1 <html devsite> 2 <head> 3 <title>Android - 2016 8 </title> 4 <meta name="project_path" value="/_project.yaml" /> 5 <meta name="book_path" value="/_book.yaml" /> 6 </head> 7 <body> 8 <!-- 9 Copyright 2017 The Android Open Source Project 10 11 Licensed under the Apache License, Version 2.0 (the "License"); 12 you may not use this file except in compliance with the License. 13 You may obtain a copy of the License at 14 15 http://www.apache.org/licenses/LICENSE-2.0 16 17 Unless required by applicable law or agreed to in writing, software 18 distributed under the License is distributed on an "AS IS" BASIS, 19 WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 20 See the License for the specific language governing permissions and 21 limitations under the License. 22 --> 23 24 25 26 <p><em>2016 8 1 | 2016 8 2 </em></p> 27 <p> 28 Android Android (OTA) Nexus <a href="https://developers.google.com/android/nexus/images">Google Developers </a> Nexus 2016 8 5 <a href="https://support.google.com/nexus/answer/4457705#nexus_devices"></a> 29 </p> 30 <p> 31 2016 7 6 Android (AOSP) AOSP 32 </p> 33 <p> 34 35 </p> 36 <p> 37 <a href="#mitigations">Android Google </a> <a href="/security/enhancements/index.html">Android </a> SafetyNet Android 38 </p> 39 <p> 40 41 </p> 42 <h2 id="announcements"></h2> 43 <ul> 44 <li> Android Android <a href="#common-questions-and-answers"></a><ul> 45 <li><strong>2016-08-01</strong> 2016-08-01</li> 46 <li><strong>2016-08-05</strong> 2016-08-01 2016-08-05</li> 47 </ul> 48 </li> 49 <li> Nexus 2016 8 5 OTA </li> 50 </ul> 51 52 <h2 id="security-vulnerability-summary"></h2> 53 <p> 54 CVE Nexus <a href="/security/overview/updates-resources.html#severity"></a> 55 </p> 56 57 <h3 id="2016-08-01-security-patch-level-vulnerability-summary">2016-08-01 - </h3> 58 <p> 59 2016-08-01 60 </p> 61 <table> 62 <col width="55%"> 63 <col width="20%"> 64 <col width="13%"> 65 <col width="12%"> 66 <tr> 67 <th></th> 68 <th>CVE</th> 69 <th></th> 70 <th> Nexus </th> 71 </tr> 72 <tr> 73 <td>Mediaserver </td> 74 <td>CVE-2016-3819CVE-2016-3820CVE-2016-3821</td> 75 <td></td> 76 <td></td> 77 </tr> 78 <tr> 79 <td>libjhead </td> 80 <td>CVE-2016-3822</td> 81 <td></td> 82 <td></td> 83 </tr> 84 <tr> 85 <td>Mediaserver </td> 86 <td>CVE-2016-3823CVE-2016-3824CVE-2016-3825CVE-2016-3826</td> 87 <td></td> 88 <td></td> 89 </tr> 90 <tr> 91 <td>Mediaserver </td> 92 <td>CVE-2016-3827CVE-2016-3828CVE-2016-3829CVE-2016-3830</td> 93 <td></td> 94 <td></td> 95 </tr> 96 <tr> 97 <td></td> 98 <td>CVE-2016-3831</td> 99 <td></td> 100 <td></td> 101 </tr> 102 <tr> 103 <td>Framework API </td> 104 <td>CVE-2016-3832</td> 105 <td></td> 106 <td></td> 107 </tr> 108 <tr> 109 <td>Shell </td> 110 <td>CVE-2016-3833</td> 111 <td></td> 112 <td></td> 113 </tr> 114 <tr> 115 <td>OpenSSL </td> 116 <td>CVE-2016-2842</td> 117 <td></td> 118 <td>*</td> 119 </tr> 120 <tr> 121 <td>Camera API </td> 122 <td>CVE-2016-3834</td> 123 <td></td> 124 <td></td> 125 </tr> 126 <tr> 127 <td>Mediaserver </td> 128 <td>CVE-2016-3835</td> 129 <td></td> 130 <td></td> 131 </tr> 132 <tr> 133 <td>SurfaceFlinger </td> 134 <td>CVE-2016-3836</td> 135 <td></td> 136 <td></td> 137 </tr> 138 <tr> 139 <td>WLAN </td> 140 <td>CVE-2016-3837</td> 141 <td></td> 142 <td></td> 143 </tr> 144 <tr> 145 <td></td> 146 <td>CVE-2016-3838</td> 147 <td></td> 148 <td></td> 149 </tr> 150 <tr> 151 <td></td> 152 <td>CVE-2016-3839</td> 153 <td></td> 154 <td></td> 155 </tr> 156 </table> 157 <p>* Nexus </p> 158 159 <h3 id="2016-08-05-security-patch-level-vulnerability-summary">2016-08-05 - </h3> 160 <p> 161 2016-08-05 2016-08-01 162 </p> 163 <table> 164 <col width="55%"> 165 <col width="20%"> 166 <col width="13%"> 167 <col width="12%"> 168 <tr> 169 <th></th> 170 <th>CVE</th> 171 <th></th> 172 <th> Nexus </th> 173 </tr> 174 <tr> 175 <td>Qualcomm WLAN </td> 176 <td>CVE-2014-9902</td> 177 <td></td> 178 <td></td> 179 </tr> 180 <tr> 181 <td>Conscrypt </td> 182 <td>CVE-2016-3840</td> 183 <td></td> 184 <td></td> 185 </tr> 186 <tr> 187 <td>Qualcomm </td> 188 <td>CVE-2014-9863CVE-2014-9864CVE-2014-9865CVE-2014-9866CVE-2014-9867CVE-2014-9868CVE-2014-9869CVE-2014-9870CVE-2014-9871CVE-2014-9872CVE-2014-9873CVE-2014-9874CVE-2014-9875CVE-2014-9876CVE-2014-9877CVE-2014-9878CVE-2014-9879CVE-2014-9880CVE-2014-9881CVE-2014-9882CVE-2014-9883CVE-2014-9884CVE-2014-9885CVE-2014-9886CVE-2014-9887CVE-2014-9888CVE-2014-9889CVE-2014-9890CVE-2014-9891CVE-2015-8937CVE-2015-8938CVE-2015-8939CVE-2015-8940CVE-2015-8941CVE-2015-8942CVE-2015-8943</td> 189 <td></td> 190 <td></td> 191 </tr> 192 <tr> 193 <td></td> 194 <td>CVE-2015-2686CVE-2016-3841</td> 195 <td></td> 196 <td></td> 197 </tr> 198 <tr> 199 <td>Qualcomm GPU </td> 200 <td>CVE-2016-2504CVE-2016-3842</td> 201 <td></td> 202 <td></td> 203 </tr> 204 <tr> 205 <td>Qualcomm </td> 206 <td>CVE-2016-3843</td> 207 <td></td> 208 <td></td> 209 </tr> 210 <tr> 211 <td></td> 212 <td>CVE-2016-3857</td> 213 <td></td> 214 <td></td> 215 </tr> 216 <tr> 217 <td></td> 218 <td>CVE-2015-1593CVE-2016-3672</td> 219 <td></td> 220 <td></td> 221 </tr> 222 <tr> 223 <td></td> 224 <td>CVE-2016-2544CVE-2016-2546CVE-2014-9904</td> 225 <td></td> 226 <td></td> 227 </tr> 228 <tr> 229 <td></td> 230 <td>CVE-2012-6701</td> 231 <td></td> 232 <td></td> 233 </tr> 234 <tr> 235 <td>Mediaserver </td> 236 <td>CVE-2016-3844</td> 237 <td></td> 238 <td></td> 239 </tr> 240 <tr> 241 <td></td> 242 <td>CVE-2016-3845</td> 243 <td></td> 244 <td></td> 245 </tr> 246 <tr> 247 <td></td> 248 <td>CVE-2016-3846</td> 249 <td></td> 250 <td></td> 251 </tr> 252 <tr> 253 <td>NVIDIA </td> 254 <td>CVE-2016-3847CVE-2016-3848</td> 255 <td></td> 256 <td></td> 257 </tr> 258 <tr> 259 <td>ION </td> 260 <td>CVE-2016-3849</td> 261 <td></td> 262 <td></td> 263 </tr> 264 <tr> 265 <td>Qualcomm </td> 266 <td>CVE-2016-3850</td> 267 <td></td> 268 <td></td> 269 </tr> 270 <tr> 271 <td></td> 272 <td>CVE-2016-3843</td> 273 <td></td> 274 <td></td> 275 </tr> 276 <tr> 277 <td>LG Electronics </td> 278 <td>CVE-2016-3851</td> 279 <td></td> 280 <td></td> 281 </tr> 282 <tr> 283 <td>Qualcomm </td> 284 <td>CVE-2014-9892CVE-2014-9893 CVE-2014-9894CVE-2014-9895 CVE-2014-9896CVE-2014-9897 CVE-2014-9898CVE-2014-9899 CVE-2014-9900CVE-2015-8944</td> 285 <td></td> 286 <td></td> 287 </tr> 288 <tr> 289 <td></td> 290 <td>CVE-2014-9903</td> 291 <td></td> 292 <td></td> 293 </tr> 294 <tr> 295 <td>MediaTek WLAN </td> 296 <td>CVE-2016-3852</td> 297 <td></td> 298 <td></td> 299 </tr> 300 <tr> 301 <td>USB </td> 302 <td>CVE-2016-4482</td> 303 <td></td> 304 <td></td> 305 </tr> 306 <tr> 307 <td>Qualcomm </td> 308 <td>CVE-2014-9901</td> 309 <td></td> 310 <td></td> 311 </tr> 312 <tr> 313 <td>Google Play </td> 314 <td>CVE-2016-3853</td> 315 <td></td> 316 <td></td> 317 </tr> 318 <tr> 319 <td>Framework API </td> 320 <td>CVE-2016-2497</td> 321 <td></td> 322 <td></td> 323 </tr> 324 <tr> 325 <td></td> 326 <td>CVE-2016-4578</td> 327 <td></td> 328 <td></td> 329 </tr> 330 <tr> 331 <td></td> 332 <td>CVE-2016-4569CVE-2016-4578</td> 333 <td></td> 334 <td></td> 335 </tr> 336 <tr> 337 <td>Qualcomm </td> 338 <td>CVE-2016-3854CVE-2016-3855CVE-2016-2060</td> 339 <td></td> 340 <td></td> 341 </tr> 342 </table> 343 <h2 id="mitigations">Android Google </h2> 344 <p> 345 <a href="/security/enhancements/index.html">Android </a> SafetyNet Android 346 </p> 347 <ul> 348 <li> Android Android Android</li> 349 <li>Android <a href="http://static.googleusercontent.com/media/source.android.com/en//security/reports/Google_Android_Security_2015_Report_Final.pdf"> SafetyNet</a> <a href="http://static.googleusercontent.com/media/source.android.com/en//security/reports/Google_Android_Security_PHA_classifications.pdf"></a> <a href="http://www.android.com/gms">Google </a> Google Play Google Play Root Root </li> 350 <li> Google Messenger Mediaserver </li> 351 </ul> 352 <h2 id="acknowledgements"></h2> 353 <p> 354 </p> 355 <ul> 356 <li>Google Chrome Abhishek AryaOliver Chang Martin BarbellaCVE-2016-3821CVE-2016-3837</li> 357 <li>Check Point Software Technologies Ltd. Adam Donenfeld et al.CVE-2016-2504</li> 358 <li><a href="http://c0reteam.org">C0RE </a> Chiachih Wu (<a href="https://twitter.com/chiachih_wu">@chiachih_wu</a>)Mingjian Zhou (<a href="https://twitter.com/Mingjian_Zhou">@Mingjian_Zhou</a>) Xuxian JiangCVE-2016-3844</li> 359 <li><a href="http://c0reteam.org">C0RE </a> Chiachih Wu (<a href="https://twitter.com/chiachih_wu">@chiachih_wu</a>)Yuan-Tsung Lo (<a href="mailto:computernik (a] gmail.com">computernik (a] gmail.com)</a> Xuxian JiangCVE-2016-3857</li> 360 <li>Google David Benjamin Kenny RootCVE-2016-3840</li> 361 <li><a href="http://jaq.alibaba.com"></a> Dawei Peng (<a href="http://weibo.com/u/5622360291">Vinc3nt4H</a>)CVE-2016-3822</li> 362 <li> KeenLab (<a href="https://twitter.com/keen_lab">@keen_lab</a>) Di Shen (<a href="https://twitter.com/returnsme">@returnsme</a>)CVE-2016-3842</li> 363 <li>Google Dianne HackbornCVE-2016-2497</li> 364 <li>Google Dmitry VyukovCVE-2016-3841</li> 365 <li><a href="http://www.360.com"> 360 </a> IceSword Gengjia Chen (<a href="https://twitter.com/chengjia4574">@chengjia4574</a>)pjf (<a href="http://weibo.com/jfpan">weibo.com/jfpan</a>)CVE-2016-3852</li> 366 <li><a href="http://www.360.com"> 360 </a> Alpha (<a href="https://twitter.com/oldfresher">@oldfresher</a>)CVE-2016-3834</li> 367 <li>Fortinet FortiGuard Kai Lu (<a href="https://twitter.com/K3vinLuSec">@K3vinLuSec</a>)CVE-2016-3820</li> 368 <li>Kandala Shivaram reddyDS UppiCVE-2016-3826</li> 369 <li><a href="http://c0reteam.org">C0RE </a> Mingjian Zhou (<a href="https://twitter.com/Mingjian_Zhou">@Mingjian_Zhou</a>)Chiachih Wu (<a href="https://twitter.com/chiachih_wu">@chiachih_wu</a>) Xuxian JiangCVE-2016-3823CVE-2016-3835CVE-2016-3824CVE-2016-3825</li> 370 <li> Nathan Crandall (<a href="https://twitter.com/natecray">@natecray</a>)CVE-2016-3847CVE-2016-3848</li> 371 <li> Peng XiaoChengming YangNing YouChao Yang Yang SongCVE-2016-3845</li> 372 <li> Peter Pi (<a href="https://twitter.com/heisecode">@heisecode</a>)CVE-2016-3849</li> 373 <li><a href="http://www.wooyun.org/"> TangLab</a> Qianwei Hu (<a href="mailto:rayxcp (a] gmail.com">rayxcp (a] gmail.com</a>)CVE-2016-3846</li> 374 <li> KeenLab (<a href="https://twitter.com/keen_lab">@keen_lab</a>) Qidan He (<a href="https://twitter.com/flanker_hqd">@Flanker_hqd</a>)CVE-2016-3832</li> 375 <li>Google Sharvil NanavatiCVE-2016-3839</li> 376 <li><a href="http://www.isti.tu-berlin.de/security_in_telecommunications">Security in Telecommunications</a> Shinjo Park (<a href="https://twitter.com/ad_ili_rai">@ad_ili_rai</a>) Altaf ShaikCVE-2016-3831</li> 377 <li>Tom RootjunkyCVE-2016-3853</li> 378 <li>Vasily VasilievCVE-2016-3819</li> 379 <li> Weichao Sun (<a href="https://twitter.com/sunblate">@sunblate</a>)CVE-2016-3827CVE-2016-3828CVE-2016-3829</li> 380 <li><a href="http://blog.trendmicro.com/trendlabs-security-intelligence/author/wishwu/"></a><a href="http://weibo.com/wishlinux"></a> (<a href="https://twitter.com/wish_wu">@wish_wu</a>)CVE-2016-3843</li> 381 <li> Yongke Wang (<a href="https://twitter.com/rudykewang">@Rudykewang</a>)CVE-2016-3836</li> 382 </ul> 383 <p> 384 Copperhead Security Daniel MicayGoogle Jeff Vander Stoep Yabin Cui CVE-2016-3843 Grsecurity Brad Spengler 385 </p> 386 <h2 id="2016-08-01-security-patch-level-security-vulnerability-details"> 387 2016-08-01 - </h2> 388 <p> 389 <a href="#2016-08-01-security-patch-level-vulnerability-summary">2016-08-01 - </a> CVE Nexus AOSP Bug ID AOSP Bug Bug ID 390 </p> 391 392 <h3 id="remote-code-execution-vulnerability-in-mediaserver"> 393 Mediaserver </h3> 394 <p> 395 Mediaserver Mediaserver Mediaserver 396 </p> 397 <p> 398 399 </p> 400 <table> 401 <col width="18%"> 402 <col width="18%"> 403 <col width="10%"> 404 <col width="19%"> 405 <col width="17%"> 406 <col width="17%"> 407 <tr> 408 <th>CVE</th> 409 <th></th> 410 <th></th> 411 <th> Nexus </th> 412 <th> AOSP </th> 413 <th></th> 414 </tr> 415 <tr> 416 <td>CVE-2016-3819</td> 417 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/590d1729883f700ab905cdc9ad850f3ddd7e1f56">A-28533562</a></td> 418 <td></td> 419 <td> Nexus </td> 420 <td>4.4.45.0.25.1.16.06.0.1</td> 421 <td>2016 5 2 </td> 422 </tr> 423 <tr> 424 <td>CVE-2016-3820</td> 425 <td><a href="https://android.googlesource.com/platform/external/libavc/+/a78887bcffbc2995cf9ed72e0697acf560875e9e">A-28673410</a></td> 426 <td></td> 427 <td> Nexus </td> 428 <td>6.06.0.1</td> 429 <td>2016 5 6 </td> 430 </tr> 431 <tr> 432 <td>CVE-2016-3821</td> 433 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/42a25c46b844518ff0d0b920c20c519e1417be69">A-28166152</a></td> 434 <td></td> 435 <td> Nexus </td> 436 <td>4.4.45.0.25.1.16.06.0.1</td> 437 <td>Google </td> 438 </tr> 439 </table> 440 441 <h3 id="remote-code-execution-vulnerability-in-libjhead"> 442 libjhead </h3> 443 <p> 444 libjhead 445 </p> 446 <table> 447 <col width="18%"> 448 <col width="18%"> 449 <col width="10%"> 450 <col width="19%"> 451 <col width="17%"> 452 <col width="17%"> 453 <tr> 454 <th>CVE</th> 455 <th></th> 456 <th></th> 457 <th> Nexus </th> 458 <th> AOSP </th> 459 <th></th> 460 </tr> 461 <tr> 462 <td>CVE-2016-3822</td> 463 <td><a href="https://android.googlesource.com/platform/external/jhead/+/bae671597d47b9e5955c4cb742e468cebfd7ca6b">A-28868315</a></td> 464 <td></td> 465 <td> Nexus </td> 466 <td>4.4.45.0.25.1.16.06.0.1</td> 467 <td>Google </td> 468 </tr> 469 </table> 470 471 <h3 id="elevation-of-privilege-vulnerability-in-mediaserver"> 472 Mediaserver </h3> 473 <p> 474 Mediaserver 475 </p> 476 <table> 477 <col width="18%"> 478 <col width="18%"> 479 <col width="10%"> 480 <col width="19%"> 481 <col width="17%"> 482 <col width="17%"> 483 <tr> 484 <th>CVE</th> 485 <th></th> 486 <th></th> 487 <th> Nexus </th> 488 <th> AOSP </th> 489 <th></th> 490 </tr> 491 <tr> 492 <td>CVE-2016-3823</td> 493 <td><a href="https://android.googlesource.com/platform/hardware/qcom/media/+/7558d03e6498e970b761aa44fff6b2c659202d95">A-28815329</a></td> 494 <td></td> 495 <td> Nexus </td> 496 <td>4.4.45.0.25.1.16.06.0.1</td> 497 <td>2016 5 17 </td> 498 </tr> 499 <tr> 500 <td>CVE-2016-3824</td> 501 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/b351eabb428c7ca85a34513c64601f437923d576">A-28816827</a></td> 502 <td></td> 503 <td> Nexus </td> 504 <td>4.4.45.0.25.1.16.06.0.1</td> 505 <td>2016 5 17 </td> 506 </tr> 507 <tr> 508 <td>CVE-2016-3825</td> 509 <td><a href="https://android.googlesource.com/platform/hardware/qcom/media/+/d575ecf607056d8e3328ef2eb56c52e98f81e87d">A-28816964</a></td> 510 <td></td> 511 <td> Nexus </td> 512 <td>5.0.25.1.16.06.0.1</td> 513 <td>2016 5 17 </td> 514 </tr> 515 <tr> 516 <td>CVE-2016-3826</td> 517 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/9cd8c3289c91254b3955bd7347cf605d6fa032c6">A-29251553</a></td> 518 <td></td> 519 <td> Nexus </td> 520 <td>4.4.45.0.25.1.16.06.0.1</td> 521 <td>2016 6 9 </td> 522 </tr> 523 </table> 524 525 <h3 id="denial-of-service-vulnerability-in-mediaserver"> 526 Mediaserver </h3> 527 <p> 528 Mediaserver 529 </p> 530 <table> 531 <col width="18%"> 532 <col width="18%"> 533 <col width="10%"> 534 <col width="19%"> 535 <col width="17%"> 536 <col width="17%"> 537 <tr> 538 <th>CVE</th> 539 <th></th> 540 <th></th> 541 <th> Nexus </th> 542 <th> AOSP </th> 543 <th></th> 544 </tr> 545 <tr> 546 <td>CVE-2016-3827</td> 547 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/a4567c66f4764442c6cb7b5c1858810194480fb5">A-28816956</a></td> 548 <td></td> 549 <td> Nexus </td> 550 <td>6.0.1</td> 551 <td>2016 5 16 </td> 552 </tr> 553 <tr> 554 <td>CVE-2016-3828</td> 555 <td><a href="https://android.googlesource.com/platform/external/libavc/+/7554755536019e439433c515eeb44e701fb3bfb2">A-28835995</a></td> 556 <td></td> 557 <td> Nexus </td> 558 <td>6.06.0.1</td> 559 <td>2016 5 17 </td> 560 </tr> 561 <tr> 562 <td>CVE-2016-3829</td> 563 <td><a href="https://android.googlesource.com/platform/external/libavc/+/326fe991a4b7971e8aeaf4ac775491dd8abd85bb">A-29023649</a></td> 564 <td></td> 565 <td> Nexus </td> 566 <td>6.06.0.1</td> 567 <td>2016 5 27 </td> 568 </tr> 569 <tr> 570 <td>CVE-2016-3830</td> 571 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/8e438e153f661e9df8db0ac41d587e940352df06">A-29153599</a></td> 572 <td></td> 573 <td> Nexus </td> 574 <td>4.4.45.0.25.1.16.06.0.1</td> 575 <td>Google </td> 576 </tr> 577 </table> 578 579 <h3 id="denial-of-service-vulnerability-in-system-clock"> 580 </h3> 581 <p> 582 583 </p> 584 <table> 585 <col width="18%"> 586 <col width="18%"> 587 <col width="10%"> 588 <col width="19%"> 589 <col width="17%"> 590 <col width="17%"> 591 <tr> 592 <th>CVE</th> 593 <th></th> 594 <th></th> 595 <th> Nexus </th> 596 <th> AOSP </th> 597 <th></th> 598 </tr> 599 <tr> 600 <td>CVE-2016-3831</td> 601 <td><a href="https://android.googlesource.com/platform/frameworks/opt/telephony/+/f47bc301ccbc5e6d8110afab5a1e9bac1d4ef058">A-29083635</a></td> 602 <td></td> 603 <td> Nexus </td> 604 <td>4.4.45.0.25.1.16.06.0.1</td> 605 <td>2016 5 31 </td> 606 </tr> 607 </table> 608 609 <h3 id="elevation-of-privilege-vulnerability-in-framework-apis"> 610 Framework API </h3> 611 <p> 612 Framework API 613 </p> 614 <table> 615 <col width="18%"> 616 <col width="17%"> 617 <col width="10%"> 618 <col width="19%"> 619 <col width="18%"> 620 <col width="17%"> 621 <tr> 622 <th>CVE</th> 623 <th></th> 624 <th></th> 625 <th> Nexus </th> 626 <th> AOSP </th> 627 <th></th> 628 </tr> 629 <tr> 630 <td>CVE-2016-3832</td> 631 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/e7cf91a198de995c7440b3b64352effd2e309906">A-28795098</a></td> 632 <td></td> 633 <td> Nexus </td> 634 <td>4.4.45.0.25.1.16.06.0.1</td> 635 <td>2016 5 15 </td> 636 </tr> 637 </table> 638 639 <h3 id="elevation-of-privilege-vulnerability-in-shell"> 640 Shell </h3> 641 <p> 642 Shell 643 </p> 644 <table> 645 <col width="18%"> 646 <col width="17%"> 647 <col width="10%"> 648 <col width="19%"> 649 <col width="17%"> 650 <col width="18%"> 651 <tr> 652 <th>CVE</th> 653 <th></th> 654 <th></th> 655 <th> Nexus </th> 656 <th> AOSP </th> 657 <th></th> 658 </tr> 659 <tr> 660 <td>CVE-2016-3833</td> 661 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/01875b0274e74f97edf6b0d5c92de822e0555d03">A-29189712</a>[<a href="https://android.googlesource.com/platform/frameworks/base/+/4e4743a354e26467318b437892a9980eb9b8328a">2</a>]</td> 662 <td></td> 663 <td> Nexus </td> 664 <td>5.0.25.1.16.06.0.1</td> 665 <td>Google </td> 666 </tr> 667 </table> 668 669 <h3 id="information-disclosure-vulnerability-in-openssl"> 670 OpenSSL </h3> 671 <p> 672 OpenSSL 673 </p> 674 <table> 675 <col width="18%"> 676 <col width="18%"> 677 <col width="10%"> 678 <col width="19%"> 679 <col width="17%"> 680 <col width="17%"> 681 <tr> 682 <th>CVE</th> 683 <th></th> 684 <th></th> 685 <th> Nexus </th> 686 <th> AOSP </th> 687 <th></th> 688 </tr> 689 <tr> 690 <td>CVE-2016-2842</td> 691 <td>A-29060514</td> 692 <td>*</td> 693 <td> Nexus </td> 694 <td>4.4.45.0.25.1.1</td> 695 <td>2016 3 29 </td> 696 </tr> 697 </table> 698 <p>* Nexus </p> 699 700 <h3 id="information-disclosure-vulnerability-in-camera-apis"> 701 Camera API </h3> 702 <p> 703 Camera API 704 </p> 705 <table> 706 <col width="18%"> 707 <col width="17%"> 708 <col width="10%"> 709 <col width="19%"> 710 <col width="18%"> 711 <col width="17%"> 712 <tr> 713 <th>CVE</th> 714 <th></th> 715 <th></th> 716 <th> Nexus </th> 717 <th> AOSP </th> 718 <th></th> 719 </tr> 720 <tr> 721 <td>CVE-2016-3834</td> 722 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/1f24c730ab6ca5aff1e3137b340b8aeaeda4bdbc">A-28466701</a></td> 723 <td></td> 724 <td> Nexus </td> 725 <td>4.4.45.0.25.1.16.06.0.1</td> 726 <td>2016 4 28 </td> 727 </tr> 728 </table> 729 730 <h3 id="information-disclosure-vulnerability-in-mediaserver"> 731 Mediaserver </h3> 732 <p> 733 Mediaserver 734 </p> 735 <table> 736 <col width="18%"> 737 <col width="17%"> 738 <col width="10%"> 739 <col width="19%"> 740 <col width="18%"> 741 <col width="17%"> 742 <tr> 743 <th>CVE</th> 744 <th></th> 745 <th></th> 746 <th> Nexus </th> 747 <th> AOSP </th> 748 <th></th> 749 </tr> 750 <tr> 751 <td>CVE-2016-3835</td> 752 <td><a href="https://android.googlesource.com/platform/hardware/qcom/media/+/7558d03e6498e970b761aa44fff6b2c659202d95">A-28920116</a></td> 753 <td></td> 754 <td> Nexus </td> 755 <td>4.4.45.0.25.1.16.06.0.1</td> 756 <td>2016 5 23 </td> 757 </tr> 758 </table> 759 760 <h3 id="information-disclosure-vulnerability-in-surfaceflinger"> 761 SurfaceFlinger </h3> 762 <p> 763 SurfaceFlinger 764 </p> 765 <table> 766 <col width="18%"> 767 <col width="18%"> 768 <col width="10%"> 769 <col width="19%"> 770 <col width="17%"> 771 <col width="17%"> 772 <tr> 773 <th>CVE</th> 774 <th></th> 775 <th></th> 776 <th> Nexus </th> 777 <th> AOSP </th> 778 <th></th> 779 </tr> 780 <tr> 781 <td>CVE-2016-3836</td> 782 <td><a href="https://android.googlesource.com/platform/frameworks/native/+/3bcf0caa8cca9143443814b36676b3bae33a4368">A-28592402</a></td> 783 <td></td> 784 <td> Nexus </td> 785 <td>5.0.25.1.16.06.0.1</td> 786 <td>2016 5 4 </td> 787 </tr> 788 </table> 789 790 <h3 id="information-disclosure-vulnerability-in-wi-fi"> 791 WLAN </h3> 792 <p> 793 WLAN 794 </p> 795 <table> 796 <col width="18%"> 797 <col width="18%"> 798 <col width="10%"> 799 <col width="19%"> 800 <col width="17%"> 801 <col width="17%"> 802 <tr> 803 <th>CVE</th> 804 <th></th> 805 <th></th> 806 <th> Nexus </th> 807 <th> AOSP </th> 808 <th></th> 809 </tr> 810 <tr> 811 <td>CVE-2016-3837</td> 812 <td><a href="https://android.googlesource.com/platform/frameworks/opt/net/wifi/+/a209ff12ba9617c10550678ff93d01fb72a33399">A-28164077</a></td> 813 <td></td> 814 <td> Nexus </td> 815 <td>5.0.25.1.16.06.0.1</td> 816 <td>Google </td> 817 </tr> 818 </table> 819 820 <h3 id="denial-of-service-vulnerability-in-system-ui"> 821 </h3> 822 <p> 823 (911) 824 </p> 825 <table> 826 <col width="18%"> 827 <col width="18%"> 828 <col width="10%"> 829 <col width="19%"> 830 <col width="17%"> 831 <col width="17%"> 832 <tr> 833 <th>CVE</th> 834 <th></th> 835 <th></th> 836 <th> Nexus </th> 837 <th> AOSP </th> 838 <th></th> 839 </tr> 840 <tr> 841 <td>CVE-2016-3838</td> 842 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/468651c86a8adb7aa56c708d2348e99022088af3">A-28761672</a></td> 843 <td></td> 844 <td> Nexus </td> 845 <td>6.06.0.1</td> 846 <td>Google </td> 847 </tr> 848 </table> 849 850 <h3 id="denial-of-service-vulnerability-in-bluetooth"> 851 </h3> 852 <p> 853 (911) 854 </p> 855 <table> 856 <col width="18%"> 857 <col width="17%"> 858 <col width="10%"> 859 <col width="19%"> 860 <col width="18%"> 861 <col width="17%"> 862 <tr> 863 <th>CVE</th> 864 <th></th> 865 <th></th> 866 <th> Nexus </th> 867 <th> AOSP </th> 868 <th></th> 869 </tr> 870 <tr> 871 <td>CVE-2016-3839</td> 872 <td><a href="https://android.googlesource.com/platform/system/bt/+/472271b153c5dc53c28beac55480a8d8434b2d5c">A-28885210</a></td> 873 <td></td> 874 <td> Nexus </td> 875 <td>4.4.45.0.25.1.16.06.0.1</td> 876 <td>Google </td> 877 </tr> 878 </table> 879 <h2 id="2016-08-05-security-patch-level-vulnerability-details"> 880 2016-08-05 - </h2> 881 <p> 882 <a href="#2016-08-05-security-patch-level-vulnerability-summary">2016-08-05 - </a> CVE Nexus AOSP Bug ID AOSP Bug Bug ID </p> 883 884 <h3 id="remote-code-execution-vulnerability-in-qualcomm-wi-fi-driver"> 885 Qualcomm WLAN </h3> 886 <p> 887 Qualcomm WLAN 888 </p> 889 <table> 890 <col width="19%"> 891 <col width="20%"> 892 <col width="10%"> 893 <col width="23%"> 894 <col width="17%"> 895 <tr> 896 <th>CVE</th> 897 <th></th> 898 <th></th> 899 <th> Nexus </th> 900 <th></th> 901 </tr> 902 <tr> 903 <td>CVE-2014-9902</td> 904 <td>A-28668638<p> 905 <a href="https://us.codeaurora.org/cgit/quic/la//platform/vendor/qcom-opensource/wlan/prima/commit/?id=3b1c44a3a7129dc25abe2c23543f6f66c59e8f50">QC-CR#553937</a><br> 906 <a href="https://us.codeaurora.org/cgit/quic/la//platform/vendor/qcom-opensource/wlan/prima/commit/?id=3b1c44a3a7129dc25abe2c23543f6f66c59e8f50">QC-CR#553941</a> 907 </p> 908 </td> 909 <td></td> 910 <td>Nexus 7 (2013)</td> 911 <td>2014 3 31 </td> 912 </tr> 913 </table> 914 915 <h3 id="remote-code-execution-vulnerability-in-conscrypt">Conscrypt </h3> 916 <p> 917 Conscrypt 918 </p> 919 <table> 920 <col width="18%"> 921 <col width="18%"> 922 <col width="10%"> 923 <col width="19%"> 924 <col width="17%"> 925 <col width="17%"> 926 <tr> 927 <th>CVE</th> 928 <th></th> 929 <th></th> 930 <th> Nexus </th> 931 <th> AOSP </th> 932 <th></th> 933 </tr> 934 <tr> 935 <td>CVE-2016-3840</td> 936 <td><a href="https://android.googlesource.com/platform/external/conscrypt/+/5af5e93463f4333187e7e35f3bd2b846654aa214">A-28751153</a></td> 937 <td></td> 938 <td> Nexus </td> 939 <td>4.4.45.0.25.1.16.06.0.1</td> 940 <td>Google </td> 941 </tr> 942 </table> 943 944 <h3 id="elevation-of-privilege-vulnerability-in-qualcomm-components"> 945 Qualcomm </h3> 946 <p> 947 Qualcomm 948 </p> 949 <p> 950 951 </p> 952 <table> 953 <col width="19%"> 954 <col width="20%"> 955 <col width="10%"> 956 <col width="23%"> 957 <col width="17%"> 958 <tr> 959 <th>CVE</th> 960 <th></th> 961 <th></th> 962 <th> Nexus </th> 963 <th></th> 964 </tr> 965 <tr> 966 <td>CVE-2014-9863</td> 967 <td>A-28768146<p> 968 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm-3.10/commit/?id=75eac48a48562f819f50eeff8369b296d89102d7">QC-CR#549470</a> 969 </p> 970 </td> 971 <td></td> 972 <td>Nexus 5Nexus 7 (2013)</td> 973 <td>2014 4 30 </td> 974 </tr> 975 <tr> 976 <td>CVE-2014-9864</td> 977 <td>A-28747998<p> 978 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm/commit/?id=a1124defc680055e2f2a8c8e3da4a94ca2ec842e">QC-CR#561841</a> 979 </p></td> 980 <td></td> 981 <td>Nexus 5Nexus 7 (2013)</td> 982 <td>2014 3 27 </td> 983 </tr> 984 <tr> 985 <td>CVE-2014-9865</td> 986 <td>A-28748271<p> 987 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm-3.10/commit/?id=e65a876a155de945e306f2726f3a557415e6044e">QC-CR#550013</a> 988 </p> 989 </td> 990 <td></td> 991 <td>Nexus 5Nexus 7 (2013)</td> 992 <td>2014 3 27 </td> 993 </tr> 994 <tr> 995 <td>CVE-2014-9866</td> 996 <td>A-28747684<p> 997 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm/commit/?id=8e6daae70422ad35146a87700e6634a747d1ff5d"> 998 QC-CR#511358</a> 999 </p> 1000 </td> 1001 <td></td> 1002 <td>Nexus 5Nexus 7 (2013)</td> 1003 <td>2014 3 31 </td> 1004 </tr> 1005 <tr> 1006 <td>CVE-2014-9867</td> 1007 <td>A-28749629<p> 1008 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm/commit/?id=322c518689a7f820165ca4c5d6b750b02ac34665">QC-CR#514702</a> 1009 </p> 1010 </td> 1011 <td></td> 1012 <td>Nexus 5Nexus 7 (2013)</td> 1013 <td>2014 3 31 </td> 1014 </tr> 1015 <tr> 1016 <td>CVE-2014-9868</td> 1017 <td>A-28749721<p> 1018 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm/commit/?id=1f274b74c00187ba1c379971503f51944148b22f">QC-CR#511976</a> 1019 </p> 1020 </td> 1021 <td></td> 1022 <td>Nexus 5Nexus 7 (2013)</td> 1023 <td>2014 3 31 </td> 1024 </tr> 1025 <tr> 1026 <td>CVE-2014-9869</td> 1027 <td>A-28749728<p> 1028 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm/commit/?id=8d1f7531ff379befc129a6447642061e87562bca">QC-CR#514711</a>[<a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm/commit/?id=7a26934e4196b4aa61944081989189d59b108768">2</a>]</p> 1029 </td> 1030 <td></td> 1031 <td>Nexus 5Nexus 7 (2013)</td> 1032 <td>2014 3 31 </td> 1033 </tr> 1034 <tr> 1035 <td>CVE-2014-9870</td> 1036 <td>A-28749743<p> 1037 <a href="https://us.codeaurora.org/cgit/quic/la//kernel/msm/commit/?id=4f57652fcd2dce7741f1ac6dc0417e2f265cd1de">QC-CR#561044</a> 1038 </p> 1039 </td> 1040 <td></td> 1041 <td>Nexus 5Nexus 7 (2013)</td> 1042 <td>2014 3 31 </td> 1043 </tr> 1044 <tr> 1045 <td>CVE-2014-9871</td> 1046 <td>A-28749803<p> 1047 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm/commit/?id=f615e40c706708f74cd826d5b19c63025f54c041">QC-CR#514717</a> 1048 </p> 1049 </td> 1050 <td></td> 1051 <td>Nexus 5Nexus 7 (2013)</td> 1052 <td>2014 3 31 </td> 1053 </tr> 1054 <tr> 1055 <td>CVE-2014-9872</td> 1056 <td>A-28750155<p> 1057 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm/commit/?id=fc787ebd71fa231cc7dd2a0d5f2208da0527096a">QC-CR#590721</a> 1058 </p> 1059 </td> 1060 <td></td> 1061 <td>Nexus 5</td> 1062 <td>2014 3 31 </td> 1063 </tr> 1064 <tr> 1065 <td>CVE-2014-9873</td> 1066 <td>A-28750726<p> 1067 <a href="https://us.codeaurora.org/cgit/quic/la//kernel/msm/commit/?id=ef29ae1d40536fef7fb95e4d5bb5b6b57bdf9420">QC-CR#556860</a> 1068 </p> 1069 </td> 1070 <td></td> 1071 <td>Nexus 5Nexus 7 (2013)</td> 1072 <td>2014 3 31 </td> 1073 </tr> 1074 <tr> 1075 <td>CVE-2014-9874</td> 1076 <td>A-28751152<p> 1077 <a href="https://us.codeaurora.org/cgit/quic/la//kernel/msm/commit/?id=56ff68b1f93eaf22e5e0284648fd862dc08c9236">QC-CR#563086</a> 1078 </p> 1079 </td> 1080 <td></td> 1081 <td>Nexus 5Nexus 5XNexus 6PNexus 7 (2013)</td> 1082 <td>2014 3 31 </td> 1083 </tr> 1084 <tr> 1085 <td>CVE-2014-9875</td> 1086 <td>A-28767589<p> 1087 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm/commit/?id=b77c694b88a994d077316c157168c710696f8805">QC-CR#483310</a> 1088 </p> 1089 </td> 1090 <td></td> 1091 <td>Nexus 7 (2013)</td> 1092 <td>2014 4 30 </td> 1093 </tr> 1094 <tr> 1095 <td>CVE-2014-9876</td> 1096 <td>A-28767796<p> 1097 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm/commit/?id=7efd393ca08ac74b2e3d2639b0ad77da139e9139">QC-CR#483408</a> 1098 </p> 1099 </td> 1100 <td></td> 1101 <td>Nexus 5Nexus 5XNexus 6Nexus 6PNexus 7 (2013)</td> 1102 <td>2014 4 30 </td> 1103 </tr> 1104 <tr> 1105 <td>CVE-2014-9877</td> 1106 <td>A-28768281<p> 1107 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm-3.10/commit/?id=f0c0112a6189747a3f24f20210157f9974477e03">QC-CR#547231</a> 1108 </p> 1109 </td> 1110 <td></td> 1111 <td>Nexus 5Nexus 7 (2013)</td> 1112 <td>2014 4 30 </td> 1113 </tr> 1114 <tr> 1115 <td>CVE-2014-9878</td> 1116 <td>A-28769208<p> 1117 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm-3.10/commit/?id=96a62c1de93a44e6ca69514411baf4b3d67f6dee">QC-CR#547479</a> 1118 </p> 1119 </td> 1120 <td></td> 1121 <td>Nexus 5</td> 1122 <td>2014 4 30 </td> 1123 </tr> 1124 <tr> 1125 <td>CVE-2014-9879</td> 1126 <td>A-28769221<p> 1127 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm/commit/?id=ecc8116e1befb3a764109f47ba0389434ddabbe4">QC-CR#524490</a> 1128 </p> 1129 </td> 1130 <td></td> 1131 <td>Nexus 5</td> 1132 <td>2014 4 30 </td> 1133 </tr> 1134 <tr> 1135 <td>CVE-2014-9880</td> 1136 <td>A-28769352<p> 1137 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm/commit/?id=f2a3f5e63e15e97a66e8f5a300457378bcb89d9c">QC-CR#556356</a> 1138 </p> 1139 </td> 1140 <td></td> 1141 <td>Nexus 7 (2013)</td> 1142 <td>2014 4 30 </td> 1143 </tr> 1144 <tr> 1145 <td>CVE-2014-9881</td> 1146 <td>A-28769368<p> 1147 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm-3.10/commit/?id=ba3f404a10b3bb7e9c20440837df3cd35c5d0c4b">QC-CR#539008</a> 1148 </p> 1149 </td> 1150 <td></td> 1151 <td>Nexus 7 (2013)</td> 1152 <td>2014 4 30 </td> 1153 </tr> 1154 <tr> 1155 <td>CVE-2014-9882</td> 1156 <td>A-28769546<p> 1157 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm/commit/?id=3a4ebaac557a9e3fbcbab4561650abac8298a4d9">QC-CR#552329</a>[<a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm/commit/?id=0f6afe815b1b3f920f3502be654c848bdfe5ef38">2</a>]</p> 1158 </td> 1159 <td></td> 1160 <td>Nexus 7 (2013)</td> 1161 <td>2014 4 30 </td> 1162 </tr> 1163 <tr> 1164 <td>CVE-2014-9883</td> 1165 <td>A-28769912<p> 1166 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm/commit/?id=cbf79a67348e48557c0d0bb9bc58391b3f84bc46">QC-CR#565160</a> 1167 </p> 1168 </td> 1169 <td></td> 1170 <td>Nexus 5Nexus 7 (2013)</td> 1171 <td>2014 4 30 </td> 1172 </tr> 1173 <tr> 1174 <td>CVE-2014-9884</td> 1175 <td>A-28769920<p> 1176 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm/commit/?id=f4948193c46f75e16d4382c4472485ab12b7bd17">QC-CR#580740</a> 1177 </p> 1178 </td> 1179 <td></td> 1180 <td>Nexus 5Nexus 7 (2013)</td> 1181 <td>2014 4 30 </td> 1182 </tr> 1183 <tr> 1184 <td>CVE-2014-9885</td> 1185 <td>A-28769959<p> 1186 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm-3.10/commit/?id=a1d5a4cbd5aa8656bc23b40c7cc43941e10f89c3">QC-CR#562261</a> 1187 </p> 1188 </td> 1189 <td></td> 1190 <td>Nexus 5</td> 1191 <td>2014 4 30 </td> 1192 </tr> 1193 <tr> 1194 <td>CVE-2014-9886</td> 1195 <td>A-28815575<p> 1196 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm-3.10/commit/?id=80be0e249c906704085d13d4ae446f73913fc225">QC-CR#555030</a> 1197 </p> 1198 </td> 1199 <td></td> 1200 <td>Nexus 5Nexus 7 (2013)</td> 1201 <td>2014 4 30 </td> 1202 </tr> 1203 <tr> 1204 <td>CVE-2014-9887</td> 1205 <td>A-28804057<p> 1206 <a href="https://us.codeaurora.org/cgit/quic/la//kernel/msm-3.10/commit/?id=b1bc773cf61265e0e3871b2e52bd6b3270ffc6c3">QC-CR#636633</a> 1207 </p> 1208 </td> 1209 <td></td> 1210 <td>Nexus 5Nexus 7 (2013)</td> 1211 <td>2014 7 3 </td> 1212 </tr> 1213 <tr> 1214 <td>CVE-2014-9888</td> 1215 <td>A-28803642<p> 1216 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm/commit/?id=f044936caab337a4384fbfe64a4cbae33c7e22a1">QC-CR#642735</a> 1217 </p> 1218 </td> 1219 <td></td> 1220 <td>Nexus 5Nexus 7 (2013)</td> 1221 <td>2014 8 29 </td> 1222 </tr> 1223 <tr> 1224 <td>CVE-2014-9889</td> 1225 <td>A-28803645<p> 1226 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm/commit?id=f4e2f2d4ef58c88340774099dff3324ec8baa24a">QC-CR#674712</a> 1227 </p></td> 1228 <td></td> 1229 <td>Nexus 5</td> 1230 <td>2014 10 31 </td> 1231 </tr> 1232 <tr> 1233 <td>CVE-2015-8937</td> 1234 <td>A-28803962<p> 1235 <a href="https://us.codeaurora.org/cgit/quic/la//kernel/msm-3.10/commit/?id=c66202b9288cc4ab1c38f7c928fa1005c285c170">QC-CR#770548</a> 1236 </p> 1237 </td> 1238 <td></td> 1239 <td>Nexus 5Nexus 6Nexus 7 (2013)</td> 1240 <td>2015 3 31 </td> 1241 </tr> 1242 <tr> 1243 <td>CVE-2015-8938</td> 1244 <td>A-28804030<p> 1245 <a href="https://us.codeaurora.org/cgit/quic/la//kernel/msm-3.10/commit/?id=51c39420e3a49d1a7f05a77c64369b7623088238">QC-CR#766022</a></p></td> 1246 <td></td> 1247 <td>Nexus 6</td> 1248 <td>2015 3 31 </td> 1249 </tr> 1250 <tr> 1251 <td>CVE-2015-8939</td> 1252 <td>A-28398884<p> 1253 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm/commit/?id=884cff808385788fa620833c7e2160a4b98a21da">QC-CR#779021</a></p></td> 1254 <td></td> 1255 <td>Nexus 7 (2013)</td> 1256 <td>2015 4 30 </td> 1257 </tr> 1258 <tr> 1259 <td>CVE-2015-8940</td> 1260 <td>A-28813987<p> 1261 <a href="https://us.codeaurora.org/cgit/quic/la//kernel/msm-3.10/commit/?id=e13ebd727d161db7003be6756e61283dce85fa3b">QC-CR#792367</a></p></td> 1262 <td></td> 1263 <td>Nexus 6</td> 1264 <td>2015 4 30 </td> 1265 </tr> 1266 <tr> 1267 <td>CVE-2015-8941</td> 1268 <td>A-28814502<p> 1269 <a href="https://us.codeaurora.org/cgit/quic/la//kernel/msm-3.10/commit/?id=d4d4d1dd626b21e68e78395bab3382c1eb04877f">QC-CR#792473</a></p></td> 1270 <td></td> 1271 <td>Nexus 6Nexus 7 (2013)</td> 1272 <td>2015 5 29 </td> 1273 </tr> 1274 <tr> 1275 <td>CVE-2015-8942</td> 1276 <td>A-28814652<p> 1277 <a href="https://us.codeaurora.org/cgit/quic/la//kernel/msm-3.10/commit/?id=9ec380c06bbd79493828fcc3c876d8a53fd3369f">QC-CR#803246</a></p></td> 1278 <td></td> 1279 <td>Nexus 6</td> 1280 <td>2015 6 30 </td> 1281 </tr> 1282 <tr> 1283 <td>CVE-2015-8943</td> 1284 <td>A-28815158<p> 1285 <a href="https://us.codeaurora.org/cgit/quic/la//kernel/msm/commit/?id=ad376e4053b87bd58f62f45b6df2c5544bc21aee">QC-CR#794217</a></p> 1286 <p> 1287 <a href="https://us.codeaurora.org/cgit/quic/la//kernel/msm/commit/?id=ad376e4053b87bd58f62f45b6df2c5544bc21aee">QC-CR#836226</a></p></td> 1288 <td></td> 1289 <td>Nexus 5</td> 1290 <td>2015 9 11 </td> 1291 </tr> 1292 <tr> 1293 <td>CVE-2014-9891</td> 1294 <td>A-28749283<p> 1295 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm-3.10/commit/?id=c10f03f191307f7114af89933f2d91b830150094">QC-CR#550061</a></p></td> 1296 <td></td> 1297 <td>Nexus 5</td> 1298 <td>2014 3 13 </td> 1299 </tr> 1300 <tr> 1301 <td>CVE-2014-9890</td> 1302 <td>A-28770207<p> 1303 <a href="https://us.codeaurora.org/cgit/quic/la//kernel/msm-3.10/commit/?id=14e0c8614d2715589583d8a95e33c422d110eb6f">QC-CR#529177</a></p></td> 1304 <td></td> 1305 <td>Nexus 5Nexus 7 (2013)</td> 1306 <td>2014 6 2 </td> 1307 </tr> 1308 </table> 1309 1310 <h3 id="elevation-of-privilege-vulnerability-in-kernel-networking-component"> 1311 </h3> 1312 <p> 1313 1314 </p> 1315 <table> 1316 <col width="19%"> 1317 <col width="20%"> 1318 <col width="10%"> 1319 <col width="23%"> 1320 <col width="17%"> 1321 <tr> 1322 <th>CVE</th> 1323 <th></th> 1324 <th></th> 1325 <th> Nexus </th> 1326 <th></th> 1327 </tr> 1328 <tr> 1329 <td>CVE-2015-2686</td> 1330 <td>A-28759139<p> 1331 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=4de930efc23b92ddf88ce91c405ee645fe6e27ea"></a></p></td> 1332 <td></td> 1333 <td> Nexus </td> 1334 <td>2015 3 23 </td> 1335 </tr> 1336 <tr> 1337 <td>CVE-2016-3841</td> 1338 <td>A-28746669<p> 1339 <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=45f6fad84cc305103b28d73482b344d7f5b76f39"></a></p></td> 1340 <td></td> 1341 <td> Nexus </td> 1342 <td>2015 12 3 </td> 1343 </tr> 1344 </table> 1345 1346 <h3 id="elevation-of-privilege-vulnerability-in-qualcomm-gpu-driver"> 1347 Qualcomm GPU </h3> 1348 <p> 1349 Qualcomm GPU 1350 </p> 1351 <table> 1352 <col width="19%"> 1353 <col width="20%"> 1354 <col width="10%"> 1355 <col width="23%"> 1356 <col width="17%"> 1357 <tr> 1358 <th>CVE</th> 1359 <th></th> 1360 <th></th> 1361 <th> Nexus </th> 1362 <th></th> 1363 </tr> 1364 <tr> 1365 <td>CVE-2016-2504</td> 1366 <td>A-28026365<p>QC-CR#1002974</p></td> 1367 <td></td> 1368 <td>Nexus 5Nexus 5XNexus 6Nexus 6PNexus 7 (2013)</td> 1369 <td>2016 4 5 </td> 1370 </tr> 1371 <tr> 1372 <td>CVE-2016-3842</td> 1373 <td>A-28377352<p>QC-CR#1002974</p></td> 1374 <td></td> 1375 <td>Nexus 5XNexus 6Nexus 6P</td> 1376 <td>2016 4 25 </td> 1377 </tr> 1378 </table> 1379 <p> 1380 *<a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> Nexus 1381 </p> 1382 1383 1384 <h3 id="elevation-of-privilege-vulnerability-in-qualcomm-performance-component"> 1385 Qualcomm </h3> 1386 <p> 1387 Qualcomm 1388 </p> 1389 <p class="note"> 1390 <strong></strong> A-29119870 1391 </p> 1392 <table> 1393 <col width="19%"> 1394 <col width="20%"> 1395 <col width="10%"> 1396 <col width="23%"> 1397 <col width="17%"> 1398 <tr> 1399 <th>CVE</th> 1400 <th></th> 1401 <th></th> 1402 <th> Nexus </th> 1403 <th></th> 1404 </tr> 1405 <tr> 1406 <td>CVE-2016-3843</td> 1407 <td>A-28086229*<p>QC-CR#1011071</p></td> 1408 <td></td> 1409 <td>Nexus 5XNexus 6P</td> 1410 <td>2016 4 7 </td> 1411 </tr> 1412 </table> 1413 <p> 1414 *<a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> Nexus 1415 </p> 1416 1417 <h3 id="elevation-of-privilege-vulnerability-in-kernel"> 1418 </h3> 1419 <p> 1420 1421 </p> 1422 <table> 1423 <col width="19%"> 1424 <col width="20%"> 1425 <col width="10%"> 1426 <col width="23%"> 1427 <col width="17%"> 1428 <tr> 1429 <th>CVE</th> 1430 <th></th> 1431 <th></th> 1432 <th> Nexus </th> 1433 <th></th> 1434 </tr> 1435 <tr> 1436 <td>CVE-2016-3857</td> 1437 <td>A-28522518*</td> 1438 <td></td> 1439 <td>Nexus 7 (2013)</td> 1440 <td>2016 5 2 </td> 1441 </tr> 1442 </table> 1443 <p> 1444 *<a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> Nexus 1445 </p> 1446 1447 <h3 id="elevation-of-privilege-vulnerability-in-kernel-memory-system"> 1448 </h3> 1449 <p> 1450 1451 </p> 1452 <table> 1453 <col width="19%"> 1454 <col width="20%"> 1455 <col width="10%"> 1456 <col width="23%"> 1457 <col width="17%"> 1458 <tr> 1459 <th>CVE</th> 1460 <th></th> 1461 <th></th> 1462 <th> Nexus </th> 1463 <th></th> 1464 </tr> 1465 <tr> 1466 <td>CVE-2015-1593</td> 1467 <td>A-29577822<p> 1468 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=4e7c22d447bb6d7e37bfe39ff658486ae78e8d77"></a></p></td> 1469 <td></td> 1470 <td>Nexus Player</td> 1471 <td>2015 2 13 </td> 1472 </tr> 1473 <tr> 1474 <td>CVE-2016-3672</td> 1475 <td>A-28763575<p> 1476 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=8b8addf891de8a00e4d39fc32f93f7c5eb8feceb"></a></p></td> 1477 <td></td> 1478 <td>Nexus Player</td> 1479 <td>2016 3 25 </td> 1480 </tr> 1481 </table> 1482 1483 <h3 id="elevation-of-privilege-vulnerability-in-kernel-sound-component"> 1484 </h3> 1485 <p> 1486 1487 </p> 1488 <table> 1489 <col width="19%"> 1490 <col width="20%"> 1491 <col width="10%"> 1492 <col width="23%"> 1493 <col width="17%"> 1494 <tr> 1495 <th>CVE</th> 1496 <th></th> 1497 <th></th> 1498 <th> Nexus </th> 1499 <th></th> 1500 </tr> 1501 <tr> 1502 <td>CVE-2016-2544</td> 1503 <td>A-28695438<p> 1504 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=3567eb6af614dac436c4b16a8d426f9faed639b3"></a></p></td> 1505 <td></td> 1506 <td> Nexus </td> 1507 <td>2016 1 19 </td> 1508 </tr> 1509 <tr> 1510 <td>CVE-2016-2546</td> 1511 <td>A-28694392<p> 1512 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=af368027a49a751d6ff4ee9e3f9961f35bb4fede"></a></p></td> 1513 <td></td> 1514 <td>Pixel C</td> 1515 <td>2016 1 19 </td> 1516 </tr> 1517 <tr> 1518 <td>CVE-2014-9904</td> 1519 <td>A-28592007<p> 1520 <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=6217e5ede23285ddfee10d2e4ba0cc2d4c046205"></a></p></td> 1521 <td></td> 1522 <td>Nexus 5XNexus 6Nexus 6PNexus 9Nexus Player</td> 1523 <td>2016 5 4 </td> 1524 </tr> 1525 </table> 1526 1527 <h3 id="elevation-of-privilege-vulnerability-in-kernel-file-system"> 1528 </h3> 1529 <p> 1530 1531 </p> 1532 <table> 1533 <col width="19%"> 1534 <col width="20%"> 1535 <col width="10%"> 1536 <col width="23%"> 1537 <col width="17%"> 1538 <tr> 1539 <th>CVE</th> 1540 <th></th> 1541 <th></th> 1542 <th> Nexus </th> 1543 <th></th> 1544 </tr> 1545 <tr> 1546 <td>CVE-2012-6701</td> 1547 <td>A-28939037<p> 1548 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=a70b52ec1aaeaf60f4739edb1b422827cb6f3893"></a></p></td> 1549 <td></td> 1550 <td>Nexus 5Nexus 7 (2013)</td> 1551 <td>2016 3 2 </td> 1552 </tr> 1553 </table> 1554 1555 <h3 id="elevation-of-privilege-vulnerability-in-mediaserver"> 1556 Mediaserver </h3> 1557 <p> 1558 Mediaserver 1559 </p> 1560 <table> 1561 <col width="19%"> 1562 <col width="20%"> 1563 <col width="10%"> 1564 <col width="23%"> 1565 <col width="17%"> 1566 <tr> 1567 <th>CVE</th> 1568 <th></th> 1569 <th></th> 1570 <th> Nexus </th> 1571 <th></th> 1572 </tr> 1573 <tr> 1574 <td>CVE-2016-3844</td> 1575 <td>A-28299517*<p>N-CVE-2016-3844</p></td> 1576 <td></td> 1577 <td>Nexus 9Pixel C</td> 1578 <td>2016 4 19 </td> 1579 </tr> 1580 </table> 1581 <p> 1582 *<a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> Nexus 1583 </p> 1584 1585 <h3></h3> 1586 <p> 1587 1588 </p> 1589 <table> 1590 <col width="19%"> 1591 <col width="20%"> 1592 <col width="10%"> 1593 <col width="23%"> 1594 <col width="17%"> 1595 <tr> 1596 <th>CVE</th> 1597 <th></th> 1598 <th></th> 1599 <th> Nexus </th> 1600 <th></th> 1601 </tr> 1602 <tr> 1603 <td>CVE-2016-3845</td> 1604 <td>A-28399876*</td> 1605 <td></td> 1606 <td>Nexus 5</td> 1607 <td>2016 4 20 </td> 1608 </tr> 1609 </table> 1610 <p> 1611 *<a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> Nexus 1612 </p> 1613 1614 <h3 id="elevation-of-privilege-vulnerability-in-serial-peripheral-interface-driver"> 1615 </h3> 1616 <p> 1617 1618 </p> 1619 <table> 1620 <col width="19%"> 1621 <col width="20%"> 1622 <col width="10%"> 1623 <col width="23%"> 1624 <col width="17%"> 1625 <tr> 1626 <th>CVE</th> 1627 <th></th> 1628 <th></th> 1629 <th> Nexus </th> 1630 <th></th> 1631 </tr> 1632 <tr> 1633 <td>CVE-2016-3846</td> 1634 <td>A-28817378*</td> 1635 <td></td> 1636 <td>Nexus 5XNexus 6P</td> 1637 <td>2016 5 17 </td> 1638 </tr> 1639 </table> 1640 <p> 1641 *<a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> Nexus 1642 </p> 1643 1644 <h3 id="elevation-of-privilege-vulnerability-in-nvidia-media-driver"> 1645 NVIDIA </h3> 1646 <p> 1647 NVIDIA 1648 </p> 1649 <table> 1650 <col width="19%"> 1651 <col width="20%"> 1652 <col width="10%"> 1653 <col width="23%"> 1654 <col width="17%"> 1655 <tr> 1656 <th>CVE</th> 1657 <th></th> 1658 <th></th> 1659 <th> Nexus </th> 1660 <th></th> 1661 </tr> 1662 <tr> 1663 <td>CVE-2016-3847</td> 1664 <td>A-28871433*<p>N-CVE-2016-3847</p></td> 1665 <td></td> 1666 <td>Nexus 9</td> 1667 <td>2016 5 19 </td> 1668 </tr> 1669 <tr> 1670 <td>CVE-2016-3848</td> 1671 <td>A-28919417*<p>N-CVE-2016-3848</p></td> 1672 <td></td> 1673 <td>Nexus 9</td> 1674 <td>2016 5 19 </td> 1675 </tr> 1676 </table> 1677 <p> 1678 *<a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> Nexus 1679 </p> 1680 1681 <h3 id="elevation-of-privilege-vulnerability-in-ion-driver"> 1682 ION </h3> 1683 <p> 1684 ION 1685 </p> 1686 <table> 1687 <col width="19%"> 1688 <col width="20%"> 1689 <col width="10%"> 1690 <col width="23%"> 1691 <col width="17%"> 1692 <tr> 1693 <th>CVE</th> 1694 <th></th> 1695 <th></th> 1696 <th> Nexus </th> 1697 <th></th> 1698 </tr> 1699 <tr> 1700 <td>CVE-2016-3849</td> 1701 <td>A-28939740</td> 1702 <td></td> 1703 <td>Pixel C</td> 1704 <td>2016 5 24 </td> 1705 </tr> 1706 </table> 1707 <p> 1708 *<a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> Nexus 1709 </p> 1710 1711 <h3 id="elevation-of-privilege-vulnerability-in-qualcomm-bootloader">Qualcomm </h3> 1712 <p> 1713 Qualcomm 1714 </p> 1715 <table> 1716 <col width="19%"> 1717 <col width="20%"> 1718 <col width="10%"> 1719 <col width="26%"> 1720 <col width="17%"> 1721 <tr> 1722 <th>CVE</th> 1723 <th></th> 1724 <th></th> 1725 <th> Nexus </th> 1726 <th></th> 1727 </tr> 1728 <tr> 1729 <td>CVE-2016-3850</td> 1730 <td>A-27917291<p> 1731 <a href="https://source.codeaurora.org/quic/la/kernel/lk/commit/?id=030371d45a9dcda4d0cc3c76647e753a1cc1b782">QC-CR#945164</a></p></td> 1732 <td></td> 1733 <td>Nexus 5Nexus 5XNexus 6PNexus 7 (2013)</td> 1734 <td>2016 3 28 </td> 1735 </tr> 1736 </table> 1737 1738 <h3 id="elevation-of-privilege-vulnerability-in-kernel-performance"> 1739 </h3> 1740 <p> 1741 1742 </p> 1743 <p class="note"> 1744 <strong></strong> CVE-2016-3843 (A-28086229) 1745 </p> 1746 <table> 1747 <col width="18%"> 1748 <col width="18%"> 1749 <col width="10%"> 1750 <col width="19%"> 1751 <col width="17%"> 1752 <col width="17%"> 1753 <tr> 1754 <th>CVE</th> 1755 <th></th> 1756 <th></th> 1757 <th> Nexus </th> 1758 <th> AOSP </th> 1759 <th></th> 1760 </tr> 1761 <tr> 1762 <td>CVE-2016-3843</td> 1763 <td>A-29119870*</td> 1764 <td></td> 1765 <td> Nexus </td> 1766 <td>6.06.1</td> 1767 <td>Google </td> 1768 </tr> 1769 </table> 1770 <p> 1771 *<a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> Nexus 1772 </p> 1773 1774 <h3 id="elevation-of-privilege-vulnerability-in-lg-electronics-bootloader"> 1775 LG Electronics </h3> 1776 <p> 1777 LG Electronics 1778 </p> 1779 <table> 1780 <col width="19%"> 1781 <col width="20%"> 1782 <col width="10%"> 1783 <col width="23%"> 1784 <col width="17%"> 1785 <tr> 1786 <th>CVE</th> 1787 <th></th> 1788 <th></th> 1789 <th> Nexus </th> 1790 <th></th> 1791 </tr> 1792 <tr> 1793 <td>CVE-2016-3851</td> 1794 <td>A-29189941*</td> 1795 <td></td> 1796 <td>Nexus 5X</td> 1797 <td>Google </td> 1798 </tr> 1799 </table> 1800 <p> 1801 *<a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> Nexus 1802 </p> 1803 1804 <h3 id="information-disclosure-vulnerability-in-qualcomm-components"> 1805 Qualcomm </h3> 1806 <p> 1807 Qualcomm 1808 </p> 1809 <p> 1810 1811 </p> 1812 <table> 1813 <col width="19%"> 1814 <col width="20%"> 1815 <col width="10%"> 1816 <col width="23%"> 1817 <col width="17%"> 1818 <tr> 1819 <th>CVE</th> 1820 <th></th> 1821 <th></th> 1822 <th> Nexus </th> 1823 <th></th> 1824 </tr> 1825 <tr> 1826 <td>CVE-2014-9892</td> 1827 <td>A-28770164<p> 1828 <a href="https://us.codeaurora.org/cgit/quic/la//kernel/msm-3.10/commit/?id=591b1f455c32206704cbcf426bb30911c260c33e">QC-CR#568717</a></p></td> 1829 <td></td> 1830 <td>Nexus 5Nexus 7 (2013)</td> 1831 <td>2014 6 2 </td> 1832 </tr> 1833 <tr> 1834 <td>CVE-2015-8944</td> 1835 <td>A-28814213<p> 1836 <a href="https://us.codeaurora.org/cgit/quic/la//kernel/msm-3.10/commit/?id=e758417e7c31b975c862aa55d0ceef28f3cc9104">QC-CR#786116</a></p></td> 1837 <td></td> 1838 <td>Nexus 6Nexus 7 (2013)</td> 1839 <td>2015 4 30 </td> 1840 </tr> 1841 <tr> 1842 <td>CVE-2014-9893</td> 1843 <td>A-28747914<p> 1844 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm-3.10/commit/?id=bfc6eee5e30a0c20bc37495233506f4f0cc4991d">QC-CR#542223</a></p></td> 1845 <td></td> 1846 <td>Nexus 5</td> 1847 <td>2014 3 27 </td> 1848 </tr> 1849 <tr> 1850 <td>CVE-2014-9894</td> 1851 <td>A-28749708<p> 1852 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm-3.10/commit/?id=83214431cd02674c70402b160b16b7427e28737f">QC-CR#545736</a></p></td> 1853 <td></td> 1854 <td>Nexus 7 (2013)</td> 1855 <td>2014 3 31 </td> 1856 </tr> 1857 <tr> 1858 <td>CVE-2014-9895</td> 1859 <td>A-28750150<p> 1860 <a href="https://us.codeaurora.org/cgit/quic/la//kernel/msm/commit/?id=cc4b26575602e492efd986e9a6ffc4278cee53b5">QC-CR#570757</a></p></td> 1861 <td></td> 1862 <td>Nexus 5Nexus 7 (2013)</td> 1863 <td>2014 3 31 </td> 1864 </tr> 1865 <tr> 1866 <td>CVE-2014-9896</td> 1867 <td>A-28767593<p> 1868 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm-3.10/commit/?id=89f2bcf1ac860b0b380e579e9a8764013f263a7d">QC-CR#551795</a></p></td> 1869 <td></td> 1870 <td>Nexus 5Nexus 7 (2013)</td> 1871 <td>2014 4 30 </td> 1872 </tr> 1873 <tr> 1874 <td>CVE-2014-9897</td> 1875 <td>A-28769856<p> 1876 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm-3.10/commit/?id=46135d80765cb70a914f02a6e7b6abe64679ec86">QC-CR#563752</a></p></td> 1877 <td></td> 1878 <td>Nexus 5</td> 1879 <td>2014 4 30 </td> 1880 </tr> 1881 <tr> 1882 <td>CVE-2014-9898</td> 1883 <td>A-28814690<p> 1884 <a href="https://us.codeaurora.org/cgit/quic/la/kernel/msm-3.10/commit/?id=80be0e249c906704085d13d4ae446f73913fc225">QC-CR#554575</a></p></td> 1885 <td></td> 1886 <td>Nexus 5Nexus 7 (2013)</td> 1887 <td>2014 4 30 </td> 1888 </tr> 1889 <tr> 1890 <td>CVE-2014-9899</td> 1891 <td>A-28803909<p> 1892 <a href="https://us.codeaurora.org/cgit/quic/la//kernel/msm-3.10/commit/?id=8756624acb1e090b45baf07b2a8d0ebde114000e">QC-CR#547910</a></p></td> 1893 <td></td> 1894 <td>Nexus 5</td> 1895 <td>2014 7 3 </td> 1896 </tr> 1897 <tr> 1898 <td>CVE-2014-9900</td> 1899 <td>A-28803952<p> 1900 <a href="https://us.codeaurora.org/cgit/quic/la//kernel/msm-3.10/commit/?id=63c317dbee97983004dffdd9f742a20d17150071">QC-CR#570754</a></p></td> 1901 <td></td> 1902 <td>Nexus 5Nexus 7 (2013)</td> 1903 <td>2014 8 8 </td> 1904 </tr> 1905 </table> 1906 1907 <h3 id="information-disclosure-vulnerability-in-kernel-scheduler"> 1908 </h3> 1909 <p> 1910 1911 </p> 1912 <table> 1913 <col width="19%"> 1914 <col width="20%"> 1915 <col width="10%"> 1916 <col width="23%"> 1917 <col width="17%"> 1918 <tr> 1919 <th>CVE</th> 1920 <th></th> 1921 <th></th> 1922 <th> Nexus </th> 1923 <th></th> 1924 </tr> 1925 <tr> 1926 <td>CVE-2014-9903</td> 1927 <td>A-28731691<p> 1928 <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=4efbc454ba68def5ef285b26ebfcfdb605b52755"></a></p></td> 1929 <td></td> 1930 <td>Nexus 5XNexus 6P</td> 1931 <td>2014 2 21 </td> 1932 </tr> 1933 </table> 1934 1935 <h3 id="information-disclosure-vulnerability-in-mediatek-wi-fi-driver-device-specific"> 1936 MediaTek WLAN </h3> 1937 <p> 1938 MediaTek WLAN 1939 </p> 1940 <table> 1941 <col width="19%"> 1942 <col width="20%"> 1943 <col width="10%"> 1944 <col width="23%"> 1945 <col width="17%"> 1946 <tr> 1947 <th>CVE</th> 1948 <th></th> 1949 <th></th> 1950 <th> Nexus </th> 1951 <th></th> 1952 </tr> 1953 <tr> 1954 <td>CVE-2016-3852</td> 1955 <td>A-29141147*<p>M-ALPS02751738</p></td> 1956 <td></td> 1957 <td>Android One</td> 1958 <td>2016 4 12 </td> 1959 </tr> 1960 </table> 1961 <p> 1962 *<a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> Nexus 1963 </p> 1964 1965 <h3 id="information-disclosure-vulnerability-in-usb-driver">USB </h3> 1966 <p> 1967 USB 1968 </p> 1969 <table> 1970 <col width="19%"> 1971 <col width="20%"> 1972 <col width="10%"> 1973 <col width="23%"> 1974 <col width="17%"> 1975 <tr> 1976 <th>CVE</th> 1977 <th></th> 1978 <th></th> 1979 <th> Nexus </th> 1980 <th></th> 1981 </tr> 1982 <tr> 1983 <td>CVE-2016-4482</td> 1984 <td>A-28619695<p> 1985 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=681fef8380eb818c0b845fca5d2ab1dcbab114ee"></a></p></td> 1986 <td></td> 1987 <td> Nexus </td> 1988 <td>2016 5 3 </td> 1989 </tr> 1990 </table> 1991 1992 <h3 id="denial-of-service-vulnerability-in-qualcomm-components"> 1993 Qualcomm </h3> 1994 <p> 1995 Qualcomm WLAN 1996 </p> 1997 <p> 1998 1999 </p> 2000 <table> 2001 <col width="19%"> 2002 <col width="20%"> 2003 <col width="10%"> 2004 <col width="23%"> 2005 <col width="17%"> 2006 <tr> 2007 <th>CVE</th> 2008 <th></th> 2009 <th></th> 2010 <th> Nexus </th> 2011 <th></th> 2012 </tr> 2013 <tr> 2014 <td>CVE-2014-9901</td> 2015 <td>A-28670333<p> 2016 <a href="https://us.codeaurora.org/cgit/quic/la//platform/vendor/qcom-opensource/wlan/prima/commit/?id=637f0f7931dd7265ac1c250dc2884d6389c66bde">QC-CR#548711</a></p></td> 2017 <td></td> 2018 <td>Nexus 7 (2013)</td> 2019 <td>2014 3 31 </td> 2020 </tr> 2021 </table> 2022 2023 <h3 id="elevation-of-privilege-vulnerability-in-google-play-services"> 2024 Google Play </h3> 2025 <p> 2026 Google Play 2027 </p> 2028 <table> 2029 <col width="18%"> 2030 <col width="18%"> 2031 <col width="10%"> 2032 <col width="19%"> 2033 <col width="17%"> 2034 <col width="17%"> 2035 <tr> 2036 <th>CVE</th> 2037 <th></th> 2038 <th></th> 2039 <th> Nexus </th> 2040 <th> AOSP </th> 2041 <th></th> 2042 </tr> 2043 <tr> 2044 <td>CVE-2016-3853</td> 2045 <td>A-26803208*</td> 2046 <td></td> 2047 <td> Nexus </td> 2048 <td></td> 2049 <td>2016 5 4 </td> 2050 </tr> 2051 </table> 2052 <p> 2053 *<a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> Nexus 2054 </p> 2055 2056 <h3 id="elevation-of-privilege-vulnerability-in-framework-apis-2"> 2057 Framework API </h3> 2058 <p> 2059 Framework API Intent 2060 </p> 2061 <table> 2062 <col width="18%"> 2063 <col width="17%"> 2064 <col width="10%"> 2065 <col width="19%"> 2066 <col width="18%"> 2067 <col width="17%"> 2068 <tr> 2069 <th>CVE</th> 2070 <th></th> 2071 <th></th> 2072 <th> Nexus </th> 2073 <th> AOSP </th> 2074 <th></th> 2075 </tr> 2076 <tr> 2077 <td>CVE-2016-2497</td> 2078 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/a75537b496e9df71c74c1d045ba5569631a16298">A-27450489</a></td> 2079 <td></td> 2080 <td> Nexus </td> 2081 <td>4.4.45.0.25.1.16.06.0.1</td> 2082 <td>Google </td> 2083 </tr> 2084 </table> 2085 2086 <h3 id="information-disclosure-vulnerability-in-kernel-networking-component"> 2087 </h3> 2088 <p> 2089 2090 </p> 2091 <table> 2092 <col width="19%"> 2093 <col width="20%"> 2094 <col width="10%"> 2095 <col width="23%"> 2096 <col width="17%"> 2097 <tr> 2098 <th>CVE</th> 2099 <th></th> 2100 <th></th> 2101 <th> Nexus </th> 2102 <th></th> 2103 </tr> 2104 <tr> 2105 <td>CVE-2016-4578</td> 2106 <td>A-28620102<p> 2107 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=5f8e44741f9f216e33736ea4ec65ca9ac03036e6"></a></p></td> 2108 <td></td> 2109 <td> Nexus </td> 2110 <td>2016 5 3 </td> 2111 </tr> 2112 </table> 2113 2114 <h3 id="information-disclosure-vulnerability-in-kernel-sound-component"> 2115 </h3> 2116 <p> 2117 2118 </p> 2119 <table> 2120 <col width="19%"> 2121 <col width="20%"> 2122 <col width="10%"> 2123 <col width="23%"> 2124 <col width="17%"> 2125 <tr> 2126 <th>CVE</th> 2127 <th></th> 2128 <th></th> 2129 <th> Nexus </th> 2130 <th></th> 2131 </tr> 2132 <tr> 2133 <td>CVE-2016-4569</td> 2134 <td>A-28980557<p> 2135 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=cec8f96e49d9be372fdb0c3836dcf31ec71e457e"></a></p></td> 2136 <td></td> 2137 <td> Nexus </td> 2138 <td>2016 5 9 </td> 2139 </tr> 2140 <tr> 2141 <td>CVE-2016-4578</td> 2142 <td>A-28980217<p> 2143 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=e4ec8cc8039a7063e24204299b462bd1383184a5"></a> [<a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=9a47e9cff994f37f7f0dbd9ae23740d0f64f9fe6">2</a>]</p></td> 2144 <td></td> 2145 <td> Nexus </td> 2146 <td>2016 5 11 </td> 2147 </tr> 2148 </table> 2149 2150 <h3 id="vulnerabilities-in-qualcomm-components"> 2151 Qualcomm </h3> 2152 <p> 2153 Qualcomm 2154 </p> 2155 <table> 2156 <col width="19%"> 2157 <col width="20%"> 2158 <col width="10%"> 2159 <col width="23%"> 2160 <col width="17%"> 2161 <tr> 2162 <th>CVE</th> 2163 <th></th> 2164 <th></th> 2165 <th> Nexus </th> 2166 <th></th> 2167 </tr> 2168 <tr> 2169 <td>CVE-2016-3854</td> 2170 <td><a href="https://source.codeaurora.org/quic/la/kernel/msm/commit/?h=LA.AF.1.2.1_rb1.5&id=cc96def76dfd18fba88575065b29f2ae9191fafa">QC-CR#897326</a></td> 2171 <td></td> 2172 <td></td> 2173 <td>2016 2 </td> 2174 </tr> 2175 <tr> 2176 <td>CVE-2016-3855</td> 2177 <td><a href="https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?id=ab3f46119ca10de87a11fe966b0723c48f27acd4">QC-CR#990824</a></td> 2178 <td></td> 2179 <td></td> 2180 <td>2016 5 </td> 2181 </tr> 2182 <tr> 2183 <td>CVE-2016-2060</td> 2184 <td><a href="https://source.codeaurora.org/quic/la/platform/system/netd/commit/?id=e9925f5acb4401588e23ea8a27c3e318f71b5cf8">QC-CR#959631</a></td> 2185 <td></td> 2186 <td></td> 2187 <td>2016 4 </td> 2188 </tr> 2189 </table> 2190 <h2 id="common-questions-and-answers"></h2> 2191 <p> 2192 2193 </p> 2194 <p> 2195 <strong>1. 2196 </strong> 2197 </p> 2198 <p> 2199 2016-08-01 2016-8-01 2016-08-05 2016-08-05 <a href="https://support.google.com/nexus/answer/4457705"></a>[ro.build.version.security_patch]:[2016-08-01] [ro.build.version.security_patch]:[2016-08-05] 2200 </p> 2201 <p> 2202 <strong>2. </strong> 2203 </p> 2204 <p> 2205 Android Android Android 2206 </p> 2207 <p> 2208 2016 8 5 2209 </p> 2210 <p> 2211 2016 8 1 2016 8 1 2016 8 5 2212 </p> 2213 <p> 2214 3<strong>. Nexus </strong> 2215 </p> 2216 <p> 2217 <a href="#2016-08-01-security-patch-level-security-vulnerability-details">2016-08-01</a> <a href="#2016-08-05-security-patch-level-vulnerability-details">2016-08-05</a> Nexus Nexus 2218 </p> 2219 <ul> 2220 <li><strong> Nexus </strong> Nexus Nexus Nexus <em></em> Nexus <a href="https://support.google.com/nexus/answer/4457705#nexus_devices"></a>Nexus 5Nexus 5XNexus 6Nexus 6PNexus 7 (2013)Nexus 9Android OneNexus Player Pixel C</li> 2221 <li><strong> Nexus </strong> Nexus Nexus Nexus <em></em></li> 2222 <li><strong> Nexus </strong> Nexus Nexus <em></em> 2223 </li> 2224 </ul> 2225 <p> 2226 <strong>4. </strong> 2227 </p> 2228 <p> 2229 <em></em> 2230 </p> 2231 <table> 2232 <tr> 2233 <th></th> 2234 <th></th> 2235 </tr> 2236 <tr> 2237 <td>A-</td> 2238 <td>Android Bug ID</td> 2239 </tr> 2240 <tr> 2241 <td>QC-</td> 2242 <td>Qualcomm </td> 2243 </tr> 2244 <tr> 2245 <td>M-</td> 2246 <td>MediaTek </td> 2247 </tr> 2248 <tr> 2249 <td>N-</td> 2250 <td>NVIDIA </td> 2251 </tr> 2252 </table> 2253 <h2 id="revisions"></h2> 2254 2255 <ul> 2256 <li>2016 8 1 </li> 2257 <li>2016 8 2 AOSP </li> 2258 </ul> 2259 2260 </body> 2261 </html> 2262
