1 <html devsite><head> 2 <title> Android 2017.</title> 3 <meta name="project_path" value="/_project.yaml"/> 4 <meta name="book_path" value="/_book.yaml"/> 5 </head> 6 <body> 7 <!-- 8 Copyright 2017 The Android Open Source Project 9 10 Licensed under the Apache License, Version 2.0 (the "License"); 11 you may not use this file except in compliance with the License. 12 You may obtain a copy of the License at 13 14 http://www.apache.org/licenses/LICENSE-2.0 15 16 Unless required by applicable law or agreed to in writing, software 17 distributed under the License is distributed on an "AS IS" BASIS, 18 WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 19 See the License for the specific language governing permissions and 20 limitations under the License. 21 --> 22 <p><em> 3 2017. | 5 2017.</em></p> 23 <p> Android. Google <a href="https://developers.google.com/android/nexus/images"> </a>. , , 5 2017 . , , <a href="https://support.google.com/pixelphone/answer/4457705#pixel_phones&nexus_devices"> </a>.</p> 24 <p> 6 2017 . Android Open Source Project (AOSP). AOSP.</p> 25 <p> (, , MMS). <a href="/security/overview/updates-resources.html#severity"> </a> , , .</p> 26 <p> . <a href="#mitigations"> </a> , <a href="/security/enhancements/index.html"> </a> , <a href="https://developer.android.com/training/safetynet/index.html">SafetyNet</a>, Android.</p> 27 <p> .</p> 28 29 <h2 id="announcements"></h2> 30 <ul> 31 <li> , , Android. <a href="#common-questions-and-answers"> </a>. 32 <ul> 33 <li><strong>2017-04-01</strong>: , 2017-04-01 .</li> 34 <li><strong>2017-04-05</strong>: , 2017-04-01 2017-04-05, .</li> 35 </ul> 36 </li> 37 <li> Google 5 2017.</li> 38 </ul> 39 40 <h2 id="mitigations"> </h2> 41 <p> , <a href="/security/enhancements/index.html"> </a> , SafetyNet, Android.</p> 42 <ul> 43 <li> Android, .</li> 44 <li>, Android, <a href="http://static.googleusercontent.com/media/source.android.com/en//security/reports/Google_Android_Security_2016_Report_Final.pdf"> SafetyNet</a>. <a href="http://static.googleusercontent.com/media/source.android.com/en//security/reports/Google_Android_Security_PHA_classifications.pdf"> </a>. <a href="http://www.android.com/gms"> Google</a>. , . Google Play , . , . , , , . , .</li> 45 <li> Google Hangouts Messenger , mediaserver, .</li> 46 </ul> 47 48 <h2 id="acknowledgements"></h2> 49 <p> , :</p> 50 <ul> 51 <li> (donfos) Shellphish Grill: CVE-2016-5349</li> 52 <li> (<a href="https://twitter.com/freener0">@freener0</a>) Xuanwu Lab, Tencent: CVE-2017-0585, CVE-2017-0553</li> 53 <li><a href="mailto:derrek.haxx (a] gmail.com">Derrek</a> (<a href="https://twitter.com/derrekr6">@derrekr6</a>) : CVE-2017-0576</li> 54 <li> Project Zero: CVE-2017-0571, CVE-2017-0570, CVE-2017-0572, CVE-2017-0569, CVE-2017-0561</li> 55 <li> (<a href="https://twitter.com/chengjia4574">@chengjia4574</a>) <a href="http://weibo.com/jfpan">pjf</a> IceSword Lab, Qihoo 360 Technology Co. Ltd.: CVE-2017-6426, CVE-2017-0581, CVE-2017-0329, CVE-2017-0332, CVE-2017-0566</li> 56 <li> () (<a href="https://twitter.com/oldfresher">@oldfresher</a>) Alpha Team, Qihoo 360 Technology Co. Ltd.: CVE-2017-0547</li> 57 <li> Alpha Team, Qihoo 360 Technology Co. Ltd.: CVE-2017-6424, CVE-2017-0584, CVE-2017-0454, CVE-2017-0575, CVE-2017-0567</li> 58 <li> (<a href="https://twitter.com/lanrat">@lanrat</a>): CVE-2017-0554</li> 59 <li> Trend Micro Inc.: CVE-2017-0579</li> 60 <li> (<a href="https://twitter.com/Jioun_dai">@Jioun_dai</a>) <a href="https://skyeye.360safe.com">Qihoo 360 Skyeye Labs</a>: CVE-2017-0559, CVE-2017-0541</li> 61 <li> (<a href="https://twitter.com/jianqiangzhao">@jianqiangzhao</a>) <a href="http://weibo.com/jfpan">pjf</a> IceSword Lab, Qihoo 360: CVE-2017-6425, CVE-2016-5346</li> 62 <li> (<a href="mailto:zlbzlb815 (a] 163.com">zlbzlb815 (a] 163.com</a>) <a href="http://c0reteam.org">C0RE Team</a> (<a href="https://twitter.com/guoygang">@guoygang</a>) IceSword Lab, Qihoo 360 Technology Co. Ltd.: CVE-2017-0564</li> 63 <li><a href="mailto:salyzyn (a] android.com"> </a> Google: CVE-2017-0558</li> 64 <li> (<a href="https://twitter.com/manderbot">@manderbot</a>) (<a href="https://twitter.com/natecray">@natecray</a>) Tesla's Product Security Team: CVE-2017-0327, CVE-2017-0328</li> 65 <li> , , , Alibaba Mobile Security Group: CVE-2017-0565</li> 66 <li> (), () () Baidu X-Lab (): CVE-2016-10236</li> 67 <li> ( - <a href="https://twitter.com/flanker_hqd">@flanker_hqd</a>) KeenLab, Tencent: CVE-2017-0544, CVE-2016-10231, CVE-2017-0325</li> 68 <li> (<a href="https://twitter.com/roeehay">@roeehay</a>) Aleph Research, HCL Technologies: CVE-2017-0582, CVE-2017-0563</li> 69 <li><a href="mailto:sbauer (a] plzdonthack.me"> </a> (<a href="https://twitter.com/ScottyBauer1">@ScottyBauer1</a>): CVE-2017-0562, CVE-2017-0339</li> 70 <li> (<a href="https://twitter.com/lingtongshen">@lingtongshen</a>) , Trend Micro: CVE-2017-0578</li> 71 <li> : CVE-2017-0546</li> 72 <li> (<a href="https://twitter.com/umasankar_iitd">@umasankar_iitd</a>): CVE-2017-0560</li> 73 <li>V.E.O (<a href="https://twitter.com/vysea">@VYSEa</a>) <a href="http://blog.trendmicro.com/trendlabs-security-intelligence/category/mobile"> </a>, <a href="http://www.trendmicro.com">Trend Micro</a>: CVE-2017-0555, CVE-2017-0538, CVE-2017-0539, CVE-2017-0540, CVE-2017-0557, CVE-2017-0556</li> 74 <li> (<a href="https://twitter.com/sunblate">@sunblate</a>) Alibaba Inc: CVE-2017-0549</li> 75 <li> (<a href="https://twitter.com/wenlin_yang">@wenlin_yang</a>), (<a href="https://twitter.com/oldfresher">@oldfresher</a>) Alpha Team, Qihoo 360 Technology Co. Ltd.: CVE-2017-0580, CVE-2017-0577</li> 76 <li> (<a href="https://twitter.com/guoygang">@guoygang</a>) IceSword Lab, Qihoo 360 Technology Co. Ltd.: CVE-2017-0586</li> 77 <li><a href="http://weibo.com/ele7enxxh"> </a> Chengdu Security Response Center, Qihoo 360 Technology Co. Ltd.: CVE-2017-0548</li> 78 <li> Google: CVE-2017-0462</li> 79 </ul> 80 81 <h2 id="2017-04-01-details"> ( 2017-04-01)</h2> 82 <p> 2017-04-01: , CVE, , , Google AOSP ( ), . , , (, AOSP), .</p> 83 84 <h3 id="rce-in-mediaserver"> mediaserver</h3> 85 <p> . - mediaserver.</p> 86 87 <table> 88 <colgroup><col width="18%" /> 89 <col width="17%" /> 90 <col width="10%" /> 91 <col width="19%" /> 92 <col width="18%" /> 93 <col width="17%" /> 94 </colgroup><tbody><tr> 95 <th>CVE</th> 96 <th></th> 97 <th> </th> 98 <th> Google</th> 99 <th> AOSP</th> 100 <th> </th> 101 </tr> 102 <tr> 103 <td>CVE-2017-0538</td> 104 <td><a href="https://android.googlesource.com/platform/external/libavc/+/494561291a503840f385fbcd11d9bc5f4dc502b8">A-33641588</a></td> 105 <td></td> 106 <td></td> 107 <td>6.0, 6.0.1, 7.0, 7.1.1</td> 108 <td>13 2016.</td> 109 </tr> 110 <tr> 111 <td>CVE-2017-0539</td> 112 <td><a href="https://android.googlesource.com/platform/external/libhevc/+/1ab5ce7e42feccd49e49752e6f58f9097ac5d254">A-33864300</a></td> 113 <td></td> 114 <td></td> 115 <td>5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1</td> 116 <td>23 2016.</td> 117 </tr> 118 <tr> 119 <td>CVE-2017-0540</td> 120 <td><a href="https://android.googlesource.com/platform/external/libhevc/+/01ca88bb6c5bdd44e071f8effebe12f1d7da9853">A-33966031</a></td> 121 <td></td> 122 <td></td> 123 <td>5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1</td> 124 <td>29 2016.</td> 125 </tr> 126 <tr> 127 <td>CVE-2017-0541</td> 128 <td><a href="https://android.googlesource.com/platform/external/sonivox/+/56d153259cc3e16a6a0014199a2317dde333c978">A-34031018</a></td> 129 <td></td> 130 <td></td> 131 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1</td> 132 <td>1 2017.</td> 133 </tr> 134 <tr> 135 <td>CVE-2017-0542</td> 136 <td><a href="https://android.googlesource.com/platform/external/libavc/+/33ef7de9ddc8ea7eb9cbc440d1cf89957a0c267b">A-33934721</a></td> 137 <td></td> 138 <td></td> 139 <td>6.0, 6.0.1, 7.0, 7.1.1</td> 140 <td> Google</td> 141 </tr> 142 <tr> 143 <td>CVE-2017-0543</td> 144 <td><a href="https://android.googlesource.com/platform/external/libavc/+/f634481e940421020e52f511c1fb34aac1db4b2f">A-34097866</a></td> 145 <td></td> 146 <td></td> 147 <td>6.0, 6.0.1, 7.0, 7.1.1</td> 148 <td> Google</td> 149 </tr> 150 </tbody></table> 151 152 <h3 id="eop-in-camerabase"> CameraBase</h3> 153 <p> . - .</p> 154 155 <table> 156 <colgroup><col width="18%" /> 157 <col width="17%" /> 158 <col width="10%" /> 159 <col width="19%" /> 160 <col width="18%" /> 161 <col width="17%" /> 162 </colgroup><tbody><tr> 163 <th>CVE</th> 164 <th></th> 165 <th> </th> 166 <th> Google</th> 167 <th> AOSP</th> 168 <th> </th> 169 </tr> 170 <tr> 171 <td>CVE-2017-0544</td> 172 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/4b49489c12e6862e9a320ebcb53872e809ed20ec">A-31992879</a></td> 173 <td></td> 174 <td></td> 175 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1</td> 176 <td>6 2016.</td> 177 </tr> 178 </tbody></table> 179 180 <h3 id="eop-in-audioserver"> audioserver</h3> 181 <p> . , , .</p> 182 183 <table> 184 <colgroup><col width="18%" /> 185 <col width="17%" /> 186 <col width="10%" /> 187 <col width="19%" /> 188 <col width="18%" /> 189 <col width="17%" /> 190 </colgroup><tbody><tr> 191 <th>CVE</th> 192 <th></th> 193 <th> </th> 194 <th> Google</th> 195 <th> AOSP</th> 196 <th> </th> 197 </tr> 198 <tr> 199 <td>CVE-2017-0545</td> 200 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/e5a54485e08400a976092cd5b1c6d909d0e1a4ab">A-32591350</a></td> 201 <td></td> 202 <td></td> 203 <td>5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1</td> 204 <td>31 2016.</td> 205 </tr> 206 </tbody></table> 207 208 <h3 id="eop-in-surfaceflinger"> SurfaceFlinger</h3> 209 <p> . , , .</p> 210 211 <table> 212 <colgroup><col width="18%" /> 213 <col width="17%" /> 214 <col width="10%" /> 215 <col width="19%" /> 216 <col width="18%" /> 217 <col width="17%" /> 218 </colgroup><tbody><tr> 219 <th>CVE</th> 220 <th></th> 221 <th> </th> 222 <th> Google</th> 223 <th> AOSP</th> 224 <th> </th> 225 </tr> 226 <tr> 227 <td>CVE-2017-0546</td> 228 <td><a href="https://android.googlesource.com/platform/frameworks/native/+/45b202513ba7440beaefbf9928f73fb6683dcfbd">A-32628763</a></td> 229 <td></td> 230 <td></td> 231 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1</td> 232 <td>2 2016.</td> 233 </tr> 234 </tbody></table> 235 236 <h3 id="id-in-mediaserver"> mediaserver</h3> 237 <p> . , , .</p> 238 239 <table> 240 <colgroup><col width="18%" /> 241 <col width="17%" /> 242 <col width="10%" /> 243 <col width="19%" /> 244 <col width="18%" /> 245 <col width="17%" /> 246 </colgroup><tbody><tr> 247 <th>CVE</th> 248 <th></th> 249 <th> </th> 250 <th> Google</th> 251 <th> AOSP</th> 252 <th> </th> 253 </tr> 254 <tr> 255 <td>CVE-2017-0547</td> 256 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/9667e3eff2d34c3797c3b529370de47b2c1f1bf6">A-33861560</a></td> 257 <td></td> 258 <td></td> 259 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1</td> 260 <td>22 2016.</td> 261 </tr> 262 </tbody></table> 263 264 <h3 id="dos-in-libskia"> libskia</h3> 265 <p> . , .</p> 266 267 <table> 268 <colgroup><col width="18%" /> 269 <col width="17%" /> 270 <col width="10%" /> 271 <col width="19%" /> 272 <col width="18%" /> 273 <col width="17%" /> 274 </colgroup><tbody><tr> 275 <th>CVE</th> 276 <th></th> 277 <th> </th> 278 <th> Google</th> 279 <th> AOSP</th> 280 <th> </th> 281 </tr> 282 <tr> 283 <td>CVE-2017-0548</td> 284 <td><a href="https://android.googlesource.com/platform/external/skia/+/318e3505ac2436c62ec19fd27ebe9f8e7d174544">A-33251605</a></td> 285 <td></td> 286 <td></td> 287 <td>7.0, 7.1.1</td> 288 <td>29 2016.</td> 289 </tr> 290 </tbody></table> 291 292 <h3 id="dos-in-mediaserver"> mediaserver</h3> 293 <p> . , .</p> 294 295 <table> 296 <colgroup><col width="18%" /> 297 <col width="17%" /> 298 <col width="10%" /> 299 <col width="19%" /> 300 <col width="18%" /> 301 <col width="17%" /> 302 </colgroup><tbody><tr> 303 <th>CVE</th> 304 <th></th> 305 <th> </th> 306 <th> Google</th> 307 <th> AOSP</th> 308 <th> </th> 309 </tr> 310 <tr> 311 <td>CVE-2017-0549</td> 312 <td><a href="https://android.googlesource.com/platform/external/libavc/+/37345554fea84afd446d6d8fbb87feea5a0dde3f">A-33818508</a></td> 313 <td></td> 314 <td></td> 315 <td>6.0, 6.0.1, 7.0, 7.1.1</td> 316 <td>20 2016.</td> 317 </tr> 318 <tr> 319 <td>CVE-2017-0550</td> 320 <td><a href="https://android.googlesource.com/platform/external/libavc/+/7950bf47b6944546a0aff11a7184947de9591b51">A-33933140</a></td> 321 <td></td> 322 <td></td> 323 <td>6.0, 6.0.1, 7.0, 7.1.1</td> 324 <td> Google</td> 325 </tr> 326 <tr> 327 <td>CVE-2017-0551</td> 328 <td><a href="https://android.googlesource.com/platform/external/libavc/+/8b5fd8f24eba5dd19ab2f80ea11a9125aa882ae2">A-34097231</a> 329 [<a href="https://android.googlesource.com/platform/external/libavc/+/494561291a503840f385fbcd11d9bc5f4dc502b8">2</a>]</td> 330 <td></td> 331 <td></td> 332 <td>6.0, 6.0.1, 7.0, 7.1.1</td> 333 <td> Google</td> 334 </tr> 335 <tr> 336 <td>CVE-2017-0552</td> 337 <td><a href="https://android.googlesource.com/platform/external/libavc/+/9a00f562a612d56e7b2b989d168647db900ba6cf">A-34097915</a></td> 338 <td></td> 339 <td></td> 340 <td>6.0, 6.0.1, 7.0, 7.1.1</td> 341 <td> Google</td> 342 </tr> 343 </tbody></table> 344 345 <h3 id="eop-in-libnl"> libnl</h3> 346 <p> Wi-Fi. 347 , , .</p> 348 349 <table> 350 <colgroup><col width="18%" /> 351 <col width="17%" /> 352 <col width="10%" /> 353 <col width="19%" /> 354 <col width="18%" /> 355 <col width="17%" /> 356 </colgroup><tbody><tr> 357 <th>CVE</th> 358 <th></th> 359 <th> </th> 360 <th> Google</th> 361 <th> AOSP</th> 362 <th> </th> 363 </tr> 364 <tr> 365 <td>CVE-2017-0553</td> 366 <td><a href="https://android.googlesource.com/platform/external/libnl/+/f83d9c1c67b6be69a96995e384f50b572b667df0">A-32342065</a></td> 367 <td></td> 368 <td></td> 369 <td>5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1</td> 370 <td>21 2016.</td> 371 </tr> 372 </tbody></table> 373 374 <h3 id="eop-in-telephony"> </h3> 375 <p> . , , .</p> 376 377 <table> 378 <colgroup><col width="18%" /> 379 <col width="17%" /> 380 <col width="10%" /> 381 <col width="19%" /> 382 <col width="18%" /> 383 <col width="17%" /> 384 </colgroup><tbody><tr> 385 <th>CVE</th> 386 <th></th> 387 <th> </th> 388 <th> Google</th> 389 <th> AOSP</th> 390 <th> </th> 391 </tr> 392 <tr> 393 <td>CVE-2017-0554</td> 394 <td><a href="https://android.googlesource.com/platform/packages/services/Telephony/+/aeb795ef2290af1a0e4b14909363bc574e6b3ee7">A-33815946</a> 395 [<a href="https://android.googlesource.com/platform/frameworks/base/+/3294256ba5b9e2ba2d8619d617e3d900e5386564">2</a>]</td> 396 <td></td> 397 <td></td> 398 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1</td> 399 <td>20 2016.</td> 400 </tr> 401 </tbody></table> 402 403 <h3 id="id-in-mediaserver-2"> mediaserver</h3> 404 <p> . - .</p> 405 406 <table> 407 <colgroup><col width="18%" /> 408 <col width="17%" /> 409 <col width="10%" /> 410 <col width="19%" /> 411 <col width="18%" /> 412 <col width="17%" /> 413 </colgroup><tbody><tr> 414 <th>CVE</th> 415 <th></th> 416 <th> </th> 417 <th> Google</th> 418 <th> AOSP</th> 419 <th> </th> 420 </tr> 421 <tr> 422 <td>CVE-2017-0555</td> 423 <td><a href="https://android.googlesource.com/platform/external/libavc/+/0b23c81c3dd9ec38f7e6806a3955fed1925541a0">A-33551775</a></td> 424 <td></td> 425 <td></td> 426 <td>6.0, 6.0.1, 7.0, 7.1.1</td> 427 <td>12 2016.</td> 428 </tr> 429 <tr> 430 <td>CVE-2017-0556</td> 431 <td><a href="https://android.googlesource.com/platform/external/libmpeg2/+/f301cff2c1ddd880d9a2c77b22602a137519867b">A-34093952</a></td> 432 <td></td> 433 <td></td> 434 <td>6.0, 6.0.1, 7.0, 7.1.1</td> 435 <td>4 2017.</td> 436 </tr> 437 <tr> 438 <td>CVE-2017-0557</td> 439 <td><a href="https://android.googlesource.com/platform/external/libmpeg2/+/227c1f829127405e21dab1664393050c652ef71e">A-34093073</a></td> 440 <td></td> 441 <td></td> 442 <td>6.0, 6.0.1, 7.0, 7.1.1</td> 443 <td>4 2017.</td> 444 </tr> 445 <tr> 446 <td>CVE-2017-0558</td> 447 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/50358a80b1724f6cf1bcdf003e1abf9cc141b122">A-34056274</a></td> 448 <td></td> 449 <td></td> 450 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1</td> 451 <td> Google</td> 452 </tr> 453 </tbody></table> 454 455 <h3 id="id-in-libskia"> libskia</h3> 456 <p> . - .</p> 457 458 <table> 459 <colgroup><col width="18%" /> 460 <col width="17%" /> 461 <col width="10%" /> 462 <col width="19%" /> 463 <col width="18%" /> 464 <col width="17%" /> 465 </colgroup><tbody><tr> 466 <th>CVE</th> 467 <th></th> 468 <th> </th> 469 <th> Google</th> 470 <th> AOSP</th> 471 <th> </th> 472 </tr> 473 <tr> 474 <td>CVE-2017-0559</td> 475 <td><a href="https://android.googlesource.com/platform/external/skia/+/16882f721279a82a1c860ac689ce570b16fe26a0">A-33897722</a></td> 476 <td></td> 477 <td></td> 478 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1</td> 479 <td>25 2016.</td> 480 </tr> 481 </tbody></table> 482 483 <h3 id="id-in-factory-reset"> </h3> 484 <p> , , . , .</p> 485 486 <table> 487 <colgroup><col width="18%" /> 488 <col width="17%" /> 489 <col width="10%" /> 490 <col width="19%" /> 491 <col width="18%" /> 492 <col width="17%" /> 493 </colgroup><tbody><tr> 494 <th>CVE</th> 495 <th></th> 496 <th> </th> 497 <th> Google</th> 498 <th> AOSP</th> 499 <th> </th> 500 </tr> 501 <tr> 502 <td>CVE-2017-0560</td> 503 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/efdec8f5688ce6b0a287eddb6d5dad93ffa0e1ee">A-30681079</a></td> 504 <td></td> 505 <td></td> 506 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1</td> 507 <td> Google</td> 508 </tr> 509 </tbody></table> 510 511 <h2 id="2017-04-05-details"> ( 2017-04-05)</h2> 512 <p> 2017-04-05: , CVE, , , Google AOSP ( ), . , , (, AOSP), .</p> 513 514 <h3 id="rce-in-broadcom-wi-fi-firmware"> Wi-Fi Broadcom</h3> 515 <p> Wi-Fi. - .</p> 516 517 <table> 518 <colgroup><col width="19%" /> 519 <col width="20%" /> 520 <col width="10%" /> 521 <col width="23%" /> 522 <col width="17%" /> 523 </colgroup><tbody><tr> 524 <th>CVE</th> 525 <th></th> 526 <th> </th> 527 <th> Google</th> 528 <th> </th> 529 </tr> 530 <tr> 531 <td>CVE-2017-0561</td> 532 <td>A-34199105*<br /> 533 B-RB#110814</td> 534 <td></td> 535 <td>Nexus6, Nexus6P, Nexus9, PixelC, Nexus Player</td> 536 <td>9 2017.</td> 537 </tr> 538 </tbody></table> 539 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 540 541 <h3 id="rce-in-qualcomm-crypto-engine-driver"> Qualcomm</h3> 542 <p> . - .</p> 543 544 <table> 545 <colgroup><col width="19%" /> 546 <col width="20%" /> 547 <col width="10%" /> 548 <col width="23%" /> 549 <col width="17%" /> 550 </colgroup><tbody><tr> 551 <th>CVE</th> 552 <th></th> 553 <th> </th> 554 <th> Google</th> 555 <th> </th> 556 </tr> 557 <tr> 558 <td>CVE-2016-10230</td> 559 <td>A-34389927<br /> 560 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=bd9a8fc6d7f6bd1a0b936994630006de450df657"> 561 QC-CR#1091408</a></td> 562 <td></td> 563 <td>Nexus5X, Nexus6, Nexus6P, Pixel, PixelXL, Android One</td> 564 <td>10 2017.</td> 565 </tr> 566 </tbody></table> 567 568 <h3 id="rce-in-kernel-networking-subsystem"> </h3> 569 <p> . - .</p> 570 571 <table> 572 <colgroup><col width="19%" /> 573 <col width="20%" /> 574 <col width="10%" /> 575 <col width="23%" /> 576 <col width="17%" /> 577 </colgroup><tbody><tr> 578 <th>CVE</th> 579 <th></th> 580 <th> </th> 581 <th> Google</th> 582 <th> </th> 583 </tr> 584 <tr> 585 <td>CVE-2016-10229</td> 586 <td>A-32813456<br /> 587 <a href="http://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=197c949e7798fbf28cfadc69d9ca0c2abbf93191"> 588 Upstream kernel</a></td> 589 <td></td> 590 <td>Nexus5X, Nexus6, Nexus6P, Pixel, PixelXL, PixelC, Android One, Nexus Player</td> 591 <td> Google</td> 592 </tr> 593 </tbody></table> 594 595 <h3 id="eop-in-mediatek-touchscreen-driver"> MediaTek</h3> 596 <p> . , - . , .</p> 597 598 <table> 599 <colgroup><col width="19%" /> 600 <col width="20%" /> 601 <col width="10%" /> 602 <col width="23%" /> 603 <col width="17%" /> 604 </colgroup><tbody><tr> 605 <th>CVE</th> 606 <th></th> 607 <th> </th> 608 <th> Google</th> 609 <th> </th> 610 </tr> 611 <tr> 612 <td>CVE-2017-0562</td> 613 <td>A-30202425*<br /> 614 M-ALPS02898189</td> 615 <td>*</td> 616 <td>**</td> 617 <td>16 2016.</td> 618 </tr> 619 </tbody></table> 620 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 621 <p>** Google Android7.0, .</p> 622 623 <h3 id="eop-in-htc-touchscreen-driver"> HTC</h3> 624 <p> . , - . , .</p> 625 626 <table> 627 <colgroup><col width="19%" /> 628 <col width="20%" /> 629 <col width="10%" /> 630 <col width="23%" /> 631 <col width="17%" /> 632 </colgroup><tbody><tr> 633 <th>CVE</th> 634 <th></th> 635 <th> </th> 636 <th> Google</th> 637 <th> </th> 638 </tr> 639 <tr> 640 <td>CVE-2017-0563</td> 641 <td>A-32089409*<br /> 642 </td> 643 <td></td> 644 <td>Nexus9</td> 645 <td>9 2016.</td> 646 </tr> 647 </tbody></table> 648 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 649 650 <h3 id="eop-in-kernel-ion-subsystem"> ION </h3> 651 <p> . , - . , .</p> 652 653 <table> 654 <colgroup><col width="19%" /> 655 <col width="20%" /> 656 <col width="10%" /> 657 <col width="23%" /> 658 <col width="17%" /> 659 </colgroup><tbody><tr> 660 <th>CVE</th> 661 <th></th> 662 <th> </th> 663 <th> Google</th> 664 <th> </th> 665 </tr> 666 <tr> 667 <td>CVE-2017-0564</td> 668 <td>A-34276203*<br /> 669 </td> 670 <td></td> 671 <td>Nexus5X, Nexus6, Nexus6P, Pixel, PixelXL, PixelC, Android One, Nexus Player</td> 672 <td>12 2017.</td> 673 </tr> 674 </tbody></table> 675 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 676 677 <h3 id="vulnerabilities-in-qualcomm-components"> Qualcomm</h3> 678 <p> Qualcomm Qualcomm AMSS 2016.</p> 679 680 <table> 681 <colgroup><col width="19%" /> 682 <col width="20%" /> 683 <col width="10%" /> 684 <col width="23%" /> 685 <col width="17%" /> 686 </colgroup><tbody><tr> 687 <th>CVE</th> 688 <th></th> 689 <th> </th> 690 <th> Google</th> 691 <th> </th> 692 </tr> 693 <tr> 694 <td>CVE-2016-10237</td> 695 <td>A-31628601**<br /> 696 QC-CR#1046751</td> 697 <td></td> 698 <td>**</td> 699 <td> Qualcomm</td> 700 </tr> 701 <tr> 702 <td>CVE-2016-10238</td> 703 <td>A-35358527**<br /> 704 QC-CR#1042558</td> 705 <td></td> 706 <td>***</td> 707 <td> Qualcomm</td> 708 </tr> 709 <tr> 710 <td>CVE-2016-10239</td> 711 <td>A-31624618**<br /> 712 QC-CR#1032929</td> 713 <td></td> 714 <td>Pixel, PixelXL</td> 715 <td> Qualcomm</td> 716 </tr> 717 </tbody></table> 718 <p>* Qualcomm.</p> 719 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 720 <p>*** Google Android7.0, .</p> 721 722 <h3 id="rce-in-v8"> v8</h3> 723 <p> . - -. </p> 724 725 <table> 726 <colgroup><col width="18%" /> 727 <col width="17%" /> 728 <col width="10%" /> 729 <col width="19%" /> 730 <col width="18%" /> 731 <col width="17%" /> 732 </colgroup><tbody><tr> 733 <th>CVE</th> 734 <th></th> 735 <th> </th> 736 <th> Google</th> 737 <th> AOSP</th> 738 <th> </th> 739 </tr> 740 <tr> 741 <td>CVE-2016-5129</td> 742 <td>A-29178923</td> 743 <td></td> 744 <td>*</td> 745 <td>6.0, 6.0.1, 7.0</td> 746 <td>20 2016.</td> 747 </tr> 748 </tbody></table> 749 <p>* Google Android7.0, .</p> 750 751 <h3 id="rce-in-freetype"> Freetype</h3> 752 <p> , . - , .</p> 753 754 <table> 755 <colgroup><col width="18%" /> 756 <col width="17%" /> 757 <col width="10%" /> 758 <col width="19%" /> 759 <col width="18%" /> 760 <col width="17%" /> 761 </colgroup><tbody><tr> 762 <th>CVE</th> 763 <th></th> 764 <th> </th> 765 <th> Google</th> 766 <th> AOSP</th> 767 <th> </th> 768 </tr> 769 <tr> 770 <td>CVE-2016-10244</td> 771 <td>A-31470908</td> 772 <td></td> 773 <td>*</td> 774 <td>4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0</td> 775 <td>13 2016.</td> 776 </tr> 777 </tbody></table> 778 <p>* Google Android7.0, .</p> 779 780 <h3 id="eop-in-kernel-sound-subsystem"> </h3> 781 <p> . , .</p> 782 783 <table> 784 <colgroup><col width="19%" /> 785 <col width="20%" /> 786 <col width="10%" /> 787 <col width="23%" /> 788 <col width="17%" /> 789 </colgroup><tbody><tr> 790 <th>CVE</th> 791 <th></th> 792 <th> </th> 793 <th> Google</th> 794 <th> </th> 795 </tr> 796 <tr> 797 <td>CVE-2014-4656</td> 798 <td>A-34464977<br /> 799 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=883a1d49f0d77d30012f114b2e19fc141beb3e8e"> 800 Upstream kernel</a></td> 801 <td></td> 802 <td>Nexus6, Nexus Player</td> 803 <td>26 2016.</td> 804 </tr> 805 </tbody></table> 806 807 <h3 id="eop-in-nvidia-crypto-driver"> NVIDIA</h3> 808 <p> . , .</p> 809 810 <table> 811 <colgroup><col width="19%" /> 812 <col width="20%" /> 813 <col width="10%" /> 814 <col width="23%" /> 815 <col width="17%" /> 816 </colgroup><tbody><tr> 817 <th>CVE</th> 818 <th></th> 819 <th> </th> 820 <th> Google</th> 821 <th> </th> 822 </tr> 823 <tr> 824 <td>CVE-2017-0339</td> 825 <td>A-27930566*<br /> 826 N-CVE-2017-0339</td> 827 <td></td> 828 <td>Nexus9</td> 829 <td>29 2016.</td> 830 </tr> 831 <tr> 832 <td>CVE-2017-0332</td> 833 <td>A-33812508*<br /> 834 N-CVE-2017-0332</td> 835 <td></td> 836 <td>Nexus9</td> 837 <td>21 2016.</td> 838 </tr> 839 <tr> 840 <td>CVE-2017-0327</td> 841 <td>A-33893669*<br /> 842 N-CVE-2017-0327</td> 843 <td></td> 844 <td>Nexus9</td> 845 <td>24 2016.</td> 846 </tr> 847 </tbody></table> 848 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 849 850 <h3 id="eop-in-mediatek-thermal-driver"> MediaTek</h3> 851 <p> . , .</p> 852 853 <table> 854 <colgroup><col width="19%" /> 855 <col width="20%" /> 856 <col width="10%" /> 857 <col width="23%" /> 858 <col width="17%" /> 859 </colgroup><tbody><tr> 860 <th>CVE</th> 861 <th></th> 862 <th> </th> 863 <th> Google</th> 864 <th> </th> 865 </tr> 866 <tr> 867 <td>CVE-2017-0565</td> 868 <td>A-28175904*<br /> 869 M-ALPS02696516</td> 870 <td></td> 871 <td>**</td> 872 <td>11 2016.</td> 873 </tr> 874 </tbody></table> 875 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 876 <p>** Google Android7.0, .</p> 877 878 <h3 id="eop-in-mediatek-camera-driver"> MediaTek </h3> 879 <p> . , .</p> 880 881 <table> 882 <colgroup><col width="19%" /> 883 <col width="20%" /> 884 <col width="10%" /> 885 <col width="23%" /> 886 <col width="17%" /> 887 </colgroup><tbody><tr> 888 <th>CVE</th> 889 <th></th> 890 <th> </th> 891 <th> Google</th> 892 <th> </th> 893 </tr> 894 <tr> 895 <td>CVE-2017-0566</td> 896 <td>A-28470975*<br /> 897 M-ALPS02696367</td> 898 <td></td> 899 <td>**</td> 900 <td>29 2016.</td> 901 </tr> 902 </tbody></table> 903 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 904 <p>** Google Android7.0, .</p> 905 906 <h3 id="eop-in-broadcom-wi-fi-driver"> Wi-Fi- Broadcom</h3> 907 <p> . , .</p> 908 909 <table> 910 <colgroup><col width="19%" /> 911 <col width="20%" /> 912 <col width="10%" /> 913 <col width="23%" /> 914 <col width="17%" /> 915 </colgroup><tbody><tr> 916 <th>CVE</th> 917 <th></th> 918 <th> </th> 919 <th> Google</th> 920 <th> </th> 921 </tr> 922 <tr> 923 <td>CVE-2017-0567</td> 924 <td>A-32125310*<br /> 925 B-RB#112575</td> 926 <td></td> 927 <td>Nexus6, Nexus6P, Nexus9, PixelC, Nexus Player</td> 928 <td>12 2016.</td> 929 </tr> 930 <tr> 931 <td>CVE-2017-0568</td> 932 <td>A-34197514*<br /> 933 B-RB#112600</td> 934 <td></td> 935 <td>Nexus6, Nexus6P, Nexus9, PixelC, Nexus Player</td> 936 <td>9 2017.</td> 937 </tr> 938 <tr> 939 <td>CVE-2017-0569</td> 940 <td>A-34198729*<br /> 941 B-RB#110666</td> 942 <td></td> 943 <td>Nexus6, Nexus6P, Nexus9, PixelC, Nexus Player</td> 944 <td>9 2017.</td> 945 </tr> 946 <tr> 947 <td>CVE-2017-0570</td> 948 <td>A-34199963*<br /> 949 B-RB#110688</td> 950 <td></td> 951 <td>Nexus6, Nexus6P, Nexus9, PixelC, Nexus Player</td> 952 <td>9 2017.</td> 953 </tr> 954 <tr> 955 <td>CVE-2017-0571</td> 956 <td>A-34203305*<br /> 957 B-RB#111541</td> 958 <td></td> 959 <td>Nexus6, Nexus6P, PixelC, Nexus Player</td> 960 <td>9 2017.</td> 961 </tr> 962 <tr> 963 <td>CVE-2017-0572</td> 964 <td>A-34198931*<br /> 965 B-RB#112597</td> 966 <td></td> 967 <td>**</td> 968 <td>9 2017.</td> 969 </tr> 970 <tr> 971 <td>CVE-2017-0573</td> 972 <td>A-34469904*<br /> 973 B-RB#91539</td> 974 <td></td> 975 <td>Nexus6, Nexus6P, Nexus9, PixelC, Nexus Player</td> 976 <td>18 2017.</td> 977 </tr> 978 <tr> 979 <td>CVE-2017-0574</td> 980 <td>A-34624457*<br /> 981 B-RB#113189</td> 982 <td></td> 983 <td>Nexus6, Nexus6P, Nexus9, PixelC</td> 984 <td>22 2017.</td> 985 </tr> 986 </tbody></table> 987 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 988 <p>** Google Android7.0, .</p> 989 990 <h3 id="eop-in-qualcomm-wi-fi-driver"> Wi-Fi- Qualcomm</h3> 991 <p> . , .</p> 992 993 <table> 994 <colgroup><col width="19%" /> 995 <col width="20%" /> 996 <col width="10%" /> 997 <col width="23%" /> 998 <col width="17%" /> 999 </colgroup><tbody><tr> 1000 <th>CVE</th> 1001 <th></th> 1002 <th> </th> 1003 <th> Google</th> 1004 <th> </th> 1005 </tr> 1006 <tr> 1007 <td>CVE-2017-0575</td> 1008 <td>A-32658595*<br /> 1009 QC-CR#1103099</td> 1010 <td></td> 1011 <td>Nexus5X, Pixel, PixelXL</td> 1012 <td>3 2016.</td> 1013 </tr> 1014 </tbody></table> 1015 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 1016 1017 <h3 id="eop-in-nvidia-i2c-hid-driver"> I2C HID NVIDIA</h3> 1018 <p> . , .</p> 1019 1020 <table> 1021 <colgroup><col width="19%" /> 1022 <col width="20%" /> 1023 <col width="10%" /> 1024 <col width="23%" /> 1025 <col width="17%" /> 1026 </colgroup><tbody><tr> 1027 <th>CVE</th> 1028 <th></th> 1029 <th> </th> 1030 <th> Google</th> 1031 <th> </th> 1032 </tr> 1033 <tr> 1034 <td>CVE-2017-0325</td> 1035 <td>A-33040280*<br /> 1036 N-CVE-2017-0325</td> 1037 <td></td> 1038 <td>Nexus9, PixelC</td> 1039 <td>20 2016.</td> 1040 </tr> 1041 </tbody></table> 1042 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 1043 1044 <h3 id="eop-in-qualcomm-audio-driver"> Qualcomm</h3> 1045 <p> . , .</p> 1046 1047 <table> 1048 <colgroup><col width="19%" /> 1049 <col width="20%" /> 1050 <col width="10%" /> 1051 <col width="23%" /> 1052 <col width="17%" /> 1053 </colgroup><tbody><tr> 1054 <th>CVE</th> 1055 <th></th> 1056 <th> </th> 1057 <th> Google</th> 1058 <th> </th> 1059 </tr> 1060 <tr> 1061 <td>CVE-2017-0454</td> 1062 <td>A-33353700<br /> 1063 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=cb0701a2f99fa19f01fbd4249bda9a8eadb0241f"> 1064 QC-CR#1104067</a></td> 1065 <td></td> 1066 <td>Nexus5X, Nexus6P, Pixel, PixelXL</td> 1067 <td>5 2016.</td> 1068 </tr> 1069 </tbody></table> 1070 1071 <h3 id="eop-in-qualcomm-crypto-engine-driver"> Qualcomm </h3> 1072 <p> . , .</p> 1073 1074 <table> 1075 <colgroup><col width="19%" /> 1076 <col width="20%" /> 1077 <col width="10%" /> 1078 <col width="23%" /> 1079 <col width="17%" /> 1080 </colgroup><tbody><tr> 1081 <th>CVE</th> 1082 <th></th> 1083 <th> </th> 1084 <th> Google</th> 1085 <th> </th> 1086 </tr> 1087 <tr> 1088 <td>CVE-2017-0576</td> 1089 <td>A-33544431<br /> 1090 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=2b09507d78b25637df6879cd2ee2031b208b3532"> 1091 QC-CR#1103089</a></td> 1092 <td></td> 1093 <td>Nexus5X, Nexus6, Nexus6P, Pixel, PixelXL, Android One</td> 1094 <td>9 2016.</td> 1095 </tr> 1096 </tbody></table> 1097 1098 <h3 id="eop-in-htc-touchscreen-driver-2"> HTC</h3> 1099 <p> . , .</p> 1100 1101 <table> 1102 <colgroup><col width="19%" /> 1103 <col width="20%" /> 1104 <col width="10%" /> 1105 <col width="23%" /> 1106 <col width="17%" /> 1107 </colgroup><tbody><tr> 1108 <th>CVE</th> 1109 <th></th> 1110 <th> </th> 1111 <th> Google</th> 1112 <th> </th> 1113 </tr> 1114 <tr> 1115 <td>CVE-2017-0577</td> 1116 <td>A-33842951*<br /> 1117 </td> 1118 <td></td> 1119 <td>**</td> 1120 <td>21 2016.</td> 1121 </tr> 1122 </tbody></table> 1123 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 1124 <p>** Google Android7.0, .</p> 1125 1126 <h3 id="eop-in-dts-sound-driver"> DTS</h3> 1127 <p> . , .</p> 1128 1129 <table> 1130 <colgroup><col width="19%" /> 1131 <col width="20%" /> 1132 <col width="10%" /> 1133 <col width="23%" /> 1134 <col width="17%" /> 1135 </colgroup><tbody><tr> 1136 <th>CVE</th> 1137 <th></th> 1138 <th> </th> 1139 <th> Google</th> 1140 <th> </th> 1141 </tr> 1142 <tr> 1143 <td>CVE-2017-0578</td> 1144 <td>A-33964406*<br /> 1145 </td> 1146 <td></td> 1147 <td>**</td> 1148 <td>28 2016.</td> 1149 </tr> 1150 </tbody></table> 1151 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 1152 <p>** Google Android7.0, .</p> 1153 1154 <h3 id="eop-in-qualcomm-sound-codec-driver"> Qualcomm</h3> 1155 <p> . , .</p> 1156 1157 <table> 1158 <colgroup><col width="19%" /> 1159 <col width="20%" /> 1160 <col width="10%" /> 1161 <col width="23%" /> 1162 <col width="17%" /> 1163 </colgroup><tbody><tr> 1164 <th>CVE</th> 1165 <th></th> 1166 <th> </th> 1167 <th> Google</th> 1168 <th> </th> 1169 </tr> 1170 <tr> 1171 <td>CVE-2016-10231</td> 1172 <td>A-33966912<br /> 1173 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=3bfe5a89916f7d29492e9f6d941d108b688cb804"> 1174 QC-CR#1096799</a></td> 1175 <td></td> 1176 <td>Pixel, PixelXL</td> 1177 <td>29 2016.</td> 1178 </tr> 1179 </tbody></table> 1180 1181 <h3 id="eop-in-qualcomm-video-driver"> Qualcomm</h3> 1182 <p> . , .</p> 1183 1184 <table> 1185 <colgroup><col width="19%" /> 1186 <col width="20%" /> 1187 <col width="10%" /> 1188 <col width="23%" /> 1189 <col width="17%" /> 1190 </colgroup><tbody><tr> 1191 <th>CVE</th> 1192 <th></th> 1193 <th> </th> 1194 <th> Google</th> 1195 <th> </th> 1196 </tr> 1197 <tr> 1198 <td>CVE-2017-0579</td> 1199 <td>A-34125463*<br /> 1200 QC-CR#1115406</td> 1201 <td></td> 1202 <td>Nexus5X, Nexus6P, Pixel, PixelXL</td> 1203 <td>5 2017.</td> 1204 </tr> 1205 <tr> 1206 <td>CVE-2016-10232</td> 1207 <td>A-34386696<br /> 1208 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.10/commit/?id=21e0ead58e47798567d846b84f16f89cf69a57ae">QC-CR#1024872</a> <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=27f7b3b3059f6181e2786f886f4cd92f413bc30c"> 1209 [2]</a></td> 1210 <td></td> 1211 <td>Nexus5X, Nexus6P, Pixel, PixelXL, Android One</td> 1212 <td>10 2017.</td> 1213 </tr> 1214 <tr> 1215 <td>CVE-2016-10233</td> 1216 <td>A-34389926<br /> 1217 <a href="https://source.codeaurora.org/quic/la/kernel/msm/commit/?id=d793c6d91ecba2a1fd206ad47a4fd408d290addf"> 1218 QC-CR#897452</a></td> 1219 <td></td> 1220 <td>**</td> 1221 <td>10 2017.</td> 1222 </tr> 1223 </tbody></table> 1224 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 1225 <p>** Google Android7.0, .</p> 1226 1227 <h3 id="eop-in-nvidia-boot-and-power-management-processor-driver"> NVIDIA</h3> 1228 <p> . 1229 , .</p> 1230 1231 <table> 1232 <colgroup><col width="19%" /> 1233 <col width="20%" /> 1234 <col width="10%" /> 1235 <col width="23%" /> 1236 <col width="17%" /> 1237 </colgroup><tbody><tr> 1238 <th>CVE</th> 1239 <th></th> 1240 <th> </th> 1241 <th> Google</th> 1242 <th> </th> 1243 </tr> 1244 <tr> 1245 <td>CVE-2017-0329</td> 1246 <td>A-34115304*<br /> 1247 N-CVE-2017-0329</td> 1248 <td></td> 1249 <td>Pixel</td> 1250 <td>5 2017.</td> 1251 </tr> 1252 </tbody></table> 1253 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 1254 1255 <h3 id="eop-in-synaptics-touchscreen-driver"> Synaptics</h3> 1256 <p> . , .</p> 1257 1258 <table> 1259 <colgroup><col width="19%" /> 1260 <col width="20%" /> 1261 <col width="10%" /> 1262 <col width="23%" /> 1263 <col width="17%" /> 1264 </colgroup><tbody><tr> 1265 <th>CVE</th> 1266 <th></th> 1267 <th> </th> 1268 <th> Google</th> 1269 <th> </th> 1270 </tr> 1271 <tr> 1272 <td>CVE-2017-0580</td> 1273 <td>A-34325986*<br /> 1274 </td> 1275 <td></td> 1276 <td>**</td> 1277 <td>16 2017.</td> 1278 </tr> 1279 <tr> 1280 <td>CVE-2017-0581</td> 1281 <td>A-34614485*<br /> 1282 </td> 1283 <td></td> 1284 <td>**</td> 1285 <td>22 2017.</td> 1286 </tr> 1287 </tbody></table> 1288 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 1289 <p>** Google Android7.0, .</p> 1290 1291 <h3 id="eop-in-qualcomm-seemp-driver"> Seemp- Qualcomm</h3> 1292 <p> . , .</p> 1293 1294 <table> 1295 <colgroup><col width="19%" /> 1296 <col width="20%" /> 1297 <col width="10%" /> 1298 <col width="23%" /> 1299 <col width="17%" /> 1300 </colgroup><tbody><tr> 1301 <th>CVE</th> 1302 <th></th> 1303 <th> </th> 1304 <th> Google</th> 1305 <th> </th> 1306 </tr> 1307 <tr> 1308 <td>CVE-2017-0462</td> 1309 <td>A-33353601<br /> 1310 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=eb7b1426279e751b1fc3e86f434dc349945c1ae7"> 1311 QC-CR#1102288</a></td> 1312 <td></td> 1313 <td>Pixel, PixelXL</td> 1314 <td> Google</td> 1315 </tr> 1316 </tbody></table> 1317 1318 <h3 id="eop-in-qualcomm-kyro-l2-driver"> Kyro L2 Qualcomm</h3> 1319 <p> . , .</p> 1320 1321 <table> 1322 <colgroup><col width="19%" /> 1323 <col width="20%" /> 1324 <col width="10%" /> 1325 <col width="23%" /> 1326 <col width="17%" /> 1327 </colgroup><tbody><tr> 1328 <th>CVE</th> 1329 <th></th> 1330 <th> </th> 1331 <th> Google</th> 1332 <th> </th> 1333 </tr> 1334 <tr> 1335 <td>CVE-2017-6423</td> 1336 <td>A-32831370<br /> 1337 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=0f264f812b61884390b432fdad081a3e995ba768"> 1338 QC-CR#1103158</a></td> 1339 <td></td> 1340 <td>Pixel, PixelXL</td> 1341 <td> Google</td> 1342 </tr> 1343 </tbody></table> 1344 1345 <h3 id="eop-in-kernel-file-system"> </h3> 1346 <p> . , .</p> 1347 1348 <table> 1349 <colgroup><col width="19%" /> 1350 <col width="20%" /> 1351 <col width="10%" /> 1352 <col width="23%" /> 1353 <col width="17%" /> 1354 </colgroup><tbody><tr> 1355 <th>CVE</th> 1356 <th></th> 1357 <th> </th> 1358 <th> Google</th> 1359 <th> </th> 1360 </tr> 1361 <tr> 1362 <td>CVE-2014-9922</td> 1363 <td>A-32761463<br /> 1364 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=69c433ed2ecd2d3264efd7afec4439524b319121"> 1365 Upstream kernel</a></td> 1366 <td></td> 1367 <td>Nexus5X, Nexus6, Nexus6P, Nexus9, Pixel, PixelXL, PixelC, Android One, Nexus Player</td> 1368 <td> Google</td> 1369 </tr> 1370 </tbody></table> 1371 1372 <h3 id="id-in-kernel-memory-subsystem"> </h3> 1373 <p> . - .</p> 1374 1375 <table> 1376 <colgroup><col width="19%" /> 1377 <col width="20%" /> 1378 <col width="10%" /> 1379 <col width="23%" /> 1380 <col width="17%" /> 1381 </colgroup><tbody><tr> 1382 <th>CVE</th> 1383 <th></th> 1384 <th> </th> 1385 <th> Google</th> 1386 <th> </th> 1387 </tr> 1388 <tr> 1389 <td>CVE-2014-0206</td> 1390 <td>A-34465735<br /> 1391 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=d36db46c2cba973557eb6138d22210c4e0cf17d6"> 1392 Upstream kernel</a></td> 1393 <td></td> 1394 <td>Nexus6, Nexus Player</td> 1395 <td>6 2014.</td> 1396 </tr> 1397 </tbody></table> 1398 1399 <h3 id="id-in-kernel-networking-subsystem"> </h3> 1400 <p> . - .</p> 1401 1402 <table> 1403 <colgroup><col width="19%" /> 1404 <col width="20%" /> 1405 <col width="10%" /> 1406 <col width="23%" /> 1407 <col width="17%" /> 1408 </colgroup><tbody><tr> 1409 <th>CVE</th> 1410 <th></th> 1411 <th> </th> 1412 <th> Google</th> 1413 <th> </th> 1414 </tr> 1415 <tr> 1416 <td>CVE-2014-3145</td> 1417 <td>A-34469585<br /> 1418 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=314760e66c35c8ffa51b4c4ca6948d207e783079">Upstream kernel</a> <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=05ab8f2647e4221cbdb3856dd7d32bd5407316b3"> 1419 [2]</a></td> 1420 <td></td> 1421 <td>Nexus6, Nexus Player</td> 1422 <td>9 2014.</td> 1423 </tr> 1424 </tbody></table> 1425 1426 <h3 id="id-in-qualcomm-trustzone"> Qualcomm TrustZone</h3> 1427 <p> . 1428 - .</p> 1429 1430 <table> 1431 <colgroup><col width="19%" /> 1432 <col width="20%" /> 1433 <col width="10%" /> 1434 <col width="23%" /> 1435 <col width="17%" /> 1436 </colgroup><tbody><tr> 1437 <th>CVE</th> 1438 <th></th> 1439 <th> </th> 1440 <th> Google</th> 1441 <th> </th> 1442 </tr> 1443 <tr> 1444 <td>CVE-2016-5349</td> 1445 <td>A-29083830<br /> 1446 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=7c3bf6557c62d904b15507eb451fda8fd7ef750c">QC-CR#1021945</a> <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=03853a58952834ac3e1e3007c9c680dd4c001a2f"> 1447 [2]</a> <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=e3d969000fb60ecb9bc01667fa89957f67763514"> 1448 [3]</a> <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=9bd398661cae758ffc557adc7de74ba32654e1f9"> 1449 [4]</a></td> 1450 <td></td> 1451 <td>Nexus5X, Nexus6, Nexus6P, Pixel, PixelXL, Android One</td> 1452 <td>1 2016.</td> 1453 </tr> 1454 </tbody></table> 1455 1456 <h3 id="id-in-qualcomm-ipa-driver"> Qualcomm</h3> 1457 <p> . 1458 - .</p> 1459 1460 <table> 1461 <colgroup><col width="19%" /> 1462 <col width="20%" /> 1463 <col width="10%" /> 1464 <col width="23%" /> 1465 <col width="17%" /> 1466 </colgroup><tbody><tr> 1467 <th>CVE</th> 1468 <th></th> 1469 <th> </th> 1470 <th> Google</th> 1471 <th> </th> 1472 </tr> 1473 <tr> 1474 <td>CVE-2016-10234</td> 1475 <td>A-34390017<br /> 1476 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?id=c7d7492c1e329fdeb28a7901c4cd634d41a996b1">QC-CR#1069060</a> <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=d12370c7f3ecded1867fbd6b70ded35db55cab1d"> 1477 [2]</a></td> 1478 <td></td> 1479 <td>Nexus5X, Nexus6P, Pixel, PixelXL</td> 1480 <td>10 2017.</td> 1481 </tr> 1482 </tbody></table> 1483 1484 <h3 id="dos-in-kernel-networking-subsystem"> </h3> 1485 <p> . , .</p> 1486 1487 <table> 1488 <colgroup><col width="19%" /> 1489 <col width="20%" /> 1490 <col width="10%" /> 1491 <col width="23%" /> 1492 <col width="17%" /> 1493 </colgroup><tbody><tr> 1494 <th>CVE</th> 1495 <th></th> 1496 <th> </th> 1497 <th> Google</th> 1498 <th> </th> 1499 </tr> 1500 <tr> 1501 <td>CVE-2014-2706</td> 1502 <td>A-34160553<br /> 1503 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=1d147bfa64293b2723c4fec50922168658e613ba"> 1504 Upstream kernel</a></td> 1505 <td></td> 1506 <td>NexusPlayer</td> 1507 <td>1 2014.</td> 1508 </tr> 1509 </tbody></table> 1510 1511 <h3 id="dos-in-qualcomm-wi-fi-driver"> Wi-Fi- Qualcomm</h3> 1512 <p> Wi-Fi. , .</p> 1513 1514 <table> 1515 <colgroup><col width="19%" /> 1516 <col width="20%" /> 1517 <col width="10%" /> 1518 <col width="23%" /> 1519 <col width="17%" /> 1520 </colgroup><tbody><tr> 1521 <th>CVE</th> 1522 <th></th> 1523 <th> </th> 1524 <th> Google</th> 1525 <th> </th> 1526 </tr> 1527 <tr> 1528 <td>CVE-2016-10235</td> 1529 <td>A-34390620<br /> 1530 <a href="https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-2.0/commit/?id=5bb0059243515ecdac138cfdb4cee7259bbd0bbc"> 1531 QC-CR#1046409</a></td> 1532 <td></td> 1533 <td>**</td> 1534 <td>10 2017.</td> 1535 </tr> 1536 </tbody></table> 1537 <p>** Google Android7.0, .</p> 1538 1539 <h3 id="eop-in-kernel-file-system-2"> </h3> 1540 <p> . , , .</p> 1541 1542 <table> 1543 <colgroup><col width="19%" /> 1544 <col width="20%" /> 1545 <col width="10%" /> 1546 <col width="23%" /> 1547 <col width="17%" /> 1548 </colgroup><tbody><tr> 1549 <th>CVE</th> 1550 <th></th> 1551 <th> </th> 1552 <th> Google</th> 1553 <th> </th> 1554 </tr> 1555 <tr> 1556 <td>CVE-2016-7097</td> 1557 <td>A-32458736<br /> 1558 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=073931017b49d9458aa351605b43a7e34598caef"> 1559 Upstream kernel</a></td> 1560 <td></td> 1561 <td>Nexus5X, Nexus6, Nexus6P, Nexus9, Pixel, PixelXL, PixelC, Nexus Player</td> 1562 <td>28 2016.</td> 1563 </tr> 1564 </tbody></table> 1565 1566 <h3 id="eop-in-qualcomm-wi-fi-driver-2"> Wi-Fi- Qualcomm</h3> 1567 <p> . , , , .</p> 1568 1569 <table> 1570 <colgroup><col width="19%" /> 1571 <col width="20%" /> 1572 <col width="10%" /> 1573 <col width="23%" /> 1574 <col width="17%" /> 1575 </colgroup><tbody><tr> 1576 <th>CVE</th> 1577 <th></th> 1578 <th> </th> 1579 <th> Google</th> 1580 <th> </th> 1581 </tr> 1582 <tr> 1583 <td>CVE-2017-6424</td> 1584 <td>A-32086742<br /> 1585 <a href="https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-2.0/commit/?id=5cc2ac840e36a3342c5194c20b314f0bb95ef7e1"> 1586 QC-CR#1102648</a></td> 1587 <td></td> 1588 <td>Nexus5X, Pixel, PixelXL, Android One</td> 1589 <td>9 2016.</td> 1590 </tr> 1591 </tbody></table> 1592 1593 <h3 id="eop-in-broadcom-wi-fi-driver-2"> Wi-Fi- Broadcom</h3> 1594 <p> . , , .</p> 1595 1596 <table> 1597 <colgroup><col width="19%" /> 1598 <col width="20%" /> 1599 <col width="10%" /> 1600 <col width="23%" /> 1601 <col width="17%" /> 1602 </colgroup><tbody><tr> 1603 <th>CVE</th> 1604 <th></th> 1605 <th> </th> 1606 <th> Google</th> 1607 <th> </th> 1608 </tr> 1609 <tr> 1610 <td>CVE-2016-8465</td> 1611 <td>A-32474971*<br /> 1612 B-RB#106053</td> 1613 <td></td> 1614 <td>Nexus6, Nexus6P, Nexus9, PixelC, Nexus Player</td> 1615 <td>27 2016.</td> 1616 </tr> 1617 </tbody></table> 1618 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 1619 1620 <h3 id="eop-in-htc-oem-fastboot-command"> fastboot oem HTC</h3> 1621 <p> . , .</p> 1622 1623 <table> 1624 <colgroup><col width="19%" /> 1625 <col width="20%" /> 1626 <col width="10%" /> 1627 <col width="23%" /> 1628 <col width="17%" /> 1629 </colgroup><tbody><tr> 1630 <th>CVE</th> 1631 <th></th> 1632 <th> </th> 1633 <th> Google</th> 1634 <th> </th> 1635 </tr> 1636 <tr> 1637 <td>CVE-2017-0582</td> 1638 <td>A-33178836*<br /> 1639 </td> 1640 <td></td> 1641 <td>Nexus9</td> 1642 <td>28 2016.</td> 1643 </tr> 1644 </tbody></table> 1645 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 1646 1647 <h3 id="eop-in-qualcomm-cp-access-driver"> Qualcomm</h3> 1648 <p> . , , , .</p> 1649 1650 <table> 1651 <colgroup><col width="19%" /> 1652 <col width="20%" /> 1653 <col width="10%" /> 1654 <col width="23%" /> 1655 <col width="17%" /> 1656 </colgroup><tbody><tr> 1657 <th>CVE</th> 1658 <th></th> 1659 <th> </th> 1660 <th> Google</th> 1661 <th> </th> 1662 </tr> 1663 <tr> 1664 <td>CVE-2017-0583</td> 1665 <td>A-32068683<br /> 1666 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=452d2ad331d20b19e8a0768c4b6e7fe1b65abe8f"> 1667 QC-CR#1103788</a></td> 1668 <td></td> 1669 <td>Nexus5X, Nexus6P, Pixel, PixelXL, Android One</td> 1670 <td> Google</td> 1671 </tr> 1672 </tbody></table> 1673 1674 <h3 id="id-in-kernel-media-driver"> </h3> 1675 <p> . 1676 , .</p> 1677 1678 <table> 1679 <colgroup><col width="19%" /> 1680 <col width="20%" /> 1681 <col width="10%" /> 1682 <col width="23%" /> 1683 <col width="17%" /> 1684 </colgroup><tbody><tr> 1685 <th>CVE</th> 1686 <th></th> 1687 <th> </th> 1688 <th> Google</th> 1689 <th> </th> 1690 </tr> 1691 <tr> 1692 <td>CVE-2014-1739</td> 1693 <td>A-34460642<br /> 1694 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=e6a623460e5fc960ac3ee9f946d3106233fd28d8"> 1695 Upstream kernel</a></td> 1696 <td></td> 1697 <td>Nexus6, Nexus9, Nexus Player</td> 1698 <td>15 2014.</td> 1699 </tr> 1700 </tbody></table> 1701 1702 <h3 id="id-in-qualcomm-wi-fi-driver"> Wi-Fi- Qualcomm</h3> 1703 <p> . , .</p> 1704 1705 <table> 1706 <colgroup><col width="19%" /> 1707 <col width="20%" /> 1708 <col width="10%" /> 1709 <col width="23%" /> 1710 <col width="17%" /> 1711 </colgroup><tbody><tr> 1712 <th>CVE</th> 1713 <th></th> 1714 <th> </th> 1715 <th> Google</th> 1716 <th> </th> 1717 </tr> 1718 <tr> 1719 <td>CVE-2017-0584</td> 1720 <td>A-32074353*<br /> 1721 QC-CR#1104731</td> 1722 <td></td> 1723 <td>Nexus5X, Pixel, PixelXL</td> 1724 <td>9 2016.</td> 1725 </tr> 1726 </tbody></table> 1727 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 1728 1729 <h3 id="id-in-broadcom-wi-fi-driver"> Wi-Fi- Broadcom</h3> 1730 <p> . , .</p> 1731 1732 <table> 1733 <colgroup><col width="19%" /> 1734 <col width="20%" /> 1735 <col width="10%" /> 1736 <col width="23%" /> 1737 <col width="17%" /> 1738 </colgroup><tbody><tr> 1739 <th>CVE</th> 1740 <th></th> 1741 <th> </th> 1742 <th> Google</th> 1743 <th> </th> 1744 </tr> 1745 <tr> 1746 <td>CVE-2017-0585</td> 1747 <td>A-32475556*<br /> 1748 B-RB#112953</td> 1749 <td></td> 1750 <td>Nexus6, Nexus6P, Nexus9, PixelC, Nexus Player</td> 1751 <td>27 2016.</td> 1752 </tr> 1753 </tbody></table> 1754 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 1755 1756 <h3 id="id-in-qualcomm-avtimer-driver"> Avtimer- Qualcomm</h3> 1757 <p> . , .</p> 1758 1759 <table> 1760 <colgroup><col width="19%" /> 1761 <col width="20%" /> 1762 <col width="10%" /> 1763 <col width="23%" /> 1764 <col width="17%" /> 1765 </colgroup><tbody><tr> 1766 <th>CVE</th> 1767 <th></th> 1768 <th> </th> 1769 <th> Google</th> 1770 <th> </th> 1771 </tr> 1772 <tr> 1773 <td>CVE-2016-5346</td> 1774 <td>A-32551280<br /> 1775 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=6298a474322fb2182f795a622b2faa64abfd8474"> 1776 QC-CR#1097878</a></td> 1777 <td></td> 1778 <td>Pixel, PixelXL</td> 1779 <td>29 2016.</td> 1780 </tr> 1781 </tbody></table> 1782 1783 <h3 id="id-in-qualcomm-video-driver"> Qualcomm</h3> 1784 <p> . , .</p> 1785 1786 <table> 1787 <colgroup><col width="19%" /> 1788 <col width="20%" /> 1789 <col width="10%" /> 1790 <col width="23%" /> 1791 <col width="17%" /> 1792 </colgroup><tbody><tr> 1793 <th>CVE</th> 1794 <th></th> 1795 <th> </th> 1796 <th> Google</th> 1797 <th> </th> 1798 </tr> 1799 <tr> 1800 <td>CVE-2017-6425</td> 1801 <td>A-32577085<br /> 1802 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=ef86560a21fe1f256f6ba772a195201ff202c657"> 1803 QC-CR#1103689</a></td> 1804 <td></td> 1805 <td>Pixel, PixelXL</td> 1806 <td>29 2016.</td> 1807 </tr> 1808 </tbody></table> 1809 1810 <h3 id="id-in-qualcomm-usb-driver"> USB- Qualcomm</h3> 1811 <p> . 1812 , .</p> 1813 1814 <table> 1815 <colgroup><col width="19%" /> 1816 <col width="20%" /> 1817 <col width="10%" /> 1818 <col width="23%" /> 1819 <col width="17%" /> 1820 </colgroup><tbody><tr> 1821 <th>CVE</th> 1822 <th></th> 1823 <th> </th> 1824 <th> Google</th> 1825 <th> </th> 1826 </tr> 1827 <tr> 1828 <td>CVE-2016-10236</td> 1829 <td>A-33280689<br /> 1830 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=b8199c2b852f1e23c988e10b8fbb8d34c98b4a1c"> 1831 QC-CR#1102418</a></td> 1832 <td></td> 1833 <td>Pixel, PixelXL</td> 1834 <td>30 2016.</td> 1835 </tr> 1836 </tbody></table> 1837 1838 <h3 id="id-in-qualcomm-sound-driver"> Qualcomm</h3> 1839 <p> . , .</p> 1840 1841 <table> 1842 <colgroup><col width="19%" /> 1843 <col width="20%" /> 1844 <col width="10%" /> 1845 <col width="23%" /> 1846 <col width="17%" /> 1847 </colgroup><tbody><tr> 1848 <th>CVE</th> 1849 <th></th> 1850 <th> </th> 1851 <th> Google</th> 1852 <th> </th> 1853 </tr> 1854 <tr> 1855 <td>CVE-2017-0586</td> 1856 <td>A-33649808<br /> 1857 QC-CR#1097569</td> 1858 <td></td> 1859 <td>Nexus5X, Nexus6, Nexus6P, Pixel, PixelXL, Android One</td> 1860 <td>13 2016.</td> 1861 </tr> 1862 </tbody></table> 1863 1864 <h3 id="id-in-qualcomm-spmi-driver"> SPMI- Qualcomm</h3> 1865 <p> . , .</p> 1866 1867 <table> 1868 <colgroup><col width="19%" /> 1869 <col width="20%" /> 1870 <col width="10%" /> 1871 <col width="23%" /> 1872 <col width="17%" /> 1873 </colgroup><tbody><tr> 1874 <th>CVE</th> 1875 <th></th> 1876 <th> </th> 1877 <th> Google</th> 1878 <th> </th> 1879 </tr> 1880 <tr> 1881 <td>CVE-2017-6426</td> 1882 <td>A-33644474<br /> 1883 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=80decd6365deec08c35ecb902a58f9210599b39a"> 1884 QC-CR#1106842</a></td> 1885 <td></td> 1886 <td>Pixel, PixelXL</td> 1887 <td>14 2016.</td> 1888 </tr> 1889 </tbody></table> 1890 1891 <h3 id="id-in-nvidia-crypto-driver"> NVIDIA</h3> 1892 <p> . , .</p> 1893 1894 <table> 1895 <colgroup><col width="19%" /> 1896 <col width="20%" /> 1897 <col width="10%" /> 1898 <col width="23%" /> 1899 <col width="17%" /> 1900 </colgroup><tbody><tr> 1901 <th>CVE</th> 1902 <th></th> 1903 <th> </th> 1904 <th> Google</th> 1905 <th> </th> 1906 </tr> 1907 <tr> 1908 <td>CVE-2017-0328</td> 1909 <td>A-33898322*<br /> 1910 N-CVE-2017-0328</td> 1911 <td></td> 1912 <td>**</td> 1913 <td>24 2016.</td> 1914 </tr> 1915 <tr> 1916 <td>CVE-2017-0330</td> 1917 <td>A-33899858*<br /> 1918 N-CVE-2017-0330</td> 1919 <td></td> 1920 <td>**</td> 1921 <td>24 2016.</td> 1922 </tr> 1923 </tbody></table> 1924 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 1925 <p>** Google Android7.0, .</p> 1926 1927 <h3 id="vulnerabilities-in-qualcomm-components-2"> Qualcomm</h3> 1928 <p> Qualcomm Qualcomm AMSS 20142016. Android, . </p> 1929 1930 <table> 1931 <colgroup><col width="19%" /> 1932 <col width="20%" /> 1933 <col width="10%" /> 1934 <col width="23%" /> 1935 <col width="17%" /> 1936 </colgroup><tbody><tr> 1937 <th>CVE</th> 1938 <th></th> 1939 <th> </th> 1940 <th> Google</th> 1941 <th> </th> 1942 </tr> 1943 <tr> 1944 <td>CVE-2014-9931</td> 1945 <td>A-35445101**<br /> 1946 QC-CR#612410</td> 1947 <td></td> 1948 <td>**</td> 1949 <td> Qualcomm</td> 1950 </tr> 1951 <tr> 1952 <td>CVE-2014-9932</td> 1953 <td>A-35434683**<br /> 1954 QC-CR#626734</td> 1955 <td></td> 1956 <td>Pixel, PixelXL</td> 1957 <td> Qualcomm</td> 1958 </tr> 1959 <tr> 1960 <td>CVE-2014-9933</td> 1961 <td>A-35442512<br /> 1962 QC-CR#675463</td> 1963 <td></td> 1964 <td>**</td> 1965 <td> Qualcomm</td> 1966 </tr> 1967 <tr> 1968 <td>CVE-2014-9934</td> 1969 <td>A-35439275**<br /> 1970 QC-CR#658249</td> 1971 <td></td> 1972 <td>**</td> 1973 <td> Qualcomm</td> 1974 </tr> 1975 <tr> 1976 <td>CVE-2014-9935</td> 1977 <td>A-35444951**<br /> 1978 QC-CR#717626</td> 1979 <td></td> 1980 <td>**</td> 1981 <td> Qualcomm</td> 1982 </tr> 1983 <tr> 1984 <td>CVE-2014-9936</td> 1985 <td>A-35442420**<br /> 1986 QC-CR#727389</td> 1987 <td></td> 1988 <td>**</td> 1989 <td> Qualcomm</td> 1990 </tr> 1991 <tr> 1992 <td>CVE-2014-9937</td> 1993 <td>A-35445102**<br /> 1994 QC-CR#734095</td> 1995 <td></td> 1996 <td>**</td> 1997 <td> Qualcomm</td> 1998 </tr> 1999 <tr> 2000 <td>CVE-2015-8995</td> 2001 <td>A-35445002**<br /> 2002 QC-CR#733690</td> 2003 <td></td> 2004 <td>**</td> 2005 <td> Qualcomm</td> 2006 </tr> 2007 <tr> 2008 <td>CVE-2015-8996</td> 2009 <td>A-35444658**<br /> 2010 QC-CR#734698</td> 2011 <td></td> 2012 <td>**</td> 2013 <td> Qualcomm</td> 2014 </tr> 2015 <tr> 2016 <td>CVE-2015-8997</td> 2017 <td>A-35432947**<br /> 2018 QC-CR#734707</td> 2019 <td></td> 2020 <td>**</td> 2021 <td> Qualcomm</td> 2022 </tr> 2023 <tr> 2024 <td>CVE-2015-8998</td> 2025 <td>A-35441175**<br /> 2026 QC-CR#735337</td> 2027 <td></td> 2028 <td>**</td> 2029 <td> Qualcomm</td> 2030 </tr> 2031 <tr> 2032 <td>CVE-2015-8999</td> 2033 <td>A-35445401**<br /> 2034 QC-CR#736119</td> 2035 <td></td> 2036 <td>**</td> 2037 <td> Qualcomm</td> 2038 </tr> 2039 <tr> 2040 <td>CVE-2015-9000</td> 2041 <td>A-35441076**<br /> 2042 QC-CR#740632</td> 2043 <td></td> 2044 <td>**</td> 2045 <td> Qualcomm</td> 2046 </tr> 2047 <tr> 2048 <td>CVE-2015-9001</td> 2049 <td>A-35445400**<br /> 2050 QC-CR#736083</td> 2051 <td></td> 2052 <td>**</td> 2053 <td> Qualcomm</td> 2054 </tr> 2055 <tr> 2056 <td>CVE-2015-9002</td> 2057 <td>A-35442421**<br /> 2058 QC-CR#748428</td> 2059 <td></td> 2060 <td>**</td> 2061 <td> Qualcomm</td> 2062 </tr> 2063 <tr> 2064 <td>CVE-2015-9003</td> 2065 <td>A-35440626**<br /> 2066 QC-CR#749215</td> 2067 <td></td> 2068 <td>**</td> 2069 <td> Qualcomm</td> 2070 </tr> 2071 <tr> 2072 <td>CVE-2016-10242</td> 2073 <td>A-35434643**<br /> 2074 QC-CR#985139</td> 2075 <td></td> 2076 <td>**</td> 2077 <td> Qualcomm</td> 2078 </tr> 2079 </tbody></table> 2080 <p>* Qualcomm.</p> 2081 <p>* . Nexus, <a href="https://developers.google.com/android/nexus/drivers"> </a>.</p> 2082 <p>*** Google Android7.0, .</p> 2083 2084 <h2 id="common-questions-and-answers"> </h2> 2085 <p> , 2086 .</p> 2087 <p><strong>1. , , ?</strong></p> 2088 <p> , , <a href="https://support.google.com/pixelphone/answer/4457705#pixel_phones&nexus_devices"> </a>.</p> 2089 <ul> 2090 <li> 1 2017 , 2017-04-01.</li> 2091 <li> 5 2017 , 2017-04-05.</li> 2092 </ul> 2093 <p> , , :</p> 2094 <ul> 2095 <li>[ro.build.version.security_patch]:[2017-04-01];</li> 2096 <li>[ro.build.version.security_patch]:[2017-04-05].</li> 2097 </ul> 2098 2099 <p><strong>2. ?</strong></p> 2100 <p> , , Android. Android .</p> 2101 <ul> 2102 <li> 1 2017 , , .</li> 2103 <li> 5 2017 , .</li> 2104 </ul> 2105 <p> .</p> 2106 <p><strong>3. , Google ?</strong></p> 2107 <p> <a href="#2017-04-01-details">2017-04-01</a> <a href="#2017-04-05-details">2017-04-05</a> <em> Google</em>. , .</p> 2108 <ul> 2109 <li><strong> .</strong> <em></em> <a href="https://support.google.com/pixelphone/answer/4457705#pixel_phones&nexus_devices"> Google</a>: Nexus5X, Nexus6, Nexus6P, Nexus7 (2013), Nexus9, Android One, Nexus Player, PixelC, Pixel PixelXL.</li> 2110 <li><strong> .</strong> <em></em> , .</li> 2111 <li><strong>.</strong> Google.<em></em> </li> 2112 </ul> 2113 <p><strong>4. ""?</strong></p> 2114 <p> <em></em>. 2115 , 2116 , :</p> 2117 <table> 2118 <tbody><tr> 2119 <th></th> 2120 <th></th> 2121 </tr> 2122 <tr> 2123 <td>A-</td> 2124 <td> Android</td> 2125 </tr> 2126 <tr> 2127 <td>QC-</td> 2128 <td> Qualcomm</td> 2129 </tr> 2130 <tr> 2131 <td>M-</td> 2132 <td> MediaTek</td> 2133 </tr> 2134 <tr> 2135 <td>N-</td> 2136 <td> NVIDIA</td> 2137 </tr> 2138 <tr> 2139 <td>B-</td> 2140 <td> Broadcom</td> 2141 </tr> 2142 </tbody></table> 2143 2144 <h2 id="revisions"></h2> 2145 <ul> 2146 <li>3 2017. .</li> 2147 <li>5 2017. AOSP.</li> 2148 </ul> 2149 2150 </body></html>
