1 <html devsite> 2 <head> 3 <title> Android 2016.</title> 4 <meta name="project_path" value="/_project.yaml" /> 5 <meta name="book_path" value="/_book.yaml" /> 6 </head> 7 <body> 8 <!-- 9 Copyright 2017 The Android Open Source Project 10 11 Licensed under the Apache License, Version 2.0 (the "License"); 12 you may not use this file except in compliance with the License. 13 You may obtain a copy of the License at 14 15 http://www.apache.org/licenses/LICENSE-2.0 16 17 Unless required by applicable law or agreed to in writing, software 18 distributed under the License is distributed on an "AS IS" BASIS, 19 WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 20 See the License for the specific language governing permissions and 21 limitations under the License. 22 --> 23 24 25 <p><em> 3 2016 | 4 2016</em> 26 </p> 27 <p> 28 29 Android. 30 Nexus 31 Nexus <a href="https://developers.google.com/android/nexus/images"> </a>. , 32 , 5 2016 33 . , , 34 <a href="https://support.google.com/nexus/answer/4457705#nexus_devices"> </a>. Nexus 35 36 5 2016. 37 </p> 38 <p> 39 6 2016 . 40 Android Open Source Project (AOSP). 41 AOSP. 42 </p> 43 <p> 44 , 45 - . , 46 . 47 </p> 48 <p> 49 . <a href="#mitigations"> </a> 50 , <a href="/security/enhancements/index.html"> </a> , 51 <a href="https://developer.android.com/training/safetynet/index.html">SafetyNet</a>, Android. 52 </p> 53 <p> 54 . 55 </p> 56 <h2 id="announcements"></h2> 57 <ul> 58 <li> , 59 60 , Android. 61 62 <a href="#common-questions-and-answers"> </a>. 63 <ul> 64 <li><strong>2016-10-01</strong>: , 65 2016-10-01 .</li> 66 <li><strong>2016-10-05</strong>: , 67 2016-10-01 2016-10-05, 68 .</li> 69 </ul> 70 </li> 71 <li> Nexus 72 5 2016.</li> 73 </ul> 74 <h2 id="security-vulnerability-summary"> </h2> 75 <p> 76 , (CVE) 77 , , Nexus. 78 <a href="/security/overview/updates-resources.html#severity"> </a> , 79 , 80 . 81 </p> 82 <h3 id="2016-10-01-security-patch-level-vulnerability-summary"> ( 2016-10-01)</h3> 83 <p> 84 1 2016 . 85 </p> 86 <table> 87 <col width="55%"> 88 <col width="20%"> 89 <col width="13%"> 90 <col width="12%"> 91 <tr> 92 <th></th> 93 <th>CVE</th> 94 <th> </th> 95 <th> Nexus?</th> 96 </tr> 97 <tr> 98 <td> ServiceManager</td> 99 <td>CVE-2016-3900</td> 100 <td></td> 101 <td></td> 102 </tr> 103 <tr> 104 <td> </td> 105 <td>CVE-2016-3908</td> 106 <td></td> 107 <td></td> 108 </tr> 109 <tr> 110 <td> mediaserver</td> 111 <td>CVE-2016-3909, CVE-2016-3910, CVE-2016-3913</td> 112 <td></td> 113 <td></td> 114 </tr> 115 <tr> 116 <td> Zygote</td> 117 <td>CVE-2016-3911</td> 118 <td></td> 119 <td></td> 120 </tr> 121 <tr> 122 <td> Framework API</td> 123 <td>CVE-2016-3912</td> 124 <td></td> 125 <td></td> 126 </tr> 127 <tr> 128 <td> </td> 129 <td>CVE-2016-3914</td> 130 <td></td> 131 <td></td> 132 </tr> 133 <tr> 134 <td> </td> 135 <td>CVE-2016-3915, CVE-2016-3916</td> 136 <td></td> 137 <td></td> 138 </tr> 139 <tr> 140 <td> </td> 141 <td>CVE-2016-3917</td> 142 <td></td> 143 <td></td> 144 </tr> 145 <tr> 146 <td> AOSP</td> 147 <td>CVE-2016-3918</td> 148 <td></td> 149 <td></td> 150 </tr> 151 <tr> 152 <td> Wi-Fi</td> 153 <td>CVE-2016-3882</td> 154 <td></td> 155 <td></td> 156 </tr> 157 <tr> 158 <td> GPS</td> 159 <td>CVE-2016-5348</td> 160 <td></td> 161 <td></td> 162 </tr> 163 <tr> 164 <td> mediaserver</td> 165 <td>CVE-2016-3920</td> 166 <td></td> 167 <td></td> 168 </tr> 169 <tr> 170 <td> Framework Listener</td> 171 <td>CVE-2016-3921</td> 172 <td></td> 173 <td></td> 174 </tr> 175 <tr> 176 <td> </td> 177 <td>CVE-2016-3922</td> 178 <td></td> 179 <td></td> 180 </tr> 181 <tr> 182 <td> </td> 183 <td>CVE-2016-3923</td> 184 <td></td> 185 <td></td> 186 </tr> 187 <tr> 188 <td> mediaserver</td> 189 <td>CVE-2016-3924</td> 190 <td></td> 191 <td></td> 192 </tr> 193 <tr> 194 <td> Wi-Fi</td> 195 <td>CVE-2016-3925</td> 196 <td></td> 197 <td></td> 198 </tr> 199 </table> 200 <h3 id="2016-10-05-security-patch-level-vulnerability-summary"> ( 2016-10-05)</h3> 201 <p> 202 5 2016 , 203 2016-10-01, , . 204 </p> 205 <table> 206 <col width="55%"> 207 <col width="20%"> 208 <col width="13%"> 209 <col width="12%"> 210 <tr> 211 <th></th> 212 <th>CVE</th> 213 <th> </th> 214 <th> Nexus?</th> 215 </tr> 216 <tr> 217 <td> ASN.1 </td> 218 <td>CVE-2016-0758</td> 219 <td></td> 220 <td></td> 221 </tr> 222 <tr> 223 <td> </td> 224 <td>CVE-2016-7117</td> 225 <td></td> 226 <td></td> 227 </tr> 228 <tr> 229 <td> MediaTek</td> 230 <td>CVE-2016-3928</td> 231 <td></td> 232 <td></td> 233 </tr> 234 <tr> 235 <td> </td> 236 <td>CVE-2016-5340</td> 237 <td></td> 238 <td></td> 239 </tr> 240 <tr> 241 <td> Qualcomm</td> 242 <td>CVE-2016-3926, CVE-2016-3927, CVE-2016-3929</td> 243 <td></td> 244 <td></td> 245 </tr> 246 247 <tr> 248 <td> Qualcomm</td> 249 <td>CVE-2016-2059</td> 250 <td></td> 251 <td></td> 252 </tr> 253 <tr> 254 <td> NVIDIA MMC</td> 255 <td>CVE-2016-3930</td> 256 <td></td> 257 <td></td> 258 </tr> 259 <tr> 260 <td> Qualcomm 261 QSEE Communicator</td> 262 <td>CVE-2016-3931</td> 263 <td></td> 264 <td></td> 265 </tr> 266 <tr> 267 <td> mediaserver</td> 268 <td>CVE-2016-3932, CVE-2016-3933</td> 269 <td></td> 270 <td></td> 271 </tr> 272 <tr> 273 <td> Qualcomm </td> 274 <td>CVE-2016-3903, CVE-2016-3934</td> 275 <td></td> 276 <td></td> 277 </tr> 278 <tr> 279 <td> Qualcomm</td> 280 <td>CVE-2015-8951</td> 281 <td></td> 282 <td></td> 283 </tr> 284 <tr> 285 <td> Qualcomm </td> 286 <td>CVE-2016-3901, CVE-2016-3935</td> 287 <td></td> 288 <td></td> 289 </tr> 290 <tr> 291 <td> MediaTek</td> 292 <td>CVE-2016-3936, CVE-2016-3937</td> 293 <td></td> 294 <td></td> 295 </tr> 296 <tr> 297 <td> Qualcomm</td> 298 <td>CVE-2016-3938, CVE-2016-3939</td> 299 <td></td> 300 <td></td> 301 </tr> 302 <tr> 303 <td> Synaptics</td> 304 <td>CVE-2016-3940, CVE-2016-6672</td> 305 <td></td> 306 <td></td> 307 </tr> 308 <tr> 309 <td> NVIDIA </td> 310 <td>CVE-2016-6673</td> 311 <td></td> 312 <td></td> 313 </tr> 314 <tr> 315 <td> system_server</td> 316 <td>CVE-2016-6674</td> 317 <td></td> 318 <td></td> 319 </tr> 320 <tr> 321 <td> Wi-Fi- Qualcomm</td> 322 <td>CVE-2016-3905, CVE-2016-6675, CVE-2016-6676, CVE-2016-5342</td> 323 <td></td> 324 <td></td> 325 </tr> 326 <tr> 327 <td> </td> 328 <td>CVE-2015-8955</td> 329 <td></td> 330 <td></td> 331 </tr> 332 <tr> 333 <td> ION </td> 334 <td>CVE-2015-8950</td> 335 <td></td> 336 <td></td> 337 </tr> 338 <tr> 339 <td> NVIDIA </td> 340 <td>CVE-2016-6677</td> 341 <td></td> 342 <td></td> 343 </tr> 344 <tr> 345 <td> Qualcomm</td> 346 <td>CVE-2015-0572</td> 347 <td></td> 348 <td></td> 349 </tr> 350 <tr> 351 <td> Qualcomm</td> 352 <td>CVE-2016-3860</td> 353 <td></td> 354 <td></td> 355 </tr> 356 <tr> 357 <td> Motorola USBNet</td> 358 <td>CVE-2016-6678</td> 359 <td></td> 360 <td></td> 361 </tr> 362 <tr> 363 <td> Qualcomm</td> 364 <td>CVE-2016-6679, CVE-2016-3902, CVE-2016-6680, CVE-2016-6681, CVE-2016-6682</td> 365 <td></td> 366 <td></td> 367 </tr> 368 <tr> 369 <td> </td> 370 <td>CVE-2016-6683, CVE-2016-6684, CVE-2015-8956, CVE-2016-6685</td> 371 <td></td> 372 <td></td> 373 </tr> 374 <tr> 375 <td> NVIDIA</td> 376 <td>CVE-2016-6686, CVE-2016-6687, CVE-2016-6688</td> 377 <td></td> 378 <td></td> 379 </tr> 380 <tr> 381 <td> </td> 382 <td>CVE-2016-6689</td> 383 <td></td> 384 <td></td> 385 </tr> 386 <tr> 387 <td> </td> 388 <td>CVE-2016-5696</td> 389 <td></td> 390 <td></td> 391 </tr> 392 <tr> 393 <td> </td> 394 <td>CVE-2016-6690</td> 395 <td></td> 396 <td></td> 397 </tr> 398 <tr> 399 <td> Qualcomm</td> 400 <td>CVE-2016-6691, CVE-2016-6692, CVE-2016-6693, CVE-2016-6694, 401 CVE-2016-6695, CVE-2016-6696, CVE-2016-5344, CVE-2016-5343</td> 402 <td></td> 403 <td></td> 404 </tr> 405 </table> 406 407 <h2 id="mitigations"> </h2> 408 <p> 409 , <a href="/security/enhancements/index.html"> </a> 410 , SafetyNet, 411 Android. 412 </p> 413 <ul> 414 <li> 415 Android, 416 .</li> 417 <li>, Android, 418 <a href="http://static.googleusercontent.com/media/source.android.com/ru//security/reports/Google_Android_Security_2015_Report_Final.pdf"> SafetyNet</a>. 419 <a href="http://static.googleusercontent.com/media/source.android.com/ru//security/reports/Google_Android_Security_PHA_classifications.pdf"> 420 </a>. 421 <a href="http://www.android.com/gms"> Google</a>. , 422 . 423 Google Play , 424 . 425 , . 426 , , 427 , 428 . , 429 .</li> 430 <li> Google Hangouts Messenger 431 , mediaserver, .</li> 432 </ul> 433 <h2 id="acknowledgements"></h2> 434 <p> 435 , : 436 </p> 437 <ul> 438 <li> : CVE-2016-3882</li> 439 <li> : CVE-2016-3921</li> 440 <li> Copperhead Security: CVE-2016-3922</li> 441 <li><a href="https://github.com/google/syzkaller"> </a> Google: 442 CVE-2016-7117</li> 443 <li>dosomder: CVE-2016-3931</li> 444 <li> () Trend Micro: CVE-2016-3920</li> 445 <li> (<a href="https://twitter.com/chengjia4574">@chengjia4574</a>) 446 <a href="http://weibo.com/jfpan">pjf</a> IceSword Lab, Qihoo 360 447 Technology Co. Ltd.: CVE-2016-6690, CVE-2016-3901, CVE-2016-6672, CVE-2016-3940, 448 CVE-2016-3935</li> 449 <li><a href="mailto:hzhan033 (a] ucr.edu"> </a>, 450 <a href="mailto:dshe002 (a] ucr.edu"> </a> 451 <a href="mailto:zhiyunq (a] cs.ucr.edu"> </a> UC Riverside: CVE-2015-8950</li> 452 <li> Alpha Team, Qihoo 360 Technology Co. Ltd.: CVE-2016-3860</li> 453 <li> Google Project Zero: CVE-2016-3900, CVE-2016-3885</li> 454 <li><a href="http://keybase.io/jasonrogena"> </a>: CVE-2016-3917</li> 455 <li> (<a href="https://twitter.com/jianqiangzhao">@jianqiangzhao</a>) 456 <a href="http://weibo.com/jfpan">pjf</a> IceSword Lab, Qihoo 360: CVE-2016-6688, 457 CVE-2016-6677, CVE-2016-6673, CVE-2016-6687, CVE-2016-6686, CVE-2016-6681, 458 CVE-2016-6682, CVE-2016-3930</li> 459 <li> (<a href="https://twitter.com/jduck">@jduck</a>): 460 CVE-2016-3920</li> 461 <li> Google: CVE-2016-3905</li> 462 <li> Google Project Zero: CVE-2016-6689</li> 463 <li><a href="https://github.com/michalbednarski"> </a>: 464 CVE-2016-3914, CVE-2016-6674, CVE-2016-3911, CVE-2016-3912</li> 465 <li> (<a href="https://twitter.com/Mingjian_Zhou">@Mingjian_Zhou</a>), 466 (<a href="https://twitter.com/chiachih_wu">@chiachih_wu</a>) 467 <a href="http://c0reteam.org">C0RE Team</a>: CVE-2016-3933, CVE-2016-3932</li> 468 <li>Nightwatch Cybersecurity Research 469 (<a href="https://twitter.com/nightwatchcyber">@nightwatchcyber</a>): CVE-2016-5348</li> 470 <li> IBM Security X-Force: CVE-2016-6678</li> 471 <li> Google: CVE-2016-3925</li> 472 <li><a href="mailto:sbauer (a] plzdonthack.me"> </a> 473 (<a href="https://twitter.com/ScottyBauer1">@ScottyBauer1</a>): 474 CVE-2016-3936, CVE-2016-3928, CVE-2016-3902, CVE-2016-3937, CVE-2016-6696</li> 475 <li> (<a href="https://twitter.com/lingtongshen">@lingtongshen</a>) , 476 Trend Micro: CVE-2016-6685, CVE-2016-6683, 477 CVE-2016-6680, CVE-2016-6679, CVE-2016-3903, CVE-2016-6693, CVE-2016-6694, 478 CVE-2016-6695</li> 479 <li><a href="mailto:vancouverdou (a] gmail.com"> </a>, 480 (<a href="https://twitter.com/Mingjian_Zhou">@Mingjian_Zhou</a>), 481 (<a href="https://twitter.com/chiachih_wu">@chiachih_wu</a>) 482 <a href="http://c0reteam.org">C0RE Team</a>: CVE-2016-3909</li> 483 <li> () (<a href="https://twitter.com/oldfresher">@oldfresher</a>) 484 Alpha Team, Qihoo 360 Technology Co. Ltd.: CVE-2016-3918</li> 485 <li> (<a href="http://weibo.com/wishlinux"></a>) 486 (<a href="https://twitter.com/wish_wu">@wish_wu)</a> 487 <a href="http://blog.trendmicro.com/trendlabs-security-intelligence/author/wishwu/">Trend 488 Micro Inc.</a>: CVE-2016-3924, CVE-2016-3915, CVE-2016-3916, CVE-2016-3910</li> 489 <li> Eagleye, SCC, Huawei: CVE-2016-3938</li> 490 <li> () (<a href="https://twitter.com/0xr0ot">@0xr0ot</a>) 491 Security Research Lab, <a href="http://www.cmcm.com">Cheetah Mobile</a>: 492 CVE-2016-3908</li> 493 </ul> 494 495 <h2 id="2016-10-01-security-patch-level-vulnerability-details"> ( 2016-10-01)</h2> 496 <p> 497 498 <a href="#2016-10-01-security-patch-level-vulnerability-summary"> </a> : , 499 CVE, , , 500 Nexus AOSP ( ), 501 . , 502 , (, AOSP), 503 . 504 </p> 505 <h3 id="eopv-in-servicemanager"> ServiceManager</h3> 506 <p> 507 508 , system_server. 509 - . 510 </p> 511 <table> 512 <col width="18%"> 513 <col width="16%"> 514 <col width="10%"> 515 <col width="19%"> 516 <col width="19%"> 517 <col width="17%"> 518 <tr> 519 <th>CVE</th> 520 <th></th> 521 <th> </th> 522 <th> Nexus</th> 523 <th> AOSP</th> 524 <th> </th> 525 </tr> 526 <tr> 527 <td>CVE-2016-3900</td> 528 <td><a href="https://android.googlesource.com/platform/frameworks/native/+/d3c6ce463ac91ecbeb2128beb475d31d3ca6ef42">A-29431260</a> 529 [<a href="https://android.googlesource.com/platform/frameworks/native/+/047eec456943dc082e33220d28abb7df4e089f69">2</a>] 530 </td> 531 <td></td> 532 <td> </td> 533 <td>5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 534 <td>15 2016.</td> 535 </tr> 536 </table> 537 <h3 id="eopv-in-lock-settings-service"> </h3> 538 <p> 539 PIN- . , 540 541 . 542 </p> 543 <table> 544 <col width="18%"> 545 <col width="16%"> 546 <col width="10%"> 547 <col width="19%"> 548 <col width="19%"> 549 <col width="17%"> 550 <tr> 551 <th>CVE</th> 552 <th></th> 553 <th> </th> 554 <th> Nexus</th> 555 <th> AOSP</th> 556 <th> </th> 557 </tr> 558 <tr> 559 <td>CVE-2016-3908</td> 560 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/96daf7d4893f614714761af2d53dfb93214a32e4">A-30003944</a> 561 </td> 562 <td></td> 563 <td> </td> 564 <td>6.0, 6.0.1, 7.0</td> 565 <td>6 2016.</td> 566 </tr> 567 </table> 568 <h3 id="eopv-in-mediaserver"> mediaserver</h3> 569 <p> 570 571 . 572 , , 573 . 574 </p> 575 <table> 576 <col width="18%"> 577 <col width="16%"> 578 <col width="10%"> 579 <col width="19%"> 580 <col width="19%"> 581 <col width="17%"> 582 <tr> 583 <th>CVE</th> 584 <th></th> 585 <th> </th> 586 <th> Nexus</th> 587 <th> AOSP</th> 588 <th> </th> 589 </tr> 590 <tr> 591 <td>CVE-2016-3909</td> 592 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/d4271b792bdad85a80e2b83ab34c4b30b74f53ec">A-30033990</a> 593 [<a href="https://android.googlesource.com/platform/frameworks/av/+/c48ef757cc50906e8726a3bebc3b60716292cdba">2</a>] 594 </td> 595 <td></td> 596 <td> </td> 597 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 598 <td>8 2016.</td> 599 </tr> 600 <tr> 601 <td>CVE-2016-3910</td> 602 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/035cb12f392860113dce96116a5150e2fde6f0cc">A-30148546</a> 603 </td> 604 <td></td> 605 <td> </td> 606 <td>5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 607 <td>13 2016.</td> 608 </tr> 609 <tr> 610 <td>CVE-2016-3913</td> 611 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/0c3b93c8c2027e74af642967eee5c142c8fd185d">A-30204103</a> 612 </td> 613 <td></td> 614 <td> </td> 615 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 616 <td>18 2016.</td> 617 </tr> 618 </table> 619 <h3 id="eopv-in-zygote-process"> Zygote</h3> 620 <p> 621 622 . 623 , , 624 . 625 </p> 626 <table> 627 <col width="18%"> 628 <col width="16%"> 629 <col width="10%"> 630 <col width="19%"> 631 <col width="19%"> 632 <col width="17%"> 633 <tr> 634 <th>CVE</th> 635 <th></th> 636 <th> </th> 637 <th> Nexus</th> 638 <th> AOSP</th> 639 <th> </th> 640 </tr> 641 <tr> 642 <td>CVE-2016-3911</td> 643 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/2c7008421cb67f5d89f16911bdbe36f6c35311ad">A-30143607</a> 644 </td> 645 <td></td> 646 <td> </td> 647 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 648 <td>12 2016.</td> 649 </tr> 650 </table> 651 <h3 id="eopv-in-framework-apis"> Framework API</h3> 652 <p> 653 654 . 655 , , 656 . 657 </p> 658 <table> 659 <col width="18%"> 660 <col width="16%"> 661 <col width="10%"> 662 <col width="19%"> 663 <col width="19%"> 664 <col width="17%"> 665 <tr> 666 <th>CVE</th> 667 <th></th> 668 <th> </th> 669 <th> Nexus</th> 670 <th> AOSP</th> 671 <th> </th> 672 </tr> 673 <tr> 674 <td>CVE-2016-3912</td> 675 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/6c049120c2d749f0c0289d822ec7d0aa692f55c5">A-30202481</a> 676 </td> 677 <td></td> 678 <td> </td> 679 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 680 <td>17 2016.</td> 681 </tr> 682 </table> 683 <h3 id="eopv-in-telephony"> </h3> 684 <p> 685 686 . 687 , , 688 . 689 </p> 690 <table> 691 <col width="18%"> 692 <col width="16%"> 693 <col width="10%"> 694 <col width="19%"> 695 <col width="19%"> 696 <col width="17%"> 697 <tr> 698 <th>CVE</th> 699 <th></th> 700 <th> </th> 701 <th> Nexus</th> 702 <th> AOSP</th> 703 <th> </th> 704 </tr> 705 <tr> 706 <td>CVE-2016-3914</td> 707 <td><a href="https://android.googlesource.com/platform/packages/providers/TelephonyProvider/+/3a3a5d145d380deef2d5b7c3150864cd04be397f">A-30481342</a> 708 </td> 709 <td></td> 710 <td> </td> 711 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 712 <td>28 2016.</td> 713 </tr> 714 </table> 715 <h3 id="eopv-in-camera-service"> </h3> 716 <p> 717 718 . 719 , , 720 . 721 </p> 722 <table> 723 <col width="18%"> 724 <col width="16%"> 725 <col width="10%"> 726 <col width="19%"> 727 <col width="19%"> 728 <col width="17%"> 729 <tr> 730 <th>CVE</th> 731 <th></th> 732 <th> </th> 733 <th> Nexus</th> 734 <th> AOSP</th> 735 <th> </th> 736 </tr> 737 <tr> 738 <td>CVE-2016-3915</td> 739 <td><a href="https://android.googlesource.com/platform/system/media/+/e9e44f797742f52996ebf307740dad58c28fd9b5">A-30591838</a> 740 </td> 741 <td></td> 742 <td> </td> 743 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 744 <td>1 2016.</td> 745 </tr> 746 <tr> 747 <td>CVE-2016-3916</td> 748 <td><a href="https://android.googlesource.com/platform/system/media/+/8e7a2b4d13bff03973dbad2bfb88a04296140433">A-30741779</a> 749 </td> 750 <td></td> 751 <td> </td> 752 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 753 <td>2 2016.</td> 754 </tr> 755 </table> 756 <h3 id="eopv-in-fingerprint-login"> </h3> 757 <p> 758 , , 759 . 760 , . 761 </p> 762 <table> 763 <col width="18%"> 764 <col width="16%"> 765 <col width="10%"> 766 <col width="19%"> 767 <col width="19%"> 768 <col width="17%"> 769 <tr> 770 <th>CVE</th> 771 <th></th> 772 <th> </th> 773 <th> Nexus</th> 774 <th> AOSP</th> 775 <th> </th> 776 </tr> 777 <tr> 778 <td>CVE-2016-3917</td> 779 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/f5334952131afa835dd3f08601fb3bced7b781cd">A-30744668</a> 780 </td> 781 <td></td> 782 <td> </td> 783 <td>6.0.1, 7.0</td> 784 <td>5 2016.</td> 785 </tr> 786 </table> 787 <h3 id="information-disclosure-vulnerability-in-aosp-mail"> AOSP</h3> 788 <p> 789 , 790 . - 791 . 792 </p> 793 <table> 794 <col width="18%"> 795 <col width="16%"> 796 <col width="10%"> 797 <col width="19%"> 798 <col width="19%"> 799 <col width="17%"> 800 <tr> 801 <th>CVE</th> 802 <th></th> 803 <th> </th> 804 <th> Nexus</th> 805 <th> AOSP</th> 806 <th> </th> 807 </tr> 808 <tr> 809 <td>CVE-2016-3918</td> 810 <td><a href="https://android.googlesource.com/platform/packages/apps/Email/+/6b2b0bd7c771c698f11d7be89c2c57c8722c7454">A-30745403</a> 811 </td> 812 <td></td> 813 <td> </td> 814 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 815 <td>5 2016.</td> 816 </tr> 817 </table> 818 <h3 id="dosv-in-wi-fi"> Wi-Fi</h3> 819 <p> 820 , , 821 . 822 , 823 . 824 </p> 825 <table> 826 <col width="18%"> 827 <col width="16%"> 828 <col width="10%"> 829 <col width="19%"> 830 <col width="17%"> 831 <col width="19%"> 832 <tr> 833 <th>CVE</th> 834 <th></th> 835 <th> </th> 836 <th> Nexus</th> 837 <th> AOSP</th> 838 <th> </th> 839 </tr> 840 <tr> 841 <td>CVE-2016-3882</td> 842 <td><a href="https://android.googlesource.com/platform/frameworks/opt/net/wifi/+/35a86eef3c0eef760f7e61c52a343327ba601630">A-29464811</a> 843 </td> 844 <td></td> 845 <td> </td> 846 <td>6.0, 6.0.1, 7.0</td> 847 <td>17 2016.</td> 848 </tr> 849 </table> 850 <h3 id="dosv-in-gps"> GPS</h3> 851 <p> 852 . , 853 . 854 </p> 855 <table> 856 <col width="18%"> 857 <col width="16%"> 858 <col width="10%"> 859 <col width="19%"> 860 <col width="19%"> 861 <col width="17%"> 862 <tr> 863 <th>CVE</th> 864 <th></th> 865 <th> </th> 866 <th> Nexus</th> 867 <th> AOSP</th> 868 <th> </th> 869 </tr> 870 <tr> 871 <td>CVE-2016-5348</td> 872 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/218b813d5bc2d7d3952ea1861c38b4aa944ac59b">A-29555864</a> 873 </td> 874 <td></td> 875 <td> </td> 876 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 877 <td>20 2016.</td> 878 </tr> 879 </table> 880 <h3 id="dosv-in-mediaserver"> mediaserver</h3> 881 <p> 882 883 . 884 , 885 . 886 </p> 887 <table> 888 <col width="18%"> 889 <col width="16%"> 890 <col width="10%"> 891 <col width="19%"> 892 <col width="19%"> 893 <col width="17%"> 894 <tr> 895 <th>CVE</th> 896 <th></th> 897 <th> </th> 898 <th> Nexus</th> 899 <th> AOSP</th> 900 <th> </th> 901 </tr> 902 <tr> 903 <td>CVE-2016-3920</td> 904 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/6d0249be2275fd4086783f259f4e2c54722a7c55">A-30744884</a> 905 </td> 906 <td></td> 907 <td> </td> 908 <td>5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 909 <td>5 2016.</td> 910 </tr> 911 </table> 912 <h3 id="eopv-in-framework-listener"> Framework Listener</h3> 913 <p> 914 915 . 916 , 917 . 918 </p> 919 <table> 920 <col width="18%"> 921 <col width="16%"> 922 <col width="10%"> 923 <col width="18%"> 924 <col width="20%"> 925 <col width="17%"> 926 <tr> 927 <th>CVE</th> 928 <th></th> 929 <th> </th> 930 <th> Nexus</th> 931 <th> AOSP</th> 932 <th> </th> 933 </tr> 934 <tr> 935 <td>CVE-2016-3921</td> 936 <td><a href="https://android.googlesource.com/platform/system/core/+/771ab014c24a682b32990da08e87e2f0ab765bd2">A-29831647</a> 937 </td> 938 <td></td> 939 <td> </td> 940 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 941 <td>25 2016.</td> 942 </tr> 943 </table> 944 <h3 id="eopv-in-telephony-2"> </h3> 945 <p> 946 947 . 948 , 949 . 950 </p> 951 <table> 952 <col width="18%"> 953 <col width="16%"> 954 <col width="10%"> 955 <col width="19%"> 956 <col width="19%"> 957 <col width="17%"> 958 <tr> 959 <th>CVE</th> 960 <th></th> 961 <th> </th> 962 <th> Nexus</th> 963 <th> AOSP</th> 964 <th> </th> 965 </tr> 966 <tr> 967 <td>CVE-2016-3922</td> 968 <td><a href="https://android.googlesource.com/platform/hardware/ril/+/95610818918f6f11fe7d23aca1380e6c0fac2af0">A-30202619</a> 969 </td> 970 <td></td> 971 <td> </td> 972 <td>6.0, 6.0.1, 7.0</td> 973 <td>17 2016.</td> 974 </tr> 975 </table> 976 <h3 id="eopv-in-accessibility-services"> </h3> 977 <p> 978 979 . 980 . , 981 982 (, , ). 983 </p> 984 <table> 985 <col width="18%"> 986 <col width="16%"> 987 <col width="10%"> 988 <col width="19%"> 989 <col width="18%"> 990 <col width="18%"> 991 <tr> 992 <th>CVE</th> 993 <th></th> 994 <th> </th> 995 <th> Nexus</th> 996 <th> AOSP</th> 997 <th> </th> 998 </tr> 999 <tr> 1000 <td>CVE-2016-3923</td> 1001 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/5f256310187b4ff2f13a7abb9afed9126facd7bc">A-30647115</a> 1002 </td> 1003 <td></td> 1004 <td> </td> 1005 <td>7.0</td> 1006 <td> Google</td> 1007 </tr> 1008 </table> 1009 <h3 id="information-disclosure-vulnerability-in-mediaserver"> mediaserver</h3> 1010 <p> 1011 1012 . - . 1013 </p> 1014 <table> 1015 <col width="18%"> 1016 <col width="16%"> 1017 <col width="10%"> 1018 <col width="18%"> 1019 <col width="20%"> 1020 <col width="17%"> 1021 <tr> 1022 <th>CVE</th> 1023 <th></th> 1024 <th> </th> 1025 <th> Nexus</th> 1026 <th> AOSP</th> 1027 <th> </th> 1028 </tr> 1029 <tr> 1030 <td>CVE-2016-3924</td> 1031 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/c894aa36be535886a8e5ff02cdbcd07dd24618f6">A-30204301</a> 1032 </td> 1033 <td></td> 1034 <td> </td> 1035 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 1036 <td>18 2016.</td> 1037 </tr> 1038 </table> 1039 <h3 id="dosv-in-wi-fi-2"> Wi-Fi</h3> 1040 <p> 1041 1042 Wi-Fi. , 1043 . 1044 </p> 1045 <table> 1046 <col width="18%"> 1047 <col width="16%"> 1048 <col width="10%"> 1049 <col width="19%"> 1050 <col width="17%"> 1051 <col width="19%"> 1052 <tr> 1053 <th>CVE</th> 1054 <th></th> 1055 <th> </th> 1056 <th> Nexus</th> 1057 <th> AOSP</th> 1058 <th> </th> 1059 </tr> 1060 <tr> 1061 <td>CVE-2016-3925</td> 1062 <td><a href="https://android.googlesource.com/platform/frameworks/opt/net/wifi/+/c2905409c20c8692d4396b8531b09e7ec81fa3fb">A-30230534</a> 1063 </td> 1064 <td></td> 1065 <td> </td> 1066 <td>6.0, 6.0.1, 7.0</td> 1067 <td> Google</td> 1068 </tr> 1069 </table> 1070 <h2 id="2016-10-05-security-patch-level-vulnerability-details"> ( 2016-10-05)</h2> 1071 <p> 1072 1073 <a href="#2016-10-05-security-patch-level-vulnerability-summary"> </a> : , 1074 CVE, , , 1075 Nexus AOSP ( ), 1076 . , 1077 , (, AOSP), 1078 . 1079 </p> 1080 <h3 id="remote-code-execution-vulnerability-in-kernel-asn-1-decoder"> ASN.1 </h3> 1081 <p> 1082 1083 . , 1084 - . , 1085 . 1086 </p> 1087 <table> 1088 <col width="19%"> 1089 <col width="20%"> 1090 <col width="10%"> 1091 <col width="23%"> 1092 <col width="17%"> 1093 <tr> 1094 <th>CVE</th> 1095 <th></th> 1096 <th> </th> 1097 <th> Nexus</th> 1098 <th> </th> 1099 </tr> 1100 <tr> 1101 <td>CVE-2016-0758</td> 1102 <td>A-29814470<br> 1103 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=23c8a812dc3c621009e4f0e5342aa4e2ede1ceaa"> 1104 Upstream kernel</a></td> 1105 <td></td> 1106 <td>Nexus5X, Nexus6P</td> 1107 <td>12 2016.</td> 1108 </tr> 1109 </table> 1110 <h3 id="remote-code-execution-vulnerability-in-kernel-networking-subsystem"> </h3> 1111 <p> 1112 1113 . , 1114 - . , 1115 . 1116 </p> 1117 <table> 1118 <col width="19%"> 1119 <col width="20%"> 1120 <col width="10%"> 1121 <col width="23%"> 1122 <col width="17%"> 1123 <tr> 1124 <th>CVE</th> 1125 <th></th> 1126 <th> </th> 1127 <th> Nexus</th> 1128 <th> </th> 1129 </tr> 1130 <tr> 1131 <td>CVE-2016-7117</td> 1132 <td>A-30515201<br> 1133 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=34b88a68f26a75e4fded796f1a49c40f82234b7d">Upstream 1134 kernel</a></td> 1135 <td></td> 1136 <td> </td> 1137 <td> Google</td> 1138 </tr> 1139 </table> 1140 <h3 id="eopv-in-mediatek-video-driver"> MediaTek</h3> 1141 <p> 1142 1143 . , 1144 - . , 1145 . 1146 </p> 1147 <table> 1148 <col width="19%"> 1149 <col width="20%"> 1150 <col width="10%"> 1151 <col width="23%"> 1152 <col width="17%"> 1153 <tr> 1154 <th>CVE</th> 1155 <th></th> 1156 <th> </th> 1157 <th> Nexus</th> 1158 <th> </th> 1159 </tr> 1160 <tr> 1161 <td>CVE-2016-3928</td> 1162 <td>A-30019362*<br> 1163 M-ALPS02829384</td> 1164 <td></td> 1165 <td></td> 1166 <td>6 2016.</td> 1167 </tr> 1168 </table> 1169 <p> 1170 * . 1171 Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>. 1172 </p> 1173 <h3 id="eopv-in-kernel-shared-memory-driver"> </h3> 1174 <p> 1175 1176 . , 1177 - . , 1178 . 1179 </p> 1180 <table> 1181 <col width="19%"> 1182 <col width="20%"> 1183 <col width="10%"> 1184 <col width="23%"> 1185 <col width="17%"> 1186 <tr> 1187 <th>CVE</th> 1188 <th></th> 1189 <th> </th> 1190 <th> Nexus</th> 1191 <th> </th> 1192 </tr> 1193 <tr> 1194 <td>CVE-2016-5340</td> 1195 <td>A-30652312<br> 1196 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.10/commit/?id=06e51489061e5473b4e2035c79dcf7c27a6f75a6">QC-CR#1008948</a></td> 1197 <td></td> 1198 <td>Nexus5, Nexus5X, Nexus6, Nexus6P, Android One</td> 1199 <td>26 2016.</td> 1200 </tr> 1201 </table> 1202 1203 <h3 id="vulnerabilities-in-qc-components"> 1204 Qualcomm</h3> 1205 <p> 1206 , 1207 Qualcomm, 1208 Qualcomm AMSS 2016. 1209 </p> 1210 <table> 1211 <col width="19%"> 1212 <col width="16%"> 1213 <col width="10%"> 1214 <col width="23%"> 1215 <col width="21%"> 1216 <tr> 1217 <th>CVE</th> 1218 <th></th> 1219 <th> </th> 1220 <th> Nexus</th> 1221 <th> </th> 1222 </tr> 1223 <tr> 1224 <td>CVE-2016-3926</td> 1225 <td>A-28823953*</td> 1226 <td></td> 1227 <td>Nexus5, Nexus5X, Nexus6, Nexus6P</td> 1228 <td> Qualcomm</td> 1229 </tr> 1230 <tr> 1231 <td>CVE-2016-3927</td> 1232 <td>A-28823244*</td> 1233 <td></td> 1234 <td>Nexus5X, Nexus6P</td> 1235 <td> Qualcomm</td> 1236 </tr> 1237 <tr> 1238 <td>CVE-2016-3929</td> 1239 <td>A-28823675*</td> 1240 <td></td> 1241 <td>Nexus5X, Nexus6P</td> 1242 <td> Qualcomm</td> 1243 </tr> 1244 </table> 1245 <p> 1246 * . 1247 Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>. 1248 </p> 1249 <h3 id="eopv-in-qualcomm-networking-component"> Qualcomm</h3> 1250 <p> 1251 1252 . , 1253 . 1254 </p> 1255 <table> 1256 <col width="19%"> 1257 <col width="20%"> 1258 <col width="10%"> 1259 <col width="23%"> 1260 <col width="17%"> 1261 <tr> 1262 <th>CVE</th> 1263 <th></th> 1264 <th> </th> 1265 <th> Nexus</th> 1266 <th> </th> 1267 </tr> 1268 <tr> 1269 <td>CVE-2016-2059</td> 1270 <td>A-27045580<br> 1271 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=9e8bdd63f7011dff5523ea435433834b3702398d">QC-CR#974577</a></td> 1272 <td></td> 1273 <td>Nexus5, Nexus5X, Nexus6, Nexus6P, Android One</td> 1274 <td>4 2016.</td> 1275 </tr> 1276 </table> 1277 <h3 id="eopv-in-nvidia-mmc-test-driver"> NVIDIA MMC</h3> 1278 <p> 1279 1280 . , 1281 . 1282 </p> 1283 <table> 1284 <col width="19%"> 1285 <col width="20%"> 1286 <col width="10%"> 1287 <col width="23%"> 1288 <col width="17%"> 1289 <tr> 1290 <th>CVE</th> 1291 <th></th> 1292 <th> </th> 1293 <th> Nexus</th> 1294 <th> </th> 1295 </tr> 1296 <tr> 1297 <td>CVE-2016-3930</td> 1298 <td>A-28760138*<br> 1299 N-CVE-2016-3930</td> 1300 <td></td> 1301 <td>Nexus9</td> 1302 <td>12 2016.</td> 1303 </tr> 1304 </table> 1305 <p> 1306 * . 1307 Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>. 1308 </p> 1309 <h3 id="eopv-in-qsee-communicator-driver"> Qualcomm QSEE Communicator</h3> 1310 <p> 1311 1312 . , 1313 . 1314 </p> 1315 <table> 1316 <col width="19%"> 1317 <col width="20%"> 1318 <col width="10%"> 1319 <col width="23%"> 1320 <col width="17%"> 1321 <tr> 1322 <th>CVE</th> 1323 <th></th> 1324 <th> </th> 1325 <th> Nexus</th> 1326 <th> </th> 1327 </tr> 1328 <tr> 1329 <td>CVE-2016-3931</td> 1330 <td>A-29157595<br> 1331 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=e80b88323f9ff0bb0e545f209eec08ec56fca816">QC-CR#1036418</a></td> 1332 <td></td> 1333 <td>Nexus5X, Nexus6, Nexus6P, Android One</td> 1334 <td>4 2016.</td> 1335 </tr> 1336 </table> 1337 <h3 id="eopv-in-mediaserver-2"> mediaserver</h3> 1338 <p> 1339 1340 . 1341 , , 1342 . 1343 </p> 1344 <table> 1345 <col width="19%"> 1346 <col width="20%"> 1347 <col width="10%"> 1348 <col width="23%"> 1349 <col width="17%"> 1350 <tr> 1351 <th>CVE</th> 1352 <th></th> 1353 <th> </th> 1354 <th> Nexus</th> 1355 <th> </th> 1356 </tr> 1357 <tr> 1358 <td>CVE-2016-3932</td> 1359 <td>A-29161895<br> 1360 M-ALPS02770870</td> 1361 <td></td> 1362 <td></td> 1363 <td>6 2016.</td> 1364 </tr> 1365 <tr> 1366 <td>CVE-2016-3933</td> 1367 <td>A-29421408*<br> 1368 N-CVE-2016-3933</td> 1369 <td></td> 1370 <td>Nexus9, PixelC</td> 1371 <td>14 2016.</td> 1372 </tr> 1373 </table> 1374 <p> 1375 * . 1376 Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>. 1377 </p> 1378 <h3 id="eopv-in-qualcomm-camera-driver"> Qualcomm </h3> 1379 <p> 1380 1381 . , 1382 . 1383 </p> 1384 <table> 1385 <col width="19%"> 1386 <col width="20%"> 1387 <col width="10%"> 1388 <col width="23%"> 1389 <col width="17%"> 1390 <tr> 1391 <th>CVE</th> 1392 <th></th> 1393 <th> </th> 1394 <th> Nexus</th> 1395 <th> </th> 1396 </tr> 1397 <tr> 1398 <td>CVE-2016-3903</td> 1399 <td>A-29513227<br> 1400 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?id=b8874573428e8ce024f57c6242d662fcca5e5d55">QC-CR#1040857</a></td> 1401 <td></td> 1402 <td>Nexus5, Nexus5X, Nexus6, Nexus6P, Android One</td> 1403 <td>20 2016.</td> 1404 </tr> 1405 <tr> 1406 <td>CVE-2016-3934</td> 1407 <td>A-30102557<br> 1408 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?id=27fbeb6b025d5d46ccb0497cbed4c6e78ed1c5cc">QC-CR#789704</a></td> 1409 <td></td> 1410 <td>Nexus5, Nexus5X, Nexus6, Nexus6P, Android One</td> 1411 <td>12 2016.</td> 1412 </tr> 1413 </table> 1414 <h3 id="eopv-in-qualcomm-sound-driver"> Qualcomm</h3> 1415 <p> 1416 1417 . , 1418 . 1419 </p> 1420 <table> 1421 <col width="19%"> 1422 <col width="20%"> 1423 <col width="10%"> 1424 <col width="23%"> 1425 <col width="17%"> 1426 <tr> 1427 <th>CVE</th> 1428 <th></th> 1429 <th> </th> 1430 <th> Nexus</th> 1431 <th> </th> 1432 </tr> 1433 <tr> 1434 <td>CVE-2015-8951</td> 1435 <td>A-30142668<br> 1436 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?h=APSS.FSM.3.0&id=ccff36b07bfc49efc77b9f1b55ed2bf0900b1d5b">QC-CR#948902</a><br> 1437 QC-CR#948902</td> 1438 <td></td> 1439 <td>Nexus5X, Nexus6P, Android One</td> 1440 <td>20 2016.</td> 1441 </tr> 1442 </table> 1443 <h3 id="eopv-in-qualcomm-crypto-engine-driver"> Qualcomm </h3> 1444 <p> 1445 1446 . , 1447 . 1448 </p> 1449 <table> 1450 <col width="19%"> 1451 <col width="20%"> 1452 <col width="10%"> 1453 <col width="23%"> 1454 <col width="17%"> 1455 <tr> 1456 <th>CVE</th> 1457 <th></th> 1458 <th> </th> 1459 <th> Nexus</th> 1460 <th> </th> 1461 </tr> 1462 <tr> 1463 <td>CVE-2016-3901</td> 1464 <td>A-29999161<br> 1465 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=5f69ccf3b011c1d14a1b1b00dbaacf74307c9132">QC-CR#1046434</a></td> 1466 <td></td> 1467 <td>Nexus5X, Nexus6, Nexus6P, Android One</td> 1468 <td>6 2016.</td> 1469 </tr> 1470 <tr> 1471 <td>CVE-2016-3935</td> 1472 <td>A-29999665<br> 1473 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=5f69ccf3b011c1d14a1b1b00dbaacf74307c9132">QC-CR#1046507</a></td> 1474 <td></td> 1475 <td>Nexus5X, Nexus6, Nexus6P, Android One</td> 1476 <td>6 2016.</td> 1477 </tr> 1478 </table> 1479 <h3 id="eopv-in-mediatek-video-driver-2"> MediaTek</h3> 1480 <p> 1481 1482 . , 1483 . 1484 </p> 1485 <table> 1486 <col width="19%"> 1487 <col width="20%"> 1488 <col width="10%"> 1489 <col width="23%"> 1490 <col width="17%"> 1491 <tr> 1492 <th>CVE</th> 1493 <th></th> 1494 <th> </th> 1495 <th> Nexus</th> 1496 <th> </th> 1497 </tr> 1498 <tr> 1499 <td>CVE-2016-3936</td> 1500 <td>A-30019037*<br> 1501 M-ALPS02829568</td> 1502 <td></td> 1503 <td></td> 1504 <td>6 2016.</td> 1505 </tr> 1506 <tr> 1507 <td>CVE-2016-3937</td> 1508 <td>A-30030994*<br> 1509 M-ALPS02834874</td> 1510 <td></td> 1511 <td></td> 1512 <td>7 2016.</td> 1513 </tr> 1514 </table> 1515 <p> 1516 * . 1517 Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>. 1518 </p> 1519 <h3 id="eopv-in-qualcomm-video-driver"> Qualcomm</h3> 1520 <p> 1521 1522 . , 1523 . 1524 </p> 1525 <table> 1526 <col width="19%"> 1527 <col width="20%"> 1528 <col width="10%"> 1529 <col width="23%"> 1530 <col width="17%"> 1531 <tr> 1532 <th>CVE</th> 1533 <th></th> 1534 <th> </th> 1535 <th> Nexus</th> 1536 <th> </th> 1537 </tr> 1538 <tr> 1539 <td>CVE-2016-3938</td> 1540 <td>A-30019716<br> 1541 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=467c81f9736b1ebc8d4ba70f9221bba02425ca10">QC-CR#1049232</a></td> 1542 <td></td> 1543 <td>Nexus5X, Nexus6, Nexus6P, Android One</td> 1544 <td>7 2016.</td> 1545 </tr> 1546 <tr> 1547 <td>CVE-2016-3939</td> 1548 <td>A-30874196<br> 1549 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=e0bb18771d6ca71db2c2a61226827059be3fa424">QC-CR#1001224</a></td> 1550 <td></td> 1551 <td>Nexus5X, Nexus6, Nexus6P, Android One</td> 1552 <td>15 2016.</td> 1553 </tr> 1554 </table> 1555 <h3 id="eopv-in-synaptics-touchscreen-driver"> Synaptics</h3> 1556 <p> 1557 1558 . , 1559 . 1560 </p> 1561 <table> 1562 <col width="19%"> 1563 <col width="20%"> 1564 <col width="10%"> 1565 <col width="23%"> 1566 <col width="17%"> 1567 <tr> 1568 <th>CVE</th> 1569 <th></th> 1570 <th> </th> 1571 <th> Nexus</th> 1572 <th> </th> 1573 </tr> 1574 <tr> 1575 <td>CVE-2016-3940</td> 1576 <td>A-30141991*</td> 1577 <td></td> 1578 <td>Nexus6P, Android One</td> 1579 <td>12 2016.</td> 1580 </tr> 1581 <tr> 1582 <td>CVE-2016-6672</td> 1583 <td>A-30537088*</td> 1584 <td></td> 1585 <td>Nexus5X</td> 1586 <td>31 2016.</td> 1587 </tr> 1588 </table> 1589 <p> 1590 * . 1591 Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>. 1592 </p> 1593 <h3 id="eopv-in-nvidia-camera-driver"> NVIDIA </h3> 1594 <p> 1595 1596 . , 1597 . 1598 </p> 1599 <table> 1600 <col width="19%"> 1601 <col width="20%"> 1602 <col width="10%"> 1603 <col width="23%"> 1604 <col width="17%"> 1605 <tr> 1606 <th>CVE</th> 1607 <th></th> 1608 <th> </th> 1609 <th> Nexus</th> 1610 <th> </th> 1611 </tr> 1612 <tr> 1613 <td>CVE-2016-6673</td> 1614 <td>A-30204201*<br> 1615 N-CVE-2016-6673</td> 1616 <td></td> 1617 <td>Nexus9</td> 1618 <td>17 2016.</td> 1619 </tr> 1620 </table> 1621 <p> 1622 * . 1623 Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>. 1624 </p> 1625 <h3 id="eopv-in-system_server"> system_server</h3> 1626 <p> 1627 1628 . 1629 , , 1630 . 1631 </p> 1632 <table> 1633 <col width="19%"> 1634 <col width="20%"> 1635 <col width="10%"> 1636 <col width="23%"> 1637 <col width="17%"> 1638 <tr> 1639 <th>CVE</th> 1640 <th></th> 1641 <th> </th> 1642 <th> Nexus</th> 1643 <th> </th> 1644 </tr> 1645 <tr> 1646 <td>CVE-2016-6674</td> 1647 <td>A-30445380*</td> 1648 <td></td> 1649 <td> </td> 1650 <td>26 2016.</td> 1651 </tr> 1652 </table> 1653 <p> 1654 * . 1655 Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>. 1656 </p> 1657 <h3 id="eopv-in-qualcomm-wi-fi-driver"> Wi-Fi- Qualcomm</h3> 1658 <p> 1659 1660 . , 1661 . 1662 </p> 1663 <table> 1664 <col width="19%"> 1665 <col width="20%"> 1666 <col width="10%"> 1667 <col width="23%"> 1668 <col width="17%"> 1669 <tr> 1670 <th>CVE</th> 1671 <th></th> 1672 <th> </th> 1673 <th> Nexus</th> 1674 <th> </th> 1675 </tr> 1676 <tr> 1677 <td>CVE-2016-3905</td> 1678 <td>A-28061823<br> 1679 <a href="https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-2.0/commit/?id=b5112838eb91b71eded4b5ee37338535784e0aef">QC-CR#1001449</a></td> 1680 <td></td> 1681 <td>Nexus5X</td> 1682 <td> Google</td> 1683 </tr> 1684 <tr> 1685 <td>CVE-2016-6675</td> 1686 <td>A-30873776<br> 1687 <a href="https://source.codeaurora.org/quic/la//platform/vendor/qcom-opensource/wlan/prima/commit/?id=1353fa0bd0c78427f3ae7d9bde7daeb75bd01d09">QC-CR#1000861</a></td> 1688 <td></td> 1689 <td>Nexus5X, Android One</td> 1690 <td>15 2016.</td> 1691 </tr> 1692 <tr> 1693 <td>CVE-2016-6676</td> 1694 <td>A-30874066<br> 1695 <a href="https://source.codeaurora.org/quic/la//platform/vendor/qcom-opensource/wlan/qcacld-2.0/commit/?id=6ba9136879232442a182996427e5c88e5a7512a8">QC-CR#1000853</a></td> 1696 <td></td> 1697 <td>Nexus5X, Android One</td> 1698 <td>15 2016.</td> 1699 </tr> 1700 <tr> 1701 <td>CVE-2016-5342</td> 1702 <td>A-30878283<br> 1703 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=579e796cb089324c55e0e689a180575ba81b23d9">QC-CR#1032174</a></td> 1704 <td></td> 1705 <td>AndroidOne</td> 1706 <td>15 2016.</td> 1707 </tr> 1708 </table> 1709 <h3 id="eopv-in-kernel-performance-subsystem"> </h3> 1710 <p> 1711 1712 . , 1713 . 1714 </p> 1715 <table> 1716 <col width="19%"> 1717 <col width="20%"> 1718 <col width="10%"> 1719 <col width="23%"> 1720 <col width="17%"> 1721 <tr> 1722 <th>CVE</th> 1723 <th></th> 1724 <th> </th> 1725 <th> Nexus</th> 1726 <th> </th> 1727 </tr> 1728 <tr> 1729 <td>CVE-2015-8955</td> 1730 <td>A-29508816<br> 1731 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=8fff105e13041e49b82f92eef034f363a6b1c071">Upstream kernel</a></td> 1732 <td></td> 1733 <td>Nexus5X, Nexus6P, PixelC, Android One</td> 1734 <td> Google</td> 1735 </tr> 1736 </table> 1737 <h3 id="information-disclosure-vulnerability-in-kernel-ion-subsystem"> ION </h3> 1738 <p> 1739 1740 . 1741 - 1742 . 1743 </p> 1744 <table> 1745 <col width="19%"> 1746 <col width="20%"> 1747 <col width="10%"> 1748 <col width="23%"> 1749 <col width="17%"> 1750 <tr> 1751 <th>CVE</th> 1752 <th></th> 1753 <th> </th> 1754 <th> Nexus</th> 1755 <th> </th> 1756 </tr> 1757 <tr> 1758 <td>CVE-2015-8950</td> 1759 <td>A-29795245<br> 1760 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?id=6e2c437a2d0a85d90d3db85a7471f99764f7bbf8">QC-CR#1041735</a></td> 1761 <td></td> 1762 <td>Nexus5, Nexus5X, Nexus6, Nexus6P</td> 1763 <td>12 2016.</td> 1764 </tr> 1765 </table> 1766 <h3 id="information-disclosure-vulnerability-in-nvidia-gpu-driver"> NVIDIA </h3> 1767 <p> 1768 1769 . 1770 1771 , 1772 . 1773 </p> 1774 <table> 1775 <col width="19%"> 1776 <col width="20%"> 1777 <col width="10%"> 1778 <col width="23%"> 1779 <col width="17%"> 1780 <tr> 1781 <th>CVE</th> 1782 <th></th> 1783 <th> </th> 1784 <th> Nexus</th> 1785 <th> </th> 1786 </tr> 1787 <tr> 1788 <td>CVE-2016-6677</td> 1789 <td>A-30259955*<br> 1790 N-CVE-2016-6677</td> 1791 <td></td> 1792 <td>Nexus9</td> 1793 <td>19 2016.</td> 1794 </tr> 1795 </table> 1796 <p> 1797 * . 1798 Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>. 1799 </p> 1800 <h3 id="eopv-in-qualcomm-character-driver"> Qualcomm</h3> 1801 <p> 1802 1803 . , 1804 . 1805 . 1806 </p> 1807 <table> 1808 <col width="19%"> 1809 <col width="20%"> 1810 <col width="10%"> 1811 <col width="23%"> 1812 <col width="17%"> 1813 <tr> 1814 <th>CVE</th> 1815 <th></th> 1816 <th> </th> 1817 <th> Nexus</th> 1818 <th> </th> 1819 </tr> 1820 <tr> 1821 <td>CVE-2015-0572</td> 1822 <td>A-29156684<br> 1823 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?id=34ad3d34fbff11b8e1210b9da0dac937fb956b61">QC-CR#848489</a></td> 1824 <td></td> 1825 <td>Nexus5X, Nexus6P</td> 1826 <td>28 2016.</td> 1827 </tr> 1828 </table> 1829 <h3 id="information-disclosure-vulnerability-in-qualcomm-sound-driver"> Qualcomm</h3> 1830 <p> 1831 1832 . 1833 , 1834 . 1835 </p> 1836 <table> 1837 <col width="19%"> 1838 <col width="20%"> 1839 <col width="10%"> 1840 <col width="23%"> 1841 <col width="17%"> 1842 <tr> 1843 <th>CVE</th> 1844 <th></th> 1845 <th> </th> 1846 <th> Nexus</th> 1847 <th> </th> 1848 </tr> 1849 <tr> 1850 <td>CVE-2016-3860</td> 1851 <td>A-29323142<br> 1852 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/diff/sound/soc/msm/qdsp6v2/audio_calibration.c?id=528976f54be246ec93a71ac53aa4faf3e3791c48">QC-CR#1038127</a></td> 1853 <td></td> 1854 <td>Nexus5X, Nexus6P, Android One</td> 1855 <td>13 2016.</td> 1856 </tr> 1857 </table> 1858 <h3 id="information-disclosure-vulnerability-in-motorola-usbnet-driver"> Motorola USBNet</h3> 1859 <p> 1860 1861 . 1862 , 1863 . 1864 </p> 1865 <table> 1866 <col width="19%"> 1867 <col width="20%"> 1868 <col width="10%"> 1869 <col width="23%"> 1870 <col width="17%"> 1871 <tr> 1872 <th>CVE</th> 1873 <th></th> 1874 <th> </th> 1875 <th> Nexus</th> 1876 <th> </th> 1877 </tr> 1878 <tr> 1879 <td>CVE-2016-6678</td> 1880 <td>A-29914434*</td> 1881 <td></td> 1882 <td>Nexus6</td> 1883 <td>30 2016.</td> 1884 </tr> 1885 </table> 1886 <p> 1887 * . 1888 Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>. 1889 </p> 1890 <h3 id="information-disclosure-vulnerability-in-qualcomm-components"> Qualcomm</h3> 1891 <p> 1892 1893 . 1894 , 1895 . 1896 </p> 1897 <table> 1898 <col width="19%"> 1899 <col width="20%"> 1900 <col width="10%"> 1901 <col width="23%"> 1902 <col width="17%"> 1903 <tr> 1904 <th>CVE</th> 1905 <th></th> 1906 <th> </th> 1907 <th> Nexus</th> 1908 <th> </th> 1909 </tr> 1910 <tr> 1911 <td>CVE-2016-6679</td> 1912 <td>A-29915601<br> 1913 <a href="https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/prima/commit/?id=d39345f0abc309959d831d09fcbf1619cc0ae0f5">QC-CR#1000913</a> 1914 [<a href="https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-2.0/commit/?id=f081695446679aa44baa0d00940ea18455eeb4c5">2</a>]</td> 1915 <td></td> 1916 <td>Nexus5X, Android One</td> 1917 <td>30 2016.</td> 1918 </tr> 1919 <tr> 1920 <td>CVE-2016-3902</td> 1921 <td>A-29953313*<br> 1922 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.10/commit/?id=2fca425d781572393fbe51abe2e27a932d24a768">QC-CR#1044072</a></td> 1923 <td></td> 1924 <td>Nexus5X, Nexus6P</td> 1925 <td>2 2016.</td> 1926 </tr> 1927 <tr> 1928 <td>CVE-2016-6680</td> 1929 <td>A-29982678*<br> 1930 <a href="https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-2.0/commit/?id=2f2fa073b95d4700de88c0f7558b4a18c13ac552">QC-CR#1048052</a></td> 1931 <td></td> 1932 <td>Nexus5X, Android One</td> 1933 <td>3 2016.</td> 1934 </tr> 1935 <tr> 1936 <td>CVE-2016-6681</td> 1937 <td>A-30152182<br> 1938 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=0950fbd39ff189497f1b6115825c210e3eeaf395">QC-CR#1049521</a></td> 1939 <td></td> 1940 <td>Nexus5X, Nexus6P, Android One</td> 1941 <td>14 2014.</td> 1942 </tr> 1943 <tr> 1944 <td>CVE-2016-6682</td> 1945 <td>A-30152501<br> 1946 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=0950fbd39ff189497f1b6115825c210e3eeaf395">QC-CR#1049615</a></td> 1947 <td></td> 1948 <td>Nexus5X, Nexus6P, Android One</td> 1949 <td>14 2014.</td> 1950 </tr> 1951 </table> 1952 <p> 1953 * . 1954 Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>. 1955 </p> 1956 <h3 id="information-disclosure-vulnerability-in-kernel-components"> </h3> 1957 <p> 1958 1959 . 1960 , 1961 . 1962 </p> 1963 <table> 1964 <col width="19%"> 1965 <col width="18%"> 1966 <col width="10%"> 1967 <col width="25%"> 1968 <col width="17%"> 1969 <tr> 1970 <th>CVE</th> 1971 <th></th> 1972 <th> </th> 1973 <th> Nexus</th> 1974 <th> </th> 1975 </tr> 1976 <tr> 1977 <td>CVE-2016-6683</td> 1978 <td>A-30143283*</td> 1979 <td></td> 1980 <td> </td> 1981 <td>13 2016.</td> 1982 </tr> 1983 <tr> 1984 <td>CVE-2016-6684</td> 1985 <td>A-30148243*</td> 1986 <td></td> 1987 <td>Nexus5, Nexus5X, Nexus6, Nexus6P, Nexus9, Nexus Player, Android One</td> 1988 <td>13 2016.</td> 1989 </tr> 1990 <tr> 1991 <td>CVE-2015-8956</td> 1992 <td>A-30149612*</td> 1993 <td></td> 1994 <td>Nexus5, Nexus6P, Android One</td> 1995 <td>14 2014.</td> 1996 </tr> 1997 <tr> 1998 <td>CVE-2016-6685</td> 1999 <td>A-30402628*</td> 2000 <td></td> 2001 <td>Nexus6P</td> 2002 <td>25 2016.</td> 2003 </tr> 2004 </table> 2005 <p> 2006 * . 2007 Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>. 2008 </p> 2009 <h3 id="information-disclosure-vulnerability-in-nvidia-profiler"> NVIDIA</h3> 2010 <p> 2011 2012 . 2013 2014 , 2015 . 2016 </p> 2017 <table> 2018 <col width="19%"> 2019 <col width="20%"> 2020 <col width="10%"> 2021 <col width="23%"> 2022 <col width="17%"> 2023 <tr> 2024 <th>CVE</th> 2025 <th></th> 2026 <th> </th> 2027 <th> Nexus</th> 2028 <th> </th> 2029 </tr> 2030 <tr> 2031 <td>CVE-2016-6686</td> 2032 <td>A-30163101*<br> 2033 N-CVE-2016-6686</td> 2034 <td></td> 2035 <td>Nexus9</td> 2036 <td>15 2016.</td> 2037 </tr> 2038 <tr> 2039 <td>CVE-2016-6687</td> 2040 <td>A-30162222*<br> 2041 N-CVE-2016-6687</td> 2042 <td></td> 2043 <td>Nexus9</td> 2044 <td>15 2016.</td> 2045 </tr> 2046 <tr> 2047 <td>CVE-2016-6688</td> 2048 <td>A-30593080*<br> 2049 N-CVE-2016-6688</td> 2050 <td></td> 2051 <td>Nexus9</td> 2052 <td>2 2016.</td> 2053 </tr> 2054 </table> 2055 <p> 2056 * . 2057 Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>. 2058 </p> 2059 <h3 id="information-disclosure-vulnerability-in-kernel"> </h3> 2060 <p> 2061 2062 . 2063 , 2064 . 2065 </p> 2066 <table> 2067 <col width="19%"> 2068 <col width="20%"> 2069 <col width="10%"> 2070 <col width="23%"> 2071 <col width="17%"> 2072 <tr> 2073 <th>CVE</th> 2074 <th></th> 2075 <th> </th> 2076 <th> Nexus</th> 2077 <th> </th> 2078 </tr> 2079 <tr> 2080 <td>CVE-2016-6689</td> 2081 <td>A-30768347*</td> 2082 <td></td> 2083 <td> </td> 2084 <td>9 2016.</td> 2085 </tr> 2086 </table> 2087 <p> 2088 * . 2089 Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>. 2090 </p> 2091 <h3 id="dosv-in-kernel-networking-subsystem"> </h3> 2092 <p> 2093 TCP, 2094 . - 2095 . 2096 </p> 2097 <table> 2098 <col width="19%"> 2099 <col width="18%"> 2100 <col width="10%"> 2101 <col width="25%"> 2102 <col width="17%"> 2103 <tr> 2104 <th>CVE</th> 2105 <th></th> 2106 <th> </th> 2107 <th> Nexus</th> 2108 <th> </th> 2109 </tr> 2110 <tr> 2111 <td>CVE-2016-5696</td> 2112 <td>A-30809774<br> 2113 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=75ff39ccc1bd5d3c455b6822ab09e533c551f758">Upstream 2114 kernel</a></td> 2115 <td></td> 2116 <td>Nexus5X, Nexus6, Nexus6P, Nexus9, Nexus Player, PixelC, Android One</td> 2117 <td>12 2016.</td> 2118 </tr> 2119 </table> 2120 <h3 id="dosv-in-kernel-sound-driver"> </h3> 2121 <p> 2122 2123 . , 2124 . 2125 </p> 2126 <table> 2127 <col width="19%"> 2128 <col width="18%"> 2129 <col width="10%"> 2130 <col width="25%"> 2131 <col width="17%"> 2132 <tr> 2133 <th>CVE</th> 2134 <th></th> 2135 <th> </th> 2136 <th> Nexus</th> 2137 <th> </th> 2138 </tr> 2139 <tr> 2140 <td>CVE-2016-6690</td> 2141 <td>A-28838221*</td> 2142 <td></td> 2143 <td>Nexus5, Nexus5X, Nexus6, Nexus6P, Nexus Player</td> 2144 <td>18 2016.</td> 2145 </tr> 2146 </table> 2147 <p> 2148 * . 2149 Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>. 2150 </p> 2151 <h3 id="vulnerabilities-in-qualcomm-components"> Qualcomm</h3> 2152 <p> 2153 , Qualcomm. 2154 </p> 2155 <table> 2156 <col width="19%"> 2157 <col width="20%"> 2158 <col width="10%"> 2159 <col width="23%"> 2160 <col width="17%"> 2161 <tr> 2162 <th>CVE</th> 2163 <th></th> 2164 <th> </th> 2165 <th> Nexus</th> 2166 <th> </th> 2167 </tr> 2168 <tr> 2169 <td>CVE-2016-6691</td> 2170 <td><a href="https://source.codeaurora.org/quic/la//platform/frameworks/opt/net/wifi/commit/?id=343f123c396b2a97fc7cce396cd5d99365cb9131">QC-CR#978452</a></td> 2171 <td></td> 2172 <td></td> 2173 <td> 2016.</td> 2174 </tr> 2175 <tr> 2176 <td>CVE-2016-6692</td> 2177 <td><a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=0f0e7047d39f9fb3a1a7f389918ff79cdb4a50b3">QC-CR#1004933</a></td> 2178 <td></td> 2179 <td></td> 2180 <td> 2016.</td> 2181 </tr> 2182 <tr> 2183 <td>CVE-2016-6693</td> 2184 <td><a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=ac328eb631fa74a63d5d2583e6bfeeb5a7a2df65">QC-CR#1027585</a></td> 2185 <td></td> 2186 <td></td> 2187 <td> 2016.</td> 2188 </tr> 2189 <tr> 2190 <td>CVE-2016-6694</td> 2191 <td><a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=961e38553aae8ba9b1af77c7a49acfbb7b0b6f62">QC-CR#1033525</a></td> 2192 <td></td> 2193 <td></td> 2194 <td> 2016.</td> 2195 </tr> 2196 <tr> 2197 <td>CVE-2016-6695</td> 2198 <td><a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=c319c2b0926d1ea5edb4d0778d88bd3ce37c4b95">QC-CR#1033540</a></td> 2199 <td></td> 2200 <td></td> 2201 <td> 2016.</td> 2202 </tr> 2203 <tr> 2204 <td>CVE-2016-6696</td> 2205 <td><a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=c3c9341bfdf93606983f893a086cb33a487306e5">QC-CR#1041130</a></td> 2206 <td></td> 2207 <td></td> 2208 <td> 2016.</td> 2209 </tr> 2210 <tr> 2211 <td>CVE-2016-5344</td> 2212 <td><a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=64e15c36d6c1c57dc2d95a3f163bc830a469fc20">QC-CR#993650</a></td> 2213 <td></td> 2214 <td></td> 2215 <td> 2016.</td> 2216 </tr> 2217 <tr> 2218 <td>CVE-2016-5343</td> 2219 <td><a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=6927e2e0af4dcac357be86ba563c9ae12354bb08">QC-CR#1010081</a></td> 2220 <td></td> 2221 <td></td> 2222 <td> 2016.</td> 2223 </tr> 2224 </table> 2225 <h2 id="common-questions-and-answers"> </h2> 2226 <p> 2227 , 2228 . 2229 </p> 2230 <p> 2231 <strong>1. , , ? 2232 </strong> 2233 </p> 2234 <p> 2235 1 2016 , 2236 2016-10-01. 5 2016 2237 , 2016-10-05. , 2238 , 2239 <a href="https://support.google.com/nexus/answer/4457705"> </a>. 2240 , , 2241 2242 [ro.build.version.security_patch]:[2016-10-01] 2243 [ro.build.version.security_patch]:[2016-10-05]. 2244 </p> 2245 <p> 2246 <strong>2. ?</strong> 2247 </p> 2248 <p> 2249 , 2250 , 2251 Android. Android 2252 2253 . 2254 </p> 2255 <p> 2256 5 2016 2257 , 2258 . 2259 </p> 2260 <p> 2261 1 2016 2262 , 2263 , . 2264 </p> 2265 <p> 2266 <strong>3. , Nexus ?</strong> 2267 </p> 2268 <p> 2269 <a href="#2016-10-01-security-patch-level-vulnerability-details">2016-10-01</a> 2270 <a href="#2016-10-05-security-patch-level-vulnerability-details">2016-10-05</a> <em> Nexus</em>. , 2271 . 2272 </p> 2273 <ul> 2274 <li><strong> .</strong> <em></em> 2275 2276 <a href="https://support.google.com/nexus/answer/4457705#nexus_devices"> Nexus</a>: Nexus5, Nexus5X, Nexus6, 2277 Nexus6P, Nexus7 (2013), Nexus9, AndroidOne, Nexus Player 2278 PixelC.</li> 2279 <li><strong> .</strong> <em></em> , 2280 .</li> 2281 <li><strong>.</strong> Nexus.<em></em></li> 2282 </ul> 2283 <p> 2284 <strong>4. ""?</strong> 2285 </p> 2286 <p> 2287 <em></em>. 2288 , 2289 , : 2290 </p> 2291 <table> 2292 <tr> 2293 <th></th> 2294 <th></th> 2295 </tr> 2296 <tr> 2297 <td>A-</td> 2298 <td> Android</td> 2299 </tr> 2300 <tr> 2301 <td>QC-</td> 2302 <td> Qualcomm</td> 2303 </tr> 2304 <tr> 2305 <td>M-</td> 2306 <td> MediaTek</td> 2307 </tr> 2308 <tr> 2309 <td>N-</td> 2310 <td> NVIDIA</td> 2311 </tr> 2312 <tr> 2313 <td>B-</td> 2314 <td> Broadcom</td> 2315 </tr> 2316 </table> 2317 2318 <h2 id="revisions"></h2> 2319 <ul> 2320 <li>3 2016. .</li> 2321 <li>4 2016. AOSP, 2322 CVE-2016-3920, CVE-2016-6693, CVE-2016-6694, 2323 CVE-2016-6695 CVE-2016-6696.</li> 2324 </ul> 2325 2326 </body> 2327 </html> 2328
