexus7 (2013)</td> 1817 <td>31 2014.</td> 1818 </tr> 1819 <tr> 1820 <td>CVE-2014-9783</td> 1821 <td>A-28441831<br> 1822 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm/commit/?id=2b1050b49a9a5f7bb57006648d145e001a3eaa8b">QC-CR511382</a> 1823 [<a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm-3.10/commit/?id=a7502f4f801bb95bff73617309835bb7a016cde5">2</a>]</td> 1824 <td></td> 1825 <td>Nexus7 (2013)</td> 1826 <td>31 2014.</td> 1827 </tr> 1828 <tr> 1829 <td>CVE-2014-9785</td> 1830 <td>A-28469042<br> 1831 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm-3.10/commit/?id=b4338420db61f029ca6713a89c41b3a5852b20ce">QC-CR545747</a></td> 1832 <td></td> 1833 <td>Nexus7 (2013)</td> 1834 <td>31 2014.</td> 1835 </tr> 1836 <tr> 1837 <td>CVE-2014-9787</td> 1838 <td>A-28571496<br> 1839 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm/commit/?id=528400ae4cba715f6c9ff4a2657dafd913f30b8b">QC-CR545764</a></td> 1840 <td></td> 1841 <td>Nexus7 (2013)</td> 1842 <td>31 2014.</td> 1843 </tr> 1844 <tr> 1845 <td>CVE-2014-9784</td> 1846 <td>A-28442449<br> 1847 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm-3.10/commit/?id=36503d639cedcc73880974ed92132247576e72ba">QC-CR585147</a></td> 1848 <td></td> 1849 <td>Nexus5, Nexus7 (2013)</td> 1850 <td>30 2014.</td> 1851 </tr> 1852 <tr> 1853 <td>CVE-2014-9777</td> 1854 <td>A-28598501<br> 1855 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm/commit/?id=17bfaf64ad503d2e6607d2d3e0956f25bf07eb43">QC-CR563654</a></td> 1856 <td></td> 1857 <td>Nexus5, Nexus7 (2013)</td> 1858 <td>30 2014.</td> 1859 </tr> 1860 <tr> 1861 <td>CVE-2014-9778</td> 1862 <td>A-28598515<br> 1863 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm/commit/?id=af85054aa6a1bcd38be2354921f2f80aef1440e5">QC-CR563694</a></td> 1864 <td></td> 1865 <td>Nexus5, Nexus7 (2013)</td> 1866 <td>30 2014.</td> 1867 </tr> 1868 <tr> 1869 <td>CVE-2014-9790</td> 1870 <td>A-28769136<br> 1871 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm/commit/?h=LA.BF.1.1.3_rb1.12&id=6ed921bda8cbb505e8654dfc1095185b0bccc38e">QC-CR545716</a> 1872 [<a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm/commit?h=LA.BF.1.1.3_rb1.12&id=9bc30c0d1832f7dd5b6fa10d5e48a29025176569">2</a>]</td> 1873 <td></td> 1874 <td>Nexus5, Nexus7 (2013)</td> 1875 <td>30 2014.</td> 1876 </tr> 1877 <tr> 1878 <td>CVE-2014-9792</td> 1879 <td>A-28769399<br> 1880 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm-3.10/commit/?id=a3e3dd9fc0a2699ae053ffd3efb52cdc73ad94cd">QC-CR550606</a></td> 1881 <td></td> 1882 <td>Nexus5</td> 1883 <td>30 2014.</td> 1884 </tr> 1885 <tr> 1886 <td>CVE-2014-9797</td> 1887 <td>A-28821090<br> 1888 <a href="https://us.codeaurora.org/cgit/quic/la//kernel/lk/commit/?id=3312737f3e1ec84dd67ee0622c7dd031083f71a4">QC-CR674071</a></td> 1889 <td></td> 1890 <td>Nexus5</td> 1891 <td>3 2014.</td> 1892 </tr> 1893 <tr> 1894 <td>CVE-2014-9791</td> 1895 <td>A-28803396<br> 1896 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm/commit/?h=LA.BF.1.1.3_rb1.12&id=9aabfc9e7775abbbcf534cdecccc4f12ee423b27">QC-CR659364</a></td> 1897 <td></td> 1898 <td>Nexus7 (2013)</td> 1899 <td>29 2014.</td> 1900 </tr> 1901 <tr> 1902 <td>CVE-2014-9796</td> 1903 <td>A-28820722<br> 1904 <a href="https://us.codeaurora.org/cgit/quic/la//kernel/lk/commit/?id=2e21b3a57cac7fb876bcf43244d7cc3dc1f6030d">QC-CR684756</a></td> 1905 <td></td> 1906 <td>Nexus5, Nexus7 (2013)</td> 1907 <td>30 2014.</td> 1908 </tr> 1909 <tr> 1910 <td>CVE-2014-9800</td> 1911 <td>A-28822150<br> 1912 <a href="https://us.codeaurora.org/cgit/quic/la//kernel/lk/commit/?id=6390f200d966dc13cf61bb5abbe3110447ca82b5">QC-CR692478</a></td> 1913 <td></td> 1914 <td>Nexus5, Nexus7 (2013)</td> 1915 <td>31 2014.</td> 1916 </tr> 1917 <tr> 1918 <td>CVE-2014-9799</td> 1919 <td>A-28821731<br> 1920 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/lk/commit/?id=c2119f1fba46f3b6e153aa018f15ee46fe6d5b76">QC-CR691916</a></td> 1921 <td></td> 1922 <td>Nexus5, Nexus7 (2013)</td> 1923 <td>31 2014.</td> 1924 </tr> 1925 <tr> 1926 <td>CVE-2014-9801</td> 1927 <td>A-28822060<br> 1928 <a href="https://us.codeaurora.org/cgit/quic/la//kernel/lk/commit/?id=cf8f5a105bafda906ccb7f149d1a5b8564ce20c0">QC-CR705078</a></td> 1929 <td></td> 1930 <td>Nexus5</td> 1931 <td>28 2014.</td> 1932 </tr> 1933 <tr> 1934 <td>CVE-2014-9802</td> 1935 <td>A-28821965<br> 1936 <a href="https://us.codeaurora.org/cgit/quic/la//kernel/lk/commit/?id=222e0ec9bc755bfeaa74f9a0052b7c709a4ad054">QC-CR705108</a></td> 1937 <td></td> 1938 <td>Nexus5, Nexus7 (2013)</td> 1939 <td>31 2014.</td> 1940 </tr> 1941 <tr> 1942 <td>CVE-2015-8891</td> 1943 <td>A-28842418<br> 1944 <a href="https://us.codeaurora.org/cgit/quic/la//kernel/lk/commit/?id=4f829bb52d0338c87bc6fbd0414b258f55cc7c62">QC-CR813930</a></td> 1945 <td></td> 1946 <td>Nexus5, Nexus7 (2013)</td> 1947 <td>29 2015.</td> 1948 </tr> 1949 <tr> 1950 <td>CVE-2015-8888</td> 1951 <td>A-28822465<br> 1952 <a href="https://us.codeaurora.org/cgit/quic/la//kernel/lk/commit/?id=1321f34f1ebcff61ad7e65e507cfd3e9028af19b">QC-CR813933</a></td> 1953 <td></td> 1954 <td>Nexus5</td> 1955 <td>30 2015.</td> 1956 </tr> 1957 <tr> 1958 <td>CVE-2015-8889</td> 1959 <td>A-28822677<br> 1960 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/lk/commit/?id=fa774e023554427ee14d7a49181e9d4afbec035e">QC-CR804067</a></td> 1961 <td></td> 1962 <td>Nexus6P</td> 1963 <td>30 2015.</td> 1964 </tr> 1965 <tr> 1966 <td>CVE-2015-8890</td> 1967 <td>A-28822878<br> 1968 <a href="https://us.codeaurora.org/cgit/quic/la//kernel/lk/commit/?id=e22aca36da2bb6f5016f3c885eb8c8ff85c115e4">QC-CR823461</a></td> 1969 <td></td> 1970 <td>Nexus5, Nexus7 (2013)</td> 1971 <td>19 2015</td> 1972 </tr> 1973 </table> 1974 <p>* Qualcomm.</p> 1975 1976 <h3 id="elevation-of-privilege-vulnerability-in-qualcomm-usb-driver"> 1977 USB- Qualcomm</h3> 1978 <p> 1979 . , 1980 .</p> 1981 1982 <table> 1983 <col width="19%"> 1984 <col width="16%"> 1985 <col width="10%"> 1986 <col width="27%"> 1987 <col width="16%"> 1988 <tr> 1989 <th>CVE</th> 1990 <th></th> 1991 <th> </th> 1992 <th> Nexus</th> 1993 <th> </th> 1994 </tr> 1995 <tr> 1996 <td>CVE-2016-2502</td> 1997 <td>A-27657963 1998 <a href="https://us.codeaurora.org/cgit/quic/la//kernel/msm-3.10/commit/?id=0bc45d7712eabe315ce8299a49d16433c3801156">QC-CR997044</a></td> 1999 <td></td> 2000 <td>Nexus5X, Nexus6P</td> 2001 <td>11 2016.</td> 2002 </tr> 2003 </table> 2004 2005 <h3 id="elevation-of-privilege-vulnerability-in-qualcomm-wi-fi-driver"> 2006 Wi-Fi- Qualcomm</h3> 2007 <p> 2008 . , 2009 .</p> 2010 2011 <table> 2012 <col width="19%"> 2013 <col width="16%"> 2014 <col width="10%"> 2015 <col width="27%"> 2016 <col width="16%"> 2017 <tr> 2018 <th>CVE</th> 2019 <th></th> 2020 <th> </th> 2021 <th> Nexus</th> 2022 <th> </th> 2023 </tr> 2024 <tr> 2025 <td>CVE-2016-3792</td> 2026 <td>A-27725204 2027 <a href="https://us.codeaurora.org/cgit/quic/la/platform/vendor/qcom-opensource/wlan/prima/commit/?id=28d4f0c1f712bffb4aa5b47f06e97d5a9fa06d29">QC-CR561022</a></td> 2028 <td></td> 2029 <td>Nexus7 (2013)</td> 2030 <td>17 2016.</td> 2031 </tr> 2032 </table> 2033 2034 <h3 id="elevation-of-privilege-vulnerability-in-qualcomm-camera-driver"> 2035 Qualcomm </h3> 2036 <p> 2037 . , 2038 .</p> 2039 2040 <table> 2041 <col width="19%"> 2042 <col width="16%"> 2043 <col width="10%"> 2044 <col width="27%"> 2045 <col width="16%"> 2046 <tr> 2047 <th>CVE</th> 2048 <th></th> 2049 <th> </th> 2050 <th> Nexus</th> 2051 <th> </th> 2052 </tr> 2053 <tr> 2054 <td>CVE-2016-2501</td> 2055 <td>A-27890772* 2056 QC-CR1001092</td> 2057 <td></td> 2058 <td>Nexus5X, Nexus6, Nexus6P, Nexus7 (2013)</td> 2059 <td>27 2016.</td> 2060 </tr> 2061 </table> 2062 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 2063 2064 <h3 id="elevation-of-privilege-vulnerability-in-nvidia-camera-driver"> 2065 NVIDIA </h3> 2066 <p> 2067 . , 2068 .</p> 2069 2070 <table> 2071 <col width="19%"> 2072 <col width="20%"> 2073 <col width="10%"> 2074 <col width="23%"> 2075 <col width="16%"> 2076 <tr> 2077 <th>CVE</th> 2078 <th></th> 2079 <th> </th> 2080 <th> Nexus</th> 2081 <th> </th> 2082 </tr> 2083 <tr> 2084 <td>CVE-2016-3793</td> 2085 <td>A-28026625*<br> 2086 N-CVE20163793</td> 2087 <td></td> 2088 <td>Nexus9</td> 2089 <td>5 2016.</td> 2090 </tr> 2091 </table> 2092 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 2093 2094 <h3 id="elevation-of-privilege-vulnerability-in-mediatek-power-driver"> 2095 MediaTek</h3> 2096 <p> 2097 . , 2098 .</p> 2099 2100 <table> 2101 <col width="19%"> 2102 <col width="20%"> 2103 <col width="10%"> 2104 <col width="23%"> 2105 <col width="16%"> 2106 <tr> 2107 <th>CVE</th> 2108 <th></th> 2109 <th> </th> 2110 <th> Nexus</th> 2111 <th> </th> 2112 </tr> 2113 <tr> 2114 <td>CVE-2016-3795</td> 2115 <td>A-28085222*<br> 2116 M-ALPS02677244</td> 2117 <td></td> 2118 <td>AndroidOne</td> 2119 <td>7 2016.</td> 2120 </tr> 2121 <tr> 2122 <td>CVE-2016-3796</td> 2123 <td>A-29008443*<br> 2124 M-ALPS02677244</td> 2125 <td></td> 2126 <td>AndroidOne</td> 2127 <td>7 2016.</td> 2128 </tr> 2129 </table> 2130 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 2131 2132 <h3 id="elevation-of-privilege-vulnerability-in-qualcomm-wi-fi-driver-2"> 2133 Wi-Fi- Qualcomm</h3> 2134 <p> 2135 . , 2136 .</p> 2137 2138 <table> 2139 <col width="19%"> 2140 <col width="16%"> 2141 <col width="10%"> 2142 <col width="27%"> 2143 <col width="16%"> 2144 <tr> 2145 <th>CVE</th> 2146 <th></th> 2147 <th> </th> 2148 <th> Nexus</th> 2149 <th> </th> 2150 </tr> 2151 <tr> 2152 <td>CVE-2016-3797</td> 2153 <td>A-28085680* 2154 QC-CR1001450</td> 2155 <td></td> 2156 <td>Nexus5X</td> 2157 <td>7 2016.</td> 2158 </tr> 2159 </table> 2160 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 2161 2162 <h3 id="elevation-of-privilege-vulnerability-in-mediatek-hardware-sensor-driver"> 2163 MediaTek </h3> 2164 <p> 2165 . , 2166 .</p> 2167 2168 <table> 2169 <col width="19%"> 2170 <col width="20%"> 2171 <col width="10%"> 2172 <col width="23%"> 2173 <col width="16%"> 2174 <tr> 2175 <th>CVE</th> 2176 <th></th> 2177 <th> </th> 2178 <th> Nexus</th> 2179 <th> </th> 2180 </tr> 2181 <tr> 2182 <td>CVE-2016-3798</td> 2183 <td>A-28174490*<br> 2184 M-ALPS02703105</td> 2185 <td></td> 2186 <td>AndroidOne</td> 2187 <td>11 2016.</td> 2188 </tr> 2189 </table> 2190 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 2191 2192 <h3 id="elevation-of-privilege-vulnerability-in-mediatek-video-driver"> 2193 MediaTek</h3> 2194 <p> 2195 . , 2196 .</p> 2197 2198 <table> 2199 <col width="19%"> 2200 <col width="20%"> 2201 <col width="10%"> 2202 <col width="23%"> 2203 <col width="16%"> 2204 <tr> 2205 <th>CVE</th> 2206 <th></th> 2207 <th> </th> 2208 <th> Nexus</th> 2209 <th> </th> 2210 </tr> 2211 <tr> 2212 <td>CVE-2016-3799</td> 2213 <td>A-28175025*<br> 2214 M-ALPS02693738</td> 2215 <td></td> 2216 <td>AndroidOne</td> 2217 <td>11 2016.</td> 2218 </tr> 2219 <tr> 2220 <td>CVE-2016-3800</td> 2221 <td>A-28175027*<br> 2222 M-ALPS02693739</td> 2223 <td></td> 2224 <td>AndroidOne</td> 2225 <td>11 2016.</td> 2226 </tr> 2227 </table> 2228 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 2229 2230 <h3 id="elevation-of-privilege-vulnerability-in-mediatek-gps-driver"> 2231 GPS- MediaTek</h3> 2232 <p> 2233 . , 2234 .</p> 2235 2236 <table> 2237 <col width="19%"> 2238 <col width="20%"> 2239 <col width="10%"> 2240 <col width="23%"> 2241 <col width="16%"> 2242 <tr> 2243 <th>CVE</th> 2244 <th></th> 2245 <th> </th> 2246 <th> Nexus</th> 2247 <th> </th> 2248 </tr> 2249 <tr> 2250 <td>CVE-2016-3801</td> 2251 <td>A-28174914*<br> 2252 M-ALPS02688853</td> 2253 <td></td> 2254 <td>AndroidOne</td> 2255 <td>11 2016.</td> 2256 </tr> 2257 </table> 2258 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 2259 2260 <h3 id="elevation-of-privilege-vulnerability-in-kernel-file-system-2"> 2261 </h3> 2262 <p> 2263 . , 2264 .</p> 2265 2266 <table> 2267 <col width="19%"> 2268 <col width="16%"> 2269 <col width="10%"> 2270 <col width="27%"> 2271 <col width="16%"> 2272 <tr> 2273 <th>CVE</th> 2274 <th></th> 2275 <th> </th> 2276 <th> Nexus</th> 2277 <th> </th> 2278 </tr> 2279 <tr> 2280 <td>CVE-2016-3802</td> 2281 <td>A-28271368*</td> 2282 <td></td> 2283 <td>Nexus9</td> 2284 <td>19 2016.</td> 2285 </tr> 2286 <tr> 2287 <td>CVE-2016-3803</td> 2288 <td>A-28588434*</td> 2289 <td></td> 2290 <td>Nexus5X, Nexus6P</td> 2291 <td>4 2016.</td> 2292 </tr> 2293 </table> 2294 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 2295 2296 <h3 id="elevation-of-privilege-vulnerability-in-mediatek-power-management-driver"> 2297 MediaTek</h3> 2298 <p> 2299 . , 2300 .</p> 2301 2302 <table> 2303 <col width="19%"> 2304 <col width="20%"> 2305 <col width="10%"> 2306 <col width="23%"> 2307 <col width="16%"> 2308 <tr> 2309 <th>CVE</th> 2310 <th></th> 2311 <th> </th> 2312 <th> Nexus</th> 2313 <th> </th> 2314 </tr> 2315 <tr> 2316 <td>CVE-2016-3804</td> 2317 <td>A-28332766*<br> 2318 M-ALPS02694410</td> 2319 <td></td> 2320 <td>AndroidOne</td> 2321 <td>20 2016.</td> 2322 </tr> 2323 <tr> 2324 <td>CVE-2016-3805</td> 2325 <td>A-28333002*<br> 2326 M-ALPS02694412</td> 2327 <td></td> 2328 <td>AndroidOne</td> 2329 <td>21 2016.</td> 2330 </tr> 2331 </table> 2332 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 2333 2334 <h3 id="elevation-of-privilege-vulnerability-in-mediatek-display-driver"> 2335 MediaTek</h3> 2336 <p> 2337 . , 2338 .</p> 2339 2340 <table> 2341 <col width="19%"> 2342 <col width="20%"> 2343 <col width="10%"> 2344 <col width="23%"> 2345 <col width="16%"> 2346 <tr> 2347 <th>CVE</th> 2348 <th></th> 2349 <th> </th> 2350 <th> Nexus</th> 2351 <th> </th> 2352 </tr> 2353 <tr> 2354 <td>CVE-2016-3806</td> 2355 <td>A-28402341*<br> 2356 M-ALPS02715341</td> 2357 <td></td> 2358 <td>AndroidOne</td> 2359 <td>26 2016.</td> 2360 </tr> 2361 </table> 2362 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 2363 2364 <h3 id="elevation-of-privilege-vulnerability-in-serial-peripheral-interface-driver"> 2365 SPI</h3> 2366 <p> 2367 . , 2368 .</p> 2369 2370 <table> 2371 <col width="19%"> 2372 <col width="16%"> 2373 <col width="10%"> 2374 <col width="27%"> 2375 <col width="16%"> 2376 <tr> 2377 <th>CVE</th> 2378 <th></th> 2379 <th> </th> 2380 <th> Nexus</th> 2381 <th> </th> 2382 </tr> 2383 <tr> 2384 <td>CVE-2016-3807</td> 2385 <td>A-28402196*</td> 2386 <td></td> 2387 <td>Nexus5X, Nexus6P</td> 2388 <td>26 2016.</td> 2389 </tr> 2390 <tr> 2391 <td>CVE-2016-3808</td> 2392 <td>A-28430009*</td> 2393 <td></td> 2394 <td>Pixel</td> 2395 <td>26 2016.</td> 2396 </tr> 2397 </table> 2398 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 2399 2400 <h3 id="elevation-of-privilege-vulnerability-in-qualcomm-sound-driver"> 2401 Qualcomm</h3> 2402 <p> 2403 . , 2404 .</p> 2405 2406 <table> 2407 <col width="19%"> 2408 <col width="16%"> 2409 <col width="10%"> 2410 <col width="27%"> 2411 <col width="16%"> 2412 <tr> 2413 <th>CVE</th> 2414 <th></th> 2415 <th> </th> 2416 <th> Nexus</th> 2417 <th> </th> 2418 </tr> 2419 <tr> 2420 <td>CVE-2016-2068</td> 2421 <td>A-28470967 2422 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm-3.10/commit/?h=APSS.FSM.3.0&id=01ee86da5a0cd788f134e360e2be517ef52b6b00">QC-CR1006609</a></td> 2423 <td></td> 2424 <td>Nexus5, Nexus5X, Nexus6, Nexus6P</td> 2425 <td>28 2016.</td> 2426 </tr> 2427 </table> 2428 2429 <h3 id="elevation-of-privilege-vulnerability-in-kernel"> 2430 </h3> 2431 <p> 2432 . , 2433 .</p> 2434 2435 <table> 2436 <col width="19%"> 2437 <col width="20%"> 2438 <col width="10%"> 2439 <col width="23%"> 2440 <col width="16%"> 2441 <tr> 2442 <th>CVE</th> 2443 <th></th> 2444 <th> </th> 2445 <th> Nexus</th> 2446 <th> </th> 2447 </tr> 2448 <tr> 2449 <td>CVE-2014-9803</td> 2450 <td>A-28557020<br> 2451 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/arch/arm64/include/asm/pgtable.h?h=linux-3.10.y&id=5a0fdfada3a2aa50d7b947a2e958bf00cbe0d830"> 2452 Upstream kernel</a></td> 2453 <td></td> 2454 <td>Nexus5X, Nexus6P</td> 2455 <td> Google</td> 2456 </tr> 2457 </table> 2458 2459 <h3 id="information-disclosure-vulnerability-in-networking-component"> 2460 </h3> 2461 <p> 2462 . 2463 - 2464 .</p> 2465 2466 <table> 2467 <col width="19%"> 2468 <col width="16%"> 2469 <col width="10%"> 2470 <col width="27%"> 2471 <col width="16%"> 2472 <tr> 2473 <th>CVE</th> 2474 <th></th> 2475 <th> </th> 2476 <th> Nexus</th> 2477 <th> </th> 2478 </tr> 2479 <tr> 2480 <td>CVE-2016-3809</td> 2481 <td>A-27532522*</td> 2482 <td></td> 2483 <td><a href="#all_nexus"> </a></td> 2484 <td>5 2016.</td> 2485 </tr> 2486 </table> 2487 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 2488 2489 <h3 id="information-disclosure-vulnerability-in-mediatek-wi-fi-driver"> 2490 Wi-Fi- MediaTek</h3> 2491 <p> 2492 . - 2493 .</p> 2494 2495 <table> 2496 <col width="19%"> 2497 <col width="20%"> 2498 <col width="10%"> 2499 <col width="23%"> 2500 <col width="16%"> 2501 <tr> 2502 <th>CVE</th> 2503 <th></th> 2504 <th> </th> 2505 <th> Nexus</th> 2506 <th> </th> 2507 </tr> 2508 <tr> 2509 <td>CVE-2016-3810</td> 2510 <td>A-28175522*<br> 2511 M-ALPS02694389</td> 2512 <td></td> 2513 <td>AndroidOne</td> 2514 <td>12 2016.</td> 2515 </tr> 2516 </table> 2517 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 2518 2519 <h3 id="elevation-of-privilege-vulnerability-in-kernel-video-driver"> 2520 </h3> 2521 <p> 2522 . , 2523 .</p> 2524 2525 <table> 2526 <col width="19%"> 2527 <col width="16%"> 2528 <col width="10%"> 2529 <col width="27%"> 2530 <col width="16%"> 2531 <tr> 2532 <th>CVE</th> 2533 <th></th> 2534 <th> </th> 2535 <th> Nexus</th> 2536 <th> </th> 2537 </tr> 2538 <tr> 2539 <td>CVE-2016-3811</td> 2540 <td>A-28447556*</td> 2541 <td></td> 2542 <td>Nexus9</td> 2543 <td> Google</td> 2544 </tr> 2545 </table> 2546 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 2547 2548 <h3 id="information-disclosure-vulnerability-in-mediatek-video-codec-driver"> 2549 MediaTek</h3> 2550 <p> 2551 . 2552 , 2553 .</p> 2554 2555 <table> 2556 <col width="19%"> 2557 <col width="20%"> 2558 <col width="10%"> 2559 <col width="23%"> 2560 <col width="16%"> 2561 <tr> 2562 <th>CVE</th> 2563 <th></th> 2564 <th> </th> 2565 <th> Nexus</th> 2566 <th> </th> 2567 </tr> 2568 <tr> 2569 <td>CVE-2016-3812</td> 2570 <td>A-28174833*<br> 2571 M-ALPS02688832</td> 2572 <td></td> 2573 <td>AndroidOne</td> 2574 <td>11 2016.</td> 2575 </tr> 2576 </table> 2577 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 2578 2579 <h3 id="information-disclosure-vulnerability-in-qualcomm-usb-driver"> 2580 USB- Qualcomm</h3> 2581 <p> 2582 . 2583 2584 , 2585 .</p> 2586 2587 <table> 2588 <col width="19%"> 2589 <col width="16%"> 2590 <col width="10%"> 2591 <col width="27%"> 2592 <col width="16%"> 2593 <tr> 2594 <th>CVE</th> 2595 <th></th> 2596 <th> </th> 2597 <th> Nexus</th> 2598 <th> </th> 2599 </tr> 2600 <tr> 2601 <td>CVE-2016-3813</td> 2602 <td>A-28172322* 2603 QC-CR1010222</td> 2604 <td></td> 2605 <td>Nexus5, Nexus5X, Nexus6, Nexus6P</td> 2606 <td>11 2016.</td> 2607 </tr> 2608 </table> 2609 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 2610 2611 <h3 id="information-disclosure-vulnerability-in-nvidia-camera-driver"> 2612 NVIDIA </h3> 2613 <p> 2614 . 2615 2616 , 2617 .</p> 2618 2619 <table> 2620 <col width="19%"> 2621 <col width="20%"> 2622 <col width="10%"> 2623 <col width="23%"> 2624 <col width="16%"> 2625 <tr> 2626 <th>CVE</th> 2627 <th></th> 2628 <th> </th> 2629 <th> Nexus</th> 2630 <th> </th> 2631 </tr> 2632 <tr> 2633 <td>CVE-2016-3814</td> 2634 <td>A-28193342*<br> 2635 N-CVE20163814</td> 2636 <td></td> 2637 <td>Nexus9</td> 2638 <td>14 2016.</td> 2639 </tr> 2640 <tr> 2641 <td>CVE-2016-3815</td> 2642 <td>A-28522274*<br> 2643 N-CVE20163815</td> 2644 <td></td> 2645 <td>Nexus9</td> 2646 <td>1 2016.</td> 2647 </tr> 2648 </table> 2649 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 2650 2651 <h3 id="information-disclosure-vulnerability-in-mediatek-display-driver"> 2652 MediaTek</h3> 2653 <p> 2654 . 2655 , 2656 .</p> 2657 2658 <table> 2659 <col width="19%"> 2660 <col width="16%"> 2661 <col width="10%"> 2662 <col width="27%"> 2663 <col width="16%"> 2664 <tr> 2665 <th>CVE</th> 2666 <th></th> 2667 <th> </th> 2668 <th> Nexus</th> 2669 <th> </th> 2670 </tr> 2671 <tr> 2672 <td>CVE-2016-3816</td> 2673 <td>A-28402240*</td> 2674 <td></td> 2675 <td>AndroidOne</td> 2676 <td>26 2016.</td> 2677 </tr> 2678 </table> 2679 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 2680 2681 <h3 id="information-disclosure-vulnerability-in-kernel-teletype-driver"> 2682 </h3> 2683 <p> 2684 . 2685 2686 , 2687 .</p> 2688 2689 <table> 2690 <col width="19%"> 2691 <col width="20%"> 2692 <col width="10%"> 2693 <col width="23%"> 2694 <col width="16%"> 2695 <tr> 2696 <th>CVE</th> 2697 <th></th> 2698 <th> </th> 2699 <th> Nexus</th> 2700 <th> </th> 2701 </tr> 2702 <tr> 2703 <td>CVE-2016-0723</td> 2704 <td>A-28409131<br> 2705 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=5c17c861a357e9458001f021a7afa7aab9937439">Upstream 2706 kernel</a></td> 2707 <td></td> 2708 <td>Nexus5, Nexus5X, Nexus6, Nexus6P, Nexus7 (2013), Nexus9, Nexus 2709 Player, PixelC</td> 2710 <td>26 2016.</td> 2711 </tr> 2712 </table> 2713 2714 <h3 id="denial-of-service-vulnerability-in-qualcomm-bootloader"> 2715 Qualcomm</h3> 2716 <p> 2717 . , . 2718 , 2719 .</p> 2720 2721 <table> 2722 <col width="19%"> 2723 <col width="16%"> 2724 <col width="10%"> 2725 <col width="27%"> 2726 <col width="16%"> 2727 <tr> 2728 <th>CVE</th> 2729 <th></th> 2730 <th> </th> 2731 <th> Nexus</th> 2732 <th> </th> 2733 </tr> 2734 <tr> 2735 <td>CVE-2014-9798</td> 2736 <td>A-28821448 2737 <a href="https://us.codeaurora.org/cgit/quic/la//kernel/lk/commit/?id=b05eed2491a098bf627ac485a5b43d2f4fae2484">QC-CR681965</a></td> 2738 <td></td> 2739 <td>Nexus5</td> 2740 <td>31 2014.</td> 2741 </tr> 2742 <tr> 2743 <td>CVE-2015-8893</td> 2744 <td>A-28822690 2745 <a href="https://us.codeaurora.org/cgit/quic/la//kernel/lk/commit/?id=800255e8bfcc31a02e89460460e3811f225e7a69">QC-CR822275</a></td> 2746 <td></td> 2747 <td>Nexus5, Nexus7 (2013)</td> 2748 <td>19 2015</td> 2749 </tr> 2750 </table> 2751 <h2 id="common-questions-and-answers"> </h2> 2752 <p> , 2753 .</p> 2754 2755 <p><strong>1. , , ?</strong></p> 2756 <p> 1 2016 , 2757 2016-07-01. 5 2016 2758 , 2016-07-05. , 2759 , <a href="https://support.google.com/nexus/answer/4457705"> </a>. 2760 , , 2761 2762 [ro.build.version.security_patch]:[2016-07-01] 2763 [ro.build.version.security_patch]:[2016-07-05].</p> 2764 2765 <p><strong>2. ?</strong></p> 2766 <p> , 2767 , 2768 Android. Android 2769 2770 .</p> 2771 <p> 5 2016 2772 , 2773 .</p> 2774 <p> 1 2016 2775 , 2776 , . , 2777 , 5 2016.</p> 2778 2779 <p id="all_nexus"><strong>3. , Nexus ?</strong></p> 2780 <p> <a href="#2016-07-01_details">2016-07-01</a> 2781 <a href="#2016-07-05_details">2016-07-05</a> " Nexus". , 2782 .</p> 2783 <ul> 2784 <li><strong> .</strong> <em></em> 2785 2786 <a href="https://support.google.com/nexus/answer/4457705#nexus_devices"> Nexus</a>: Nexus5, Nexus5X, Nexus6, 2787 Nexus6P, Nexus7 (2013), Nexus9, AndroidOne, Nexus Player 2788 PixelC.</li> 2789 <li><strong> .</strong> <em></em> , 2790 .</li> 2791 <li><strong>.</strong> Nexus.<em></em></li> 2792 </ul> 2793 2794 <p><strong>4. ""?</strong></p> 2795 <p> <em></em>. 2796 , 2797 , :</p> 2798 2799 <table> 2800 <tr> 2801 <th></th> 2802 <th></th> 2803 </tr> 2804 <tr> 2805 <td>A-</td> 2806 <td> Android</td> 2807 </tr> 2808 <tr> 2809 <td>QC-</td> 2810 <td> Qualcomm</td> 2811 </tr> 2812 <tr> 2813 <td>M-</td> 2814 <td> MediaTek</td> 2815 </tr> 2816 <tr> 2817 <td>N-</td> 2818 <td> NVIDIA</td> 2819 </tr> 2820 </table> 2821 2822 <h2 id="revisions"></h2> 2823 <ul> 2824 <li>6 2016. .</li> 2825 <li>7 2016. 2826 <ul> 2827 <li> AOSP. 2828 <li> CVE-2016-3794, CVE-2016-3814. 2829 <li> CVE-2016-2501 CVE-2016-2502. 2830 </li></li></li></ul> 2831 </li> 2832 <li>11 2016. CVE-2016-3750.</li> 2833 <li>14 2016. CVE-2016-2503.</li> 2834 </ul> 2835 2836 </body> 2837 </html> 2838
