1 <html devsite> 2 <head> 3 <title>Android - 2016 10 </title> 4 <meta name="project_path" value="/_project.yaml" /> 5 <meta name="book_path" value="/_book.yaml" /> 6 </head> 7 <body> 8 <!-- 9 Copyright 2017 The Android Open Source Project 10 11 Licensed under the Apache License, Version 2.0 (the "License"); 12 you may not use this file except in compliance with the License. 13 You may obtain a copy of the License at 14 15 http://www.apache.org/licenses/LICENSE-2.0 16 17 Unless required by applicable law or agreed to in writing, software 18 distributed under the License is distributed on an "AS IS" BASIS, 19 WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 20 See the License for the specific language governing permissions and 21 limitations under the License. 22 --> 23 24 25 <p><em>2016 10 3 | 2016 10 4 </em> 26 </p> 27 <p> 28 Android Android (OTA) Nexus <a href="https://developers.google.com/android/nexus/images">Google Developers </a> Nexus 2016 10 5 <a href="https://support.google.com/nexus/answer/4457705#nexus_devices"></a> Nexus 2016 10 5 OTA 29 </p> 30 <p> 31 2016 9 6 Android (AOSP) AOSP 32 </p> 33 <p> 34 35 </p> 36 <p> 37 <a href="#mitigations">Android Google </a> <a href="/security/enhancements/index.html">Android </a> <a href="https://developer.android.com/training/safetynet/index.html">SafetyNet</a> Android 38 </p> 39 <p> 40 41 </p> 42 <h2 id="announcements"></h2> 43 <ul> 44 <li> Android Android <a href="#common-questions-and-answers"></a> 45 <ul> 46 <li><strong>2016-10-01</strong> 2016-10-01</li> 47 <li><strong>2016-10-05</strong> 2016-10-01 2016-10-05</li> 48 </ul> 49 </li> 50 <li> Nexus 2016 10 5 OTA </li> 51 </ul> 52 <h2 id="security-vulnerability-summary"></h2> 53 <p> 54 CVE Nexus <a href="/security/overview/updates-resources.html#severity"></a> 55 </p> 56 <h3 id="2016-10-01-security-patch-level-vulnerability-summary">2016-10-01 - </h3> 57 <p> 58 2016-10-01 59 </p> 60 <table> 61 <col width="55%"> 62 <col width="20%"> 63 <col width="13%"> 64 <col width="12%"> 65 <tr> 66 <th></th> 67 <th>CVE</th> 68 <th></th> 69 <th> Nexus </th> 70 </tr> 71 <tr> 72 <td>ServiceManager </td> 73 <td>CVE-2016-3900</td> 74 <td></td> 75 <td></td> 76 </tr> 77 <tr> 78 <td></td> 79 <td>CVE-2016-3908</td> 80 <td></td> 81 <td></td> 82 </tr> 83 <tr> 84 <td>Mediaserver </td> 85 <td>CVE-2016-3909CVE-2016-3910CVE-2016-3913</td> 86 <td></td> 87 <td></td> 88 </tr> 89 <tr> 90 <td>Zygote </td> 91 <td>CVE-2016-3911</td> 92 <td></td> 93 <td></td> 94 </tr> 95 <tr> 96 <td>Framework API </td> 97 <td>CVE-2016-3912</td> 98 <td></td> 99 <td></td> 100 </tr> 101 <tr> 102 <td>Telephony </td> 103 <td>CVE-2016-3914</td> 104 <td></td> 105 <td></td> 106 </tr> 107 <tr> 108 <td></td> 109 <td>CVE-2016-3915CVE-2016-3916</td> 110 <td></td> 111 <td></td> 112 </tr> 113 <tr> 114 <td></td> 115 <td>CVE-2016-3917</td> 116 <td></td> 117 <td></td> 118 </tr> 119 <tr> 120 <td>AOSP </td> 121 <td>CVE-2016-3918</td> 122 <td></td> 123 <td></td> 124 </tr> 125 <tr> 126 <td>WLAN </td> 127 <td>CVE-2016-3882</td> 128 <td></td> 129 <td></td> 130 </tr> 131 <tr> 132 <td>GPS </td> 133 <td>CVE-2016-5348</td> 134 <td></td> 135 <td></td> 136 </tr> 137 <tr> 138 <td>Mediaserver </td> 139 <td>CVE-2016-3920</td> 140 <td></td> 141 <td></td> 142 </tr> 143 <tr> 144 <td>Framework </td> 145 <td>CVE-2016-3921</td> 146 <td></td> 147 <td></td> 148 </tr> 149 <tr> 150 <td>Telephony </td> 151 <td>CVE-2016-3922</td> 152 <td></td> 153 <td></td> 154 </tr> 155 <tr> 156 <td></td> 157 <td>CVE-2016-3923</td> 158 <td></td> 159 <td></td> 160 </tr> 161 <tr> 162 <td>Mediaserver </td> 163 <td>CVE-2016-3924</td> 164 <td></td> 165 <td></td> 166 </tr> 167 <tr> 168 <td>WLAN </td> 169 <td>CVE-2016-3925</td> 170 <td></td> 171 <td></td> 172 </tr> 173 </table> 174 <h3 id="2016-10-05-security-patch-level-vulnerability-summary">2016-10-05 - </h3> 175 <p> 176 2016-10-05 2016-10-01 177 </p> 178 <table> 179 <col width="55%"> 180 <col width="20%"> 181 <col width="13%"> 182 <col width="12%"> 183 <tr> 184 <th></th> 185 <th>CVE</th> 186 <th></th> 187 <th> Nexus </th> 188 </tr> 189 <tr> 190 <td> ASN.1 </td> 191 <td>CVE-2016-0758</td> 192 <td></td> 193 <td></td> 194 </tr> 195 <tr> 196 <td></td> 197 <td>CVE-2016-7117</td> 198 <td></td> 199 <td></td> 200 </tr> 201 <tr> 202 <td>MediaTek </td> 203 <td>CVE-2016-3928</td> 204 <td></td> 205 <td></td> 206 </tr> 207 <tr> 208 <td></td> 209 <td>CVE-2016-5340</td> 210 <td></td> 211 <td></td> 212 </tr> 213 <tr> 214 <td>Qualcomm </td> 215 <td>CVE-2016-3926CVE-2016-3927CVE-2016-3929</td> 216 <td></td> 217 <td></td> 218 </tr> 219 220 <tr> 221 <td>Qualcomm </td> 222 <td>CVE-2016-2059</td> 223 <td></td> 224 <td></td> 225 </tr> 226 <tr> 227 <td>NVIDIA MMC </td> 228 <td>CVE-2016-3930</td> 229 <td></td> 230 <td></td> 231 </tr> 232 <tr> 233 <td>Qualcomm </td> 234 <td>CVE-2016-3931</td> 235 <td></td> 236 <td></td> 237 </tr> 238 <tr> 239 <td>Mediaserver </td> 240 <td>CVE-2016-3932CVE-2016-3933</td> 241 <td></td> 242 <td></td> 243 </tr> 244 <tr> 245 <td>Qualcomm </td> 246 <td>CVE-2016-3903CVE-2016-3934</td> 247 <td></td> 248 <td></td> 249 </tr> 250 <tr> 251 <td>Qualcomm </td> 252 <td>CVE-2015-8951</td> 253 <td></td> 254 <td></td> 255 </tr> 256 <tr> 257 <td>Qualcomm </td> 258 <td>CVE-2016-3901CVE-2016-3935</td> 259 <td></td> 260 <td></td> 261 </tr> 262 <tr> 263 <td>MediaTek </td> 264 <td>CVE-2016-3936CVE-2016-3937</td> 265 <td></td> 266 <td></td> 267 </tr> 268 <tr> 269 <td>Qualcomm </td> 270 <td>CVE-2016-3938CVE-2016-3939</td> 271 <td></td> 272 <td></td> 273 </tr> 274 <tr> 275 <td>Synaptics </td> 276 <td>CVE-2016-3940CVE-2016-6672</td> 277 <td></td> 278 <td></td> 279 </tr> 280 <tr> 281 <td>NVIDIA </td> 282 <td>CVE-2016-6673</td> 283 <td></td> 284 <td></td> 285 </tr> 286 <tr> 287 <td>system_server </td> 288 <td>CVE-2016-6674</td> 289 <td></td> 290 <td></td> 291 </tr> 292 <tr> 293 <td>Qualcomm WLAN </td> 294 <td>CVE-2016-3905CVE-2016-6675CVE-2016-6676CVE-2016-5342</td> 295 <td></td> 296 <td></td> 297 </tr> 298 <tr> 299 <td></td> 300 <td>CVE-2015-8955</td> 301 <td></td> 302 <td></td> 303 </tr> 304 <tr> 305 <td> ION </td> 306 <td>CVE-2015-8950</td> 307 <td></td> 308 <td></td> 309 </tr> 310 <tr> 311 <td>NVIDIA GPU </td> 312 <td>CVE-2016-6677</td> 313 <td></td> 314 <td></td> 315 </tr> 316 <tr> 317 <td>Qualcomm </td> 318 <td>CVE-2015-0572</td> 319 <td></td> 320 <td></td> 321 </tr> 322 <tr> 323 <td>Qualcomm </td> 324 <td>CVE-2016-3860</td> 325 <td></td> 326 <td></td> 327 </tr> 328 <tr> 329 <td>Motorola USBNet </td> 330 <td>CVE-2016-6678</td> 331 <td></td> 332 <td></td> 333 </tr> 334 <tr> 335 <td>Qualcomm </td> 336 <td>CVE-2016-6679CVE-2016-3902CVE-2016-6680CVE-2016-6681CVE-2016-6682</td> 337 <td></td> 338 <td></td> 339 </tr> 340 <tr> 341 <td></td> 342 <td>CVE-2016-6683CVE-2016-6684CVE-2015-8956CVE-2016-6685</td> 343 <td></td> 344 <td></td> 345 </tr> 346 <tr> 347 <td>NVIDIA </td> 348 <td>CVE-2016-6686CVE-2016-6687CVE-2016-6688</td> 349 <td></td> 350 <td></td> 351 </tr> 352 <tr> 353 <td></td> 354 <td>CVE-2016-6689</td> 355 <td></td> 356 <td></td> 357 </tr> 358 <tr> 359 <td></td> 360 <td>CVE-2016-5696</td> 361 <td></td> 362 <td></td> 363 </tr> 364 <tr> 365 <td></td> 366 <td>CVE-2016-6690</td> 367 <td></td> 368 <td></td> 369 </tr> 370 <tr> 371 <td>Qualcomm </td> 372 <td>CVE-2016-6691CVE-2016-6692CVE-2016-6693CVE-2016-6694CVE-2016-6695CVE-2016-6696CVE-2016-5344CVE-2016-5343</td> 373 <td></td> 374 <td></td> 375 </tr> 376 </table> 377 378 <h2 id="mitigations">Android Google </h2> 379 <p> 380 <a href="/security/enhancements/index.html">Android </a> SafetyNet Android 381 </p> 382 <ul> 383 <li> Android Android Android</li> 384 <li>Android <a href="http://static.googleusercontent.com/media/source.android.com/en//security/reports/Google_Android_Security_2015_Report_Final.pdf"> SafetyNet</a> <a href="http://static.googleusercontent.com/media/source.android.com/en//security/reports/Google_Android_Security_PHA_classifications.pdf"></a> <a href="http://www.android.com/gms">Google </a> Google Play Google Play Root Root </li> 385 <li> Google Messenger mediaserver </li> 386 </ul> 387 <h2 id="acknowledgements"></h2> 388 <p> 389 </p> 390 <ul> 391 <li>Andre Teixeira RizzoCVE-2016-3882</li> 392 <li>Andrea BiondoCVE-2016-3921</li> 393 <li>Copperhead Security Daniel MicayCVE-2016-3922</li> 394 <li>Google <a href="https://github.com/google/syzkaller">Dmitry Vyukov</a>CVE-2016-7117</li> 395 <li>dosomderCVE-2016-3931</li> 396 <li>CVE-2016-3920</li> 397 <li> 360 IceSword Gengjia Chen (<a href="https://twitter.com/chengjia4574">@chengjia4574</a>) <a href="http://weibo.com/jfpan">pjf</a>CVE-2016-6690CVE-2016-3901CVE-2016-6672CVE-2016-3940CVE-2016-3935</li> 398 <li> <a href="mailto:hzhan033 (a] ucr.edu">Hang Zhang</a><a href="mailto:dshe002 (a] ucr.edu">Dongdong She</a> <a href="mailto:zhiyunq (a] cs.ucr.edu">Zhiyun Qian</a>CVE-2015-8950</li> 399 <li> 360 Alpha Hao ChenCVE-2016-3860</li> 400 <li>Google Project Zero Jann HornCVE-2016-3900CVE-2016-3885</li> 401 <li><a href="http://keybase.io/jasonrogena">Jason Rogena</a>CVE-2016-3917</li> 402 <li> 360 IceSword Jianqiang Zhao (<a href="https://twitter.com/jianqiangzhao">@jianqiangzhao</a>) <a href="http://weibo.com/jfpan">pjf</a>CVE-2016-6688CVE-2016-6677CVE-2016-6673CVE-2016-6687CVE-2016-6686CVE-2016-6681CVE-2016-6682CVE-2016-3930</li> 403 <li>Joshua Drake (<a href="https://twitter.com/jduck">@jduck</a>)CVE-2016-3920</li> 404 <li>Google Maciej SzawowskiCVE-2016-3905</li> 405 <li>Google Project Zero Mark BrandCVE-2016-6689</li> 406 <li><a href="https://github.com/michalbednarski">Micha Bednarski</a>CVE-2016-3914CVE-2016-6674CVE-2016-3911CVE-2016-3912</li> 407 <li><a href="http://c0reteam.org">C0RE </a> Mingjian Zhou (<a href="https://twitter.com/Mingjian_Zhou">@Mingjian_Zhou</a>)Chiachih Wu (<a href="https://twitter.com/chiachih_wu">@chiachih_wu</a>) Xuxian JiangCVE-2016-3933CVE-2016-3932</li> 408 <li>Nightwatch Cybersecurity Research (<a href="https://twitter.com/nightwatchcyber">@nightwatchcyber</a>)CVE-2016-5348</li> 409 <li>IBM X-Force Roee HayCVE-2016-6678</li> 410 <li>Google Samuel TanCVE-2016-3925</li> 411 <li><a href="mailto:sbauer (a] plzdonthack.me">Scott Bauer</a> (<a href="https://twitter.com/ScottyBauer1">@ScottyBauer1</a>)CVE-2016-3936CVE-2016-3928CVE-2016-3902CVE-2016-3937CVE-2016-6696</li> 412 <li> Seven Shen (<a href="https://twitter.com/lingtongshen">@lingtongshen</a>)CVE-2016-6685CVE-2016-6683CVE-2016-6680CVE-2016-6679CVE-2016-3903CVE-2016-6693CVE-2016-6694CVE-2016-6695</li> 413 <li><a href="http://c0reteam.org">C0RE </a> <a href="mailto:vancouverdou (a] gmail.com">Wenke Dou</a>Mingjian Zhou (<a href="https://twitter.com/Mingjian_Zhou">@Mingjian_Zhou</a>)Chiachih Wu (<a href="https://twitter.com/chiachih_wu">@chiachih_wu</a>) Xuxian JiangCVE-2016-3909</li> 414 <li> 360 Alpha Wenlin Yang (<a href="https://twitter.com/oldfresher">@oldfresher</a>)CVE-2016-3918</li> 415 <li><a href="http://blog.trendmicro.com/trendlabs-security-intelligence/author/wishwu/"></a><a href="http://weibo.com/wishlinux"></a> (<a href="https://twitter.com/wish_wu">@wish_wu)</a>CVE-2016-3924CVE-2016-3915CVE-2016-3916CVE-2016-3910</li> 416 <li> SCC Eagleye Yong ShiCVE-2016-3938</li> 417 <li><a href="http://www.cmcm.com"></a>Zhanpeng Zhao(<a href="https://twitter.com/0xr0ot">@0xr0ot</a>)CVE-2016-3908</li> 418 </ul> 419 420 <h2 id="2016-10-01-security-patch-level-vulnerability-details">2016-10-01 - </h2> 421 <p> 422 <a href="#2016-10-01-security-patch-level-vulnerability-summary">2016-10-01 - </a> CVE Nexus AOSP Bug ID AOSP Bug Bug ID </p> 423 <h3 id="eopv-in-servicemanager">ServiceManager </h3> 424 <p> 425 ServiceManager system_server 426 </p> 427 <table> 428 <col width="18%"> 429 <col width="16%"> 430 <col width="10%"> 431 <col width="19%"> 432 <col width="19%"> 433 <col width="17%"> 434 <tr> 435 <th>CVE</th> 436 <th></th> 437 <th></th> 438 <th> Nexus </th> 439 <th> AOSP </th> 440 <th></th> 441 </tr> 442 <tr> 443 <td>CVE-2016-3900</td> 444 <td><a href="https://android.googlesource.com/platform/frameworks/native/+/d3c6ce463ac91ecbeb2128beb475d31d3ca6ef42">A-29431260</a> [<a href="https://android.googlesource.com/platform/frameworks/native/+/047eec456943dc082e33220d28abb7df4e089f69">2</a>]</td> 445 <td></td> 446 <td> Nexus </td> 447 <td>5.0.25.1.16.06.0.17.0</td> 448 <td>2016 6 15 </td> 449 </tr> 450 </table> 451 <h3 id="eopv-in-lock-settings-service"></h3> 452 <p> 453 PIN 454 </p> 455 <table> 456 <col width="18%"> 457 <col width="16%"> 458 <col width="10%"> 459 <col width="19%"> 460 <col width="19%"> 461 <col width="17%"> 462 <tr> 463 <th>CVE</th> 464 <th></th> 465 <th></th> 466 <th> Nexus </th> 467 <th> AOSP </th> 468 <th></th> 469 </tr> 470 <tr> 471 <td>CVE-2016-3908</td> 472 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/96daf7d4893f614714761af2d53dfb93214a32e4">A-30003944</a> 473 </td> 474 <td></td> 475 <td> Nexus </td> 476 <td>6.06.0.17.0</td> 477 <td>2016 7 6 </td> 478 </tr> 479 </table> 480 <h3 id="eopv-in-mediaserver">Mediaserver </h3> 481 <p> 482 Mediaserver 483 </p> 484 <table> 485 <col width="18%"> 486 <col width="16%"> 487 <col width="10%"> 488 <col width="19%"> 489 <col width="19%"> 490 <col width="17%"> 491 <tr> 492 <th>CVE</th> 493 <th></th> 494 <th></th> 495 <th> Nexus </th> 496 <th> AOSP </th> 497 <th></th> 498 </tr> 499 <tr> 500 <td>CVE-2016-3909</td> 501 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/d4271b792bdad85a80e2b83ab34c4b30b74f53ec">A-30033990</a> [<a href="https://android.googlesource.com/platform/frameworks/av/+/c48ef757cc50906e8726a3bebc3b60716292cdba">2</a>]</td> 502 <td></td> 503 <td> Nexus </td> 504 <td>4.4.45.0.25.1.16.06.0.17.0</td> 505 <td>2016 7 8 </td> 506 </tr> 507 <tr> 508 <td>CVE-2016-3910</td> 509 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/035cb12f392860113dce96116a5150e2fde6f0cc">A-30148546</a> 510 </td> 511 <td></td> 512 <td> Nexus </td> 513 <td>5.0.25.1.16.06.0.17.0</td> 514 <td>2016 7 13 </td> 515 </tr> 516 <tr> 517 <td>CVE-2016-3913</td> 518 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/0c3b93c8c2027e74af642967eee5c142c8fd185d">A-30204103</a> 519 </td> 520 <td></td> 521 <td> Nexus </td> 522 <td>4.4.45.0.25.1.16.06.0.17.0</td> 523 <td>2016 7 18 </td> 524 </tr> 525 </table> 526 <h3 id="eopv-in-zygote-process">Zygote </h3> 527 <p> 528 Zygote 529 </p> 530 <table> 531 <col width="18%"> 532 <col width="16%"> 533 <col width="10%"> 534 <col width="19%"> 535 <col width="19%"> 536 <col width="17%"> 537 <tr> 538 <th>CVE</th> 539 <th></th> 540 <th></th> 541 <th> Nexus </th> 542 <th> AOSP </th> 543 <th></th> 544 </tr> 545 <tr> 546 <td>CVE-2016-3911</td> 547 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/2c7008421cb67f5d89f16911bdbe36f6c35311ad">A-30143607</a> 548 </td> 549 <td></td> 550 <td> Nexus </td> 551 <td>4.4.45.0.25.1.16.06.0.17.0</td> 552 <td>2016 7 12 </td> 553 </tr> 554 </table> 555 <h3 id="eopv-in-framework-apis">Framework API </h3> 556 <p> 557 Framework API 558 </p> 559 <table> 560 <col width="18%"> 561 <col width="16%"> 562 <col width="10%"> 563 <col width="19%"> 564 <col width="19%"> 565 <col width="17%"> 566 <tr> 567 <th>CVE</th> 568 <th></th> 569 <th></th> 570 <th> Nexus </th> 571 <th> AOSP </th> 572 <th></th> 573 </tr> 574 <tr> 575 <td>CVE-2016-3912</td> 576 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/6c049120c2d749f0c0289d822ec7d0aa692f55c5">A-30202481</a> 577 </td> 578 <td></td> 579 <td> Nexus </td> 580 <td>4.4.45.0.25.1.16.06.0.17.0</td> 581 <td>2016 7 17 </td> 582 </tr> 583 </table> 584 <h3 id="eopv-in-telephony">Telephony </h3> 585 <p> 586 Telephony 587 </p> 588 <table> 589 <col width="18%"> 590 <col width="16%"> 591 <col width="10%"> 592 <col width="19%"> 593 <col width="19%"> 594 <col width="17%"> 595 <tr> 596 <th>CVE</th> 597 <th></th> 598 <th></th> 599 <th> Nexus </th> 600 <th> AOSP </th> 601 <th></th> 602 </tr> 603 <tr> 604 <td>CVE-2016-3914</td> 605 <td><a href="https://android.googlesource.com/platform/packages/providers/TelephonyProvider/+/3a3a5d145d380deef2d5b7c3150864cd04be397f">A-30481342</a> 606 </td> 607 <td></td> 608 <td> Nexus </td> 609 <td>4.4.45.0.25.1.16.06.0.17.0</td> 610 <td>2016 7 28 </td> 611 </tr> 612 </table> 613 <h3 id="eopv-in-camera-service"></h3> 614 <p> 615 616 </p> 617 <table> 618 <col width="18%"> 619 <col width="16%"> 620 <col width="10%"> 621 <col width="19%"> 622 <col width="19%"> 623 <col width="17%"> 624 <tr> 625 <th>CVE</th> 626 <th></th> 627 <th></th> 628 <th> Nexus </th> 629 <th> AOSP </th> 630 <th></th> 631 </tr> 632 <tr> 633 <td>CVE-2016-3915</td> 634 <td><a href="https://android.googlesource.com/platform/system/media/+/e9e44f797742f52996ebf307740dad58c28fd9b5">A-30591838</a> 635 </td> 636 <td></td> 637 <td> Nexus </td> 638 <td>4.4.45.0.25.1.16.06.0.17.0</td> 639 <td>2016 8 1 </td> 640 </tr> 641 <tr> 642 <td>CVE-2016-3916</td> 643 <td><a href="https://android.googlesource.com/platform/system/media/+/8e7a2b4d13bff03973dbad2bfb88a04296140433">A-30741779</a> 644 </td> 645 <td></td> 646 <td> Nexus </td> 647 <td>4.4.45.0.25.1.16.06.0.17.0</td> 648 <td>2016 8 2 </td> 649 </tr> 650 </table> 651 <h3 id="eopv-in-fingerprint-login"></h3> 652 <p> 653 654 </p> 655 <table> 656 <col width="18%"> 657 <col width="16%"> 658 <col width="10%"> 659 <col width="19%"> 660 <col width="19%"> 661 <col width="17%"> 662 <tr> 663 <th>CVE</th> 664 <th></th> 665 <th></th> 666 <th> Nexus </th> 667 <th> AOSP </th> 668 <th></th> 669 </tr> 670 <tr> 671 <td>CVE-2016-3917</td> 672 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/f5334952131afa835dd3f08601fb3bced7b781cd">A-30744668</a> 673 </td> 674 <td></td> 675 <td> Nexus </td> 676 <td>6.0.17.0</td> 677 <td>2016 8 5 </td> 678 </tr> 679 </table> 680 <h3 id="information-disclosure-vulnerability-in-aosp-mail">AOSP </h3> 681 <p> 682 AOSP 683 </p> 684 <table> 685 <col width="18%"> 686 <col width="16%"> 687 <col width="10%"> 688 <col width="19%"> 689 <col width="19%"> 690 <col width="17%"> 691 <tr> 692 <th>CVE</th> 693 <th></th> 694 <th></th> 695 <th> Nexus </th> 696 <th> AOSP </th> 697 <th></th> 698 </tr> 699 <tr> 700 <td>CVE-2016-3918</td> 701 <td><a href="https://android.googlesource.com/platform/packages/apps/Email/+/6b2b0bd7c771c698f11d7be89c2c57c8722c7454">A-30745403</a> 702 </td> 703 <td></td> 704 <td> Nexus </td> 705 <td>4.4.45.0.25.1.16.06.0.17.0</td> 706 <td>2016 8 5 </td> 707 </tr> 708 </table> 709 <h3 id="dosv-in-wi-fi">WLAN </h3> 710 <p> 711 WLAN 712 </p> 713 <table> 714 <col width="18%"> 715 <col width="16%"> 716 <col width="10%"> 717 <col width="19%"> 718 <col width="17%"> 719 <col width="19%"> 720 <tr> 721 <th>CVE</th> 722 <th></th> 723 <th></th> 724 <th> Nexus </th> 725 <th> AOSP </th> 726 <th></th> 727 </tr> 728 <tr> 729 <td>CVE-2016-3882</td> 730 <td><a href="https://android.googlesource.com/platform/frameworks/opt/net/wifi/+/35a86eef3c0eef760f7e61c52a343327ba601630">A-29464811</a> 731 </td> 732 <td></td> 733 <td> Nexus </td> 734 <td>6.06.0.17.0</td> 735 <td>2016 6 17 </td> 736 </tr> 737 </table> 738 <h3 id="dosv-in-gps">GPS </h3> 739 <p> 740 GPS 741 </p> 742 <table> 743 <col width="18%"> 744 <col width="16%"> 745 <col width="10%"> 746 <col width="19%"> 747 <col width="19%"> 748 <col width="17%"> 749 <tr> 750 <th>CVE</th> 751 <th></th> 752 <th></th> 753 <th> Nexus </th> 754 <th> AOSP </th> 755 <th></th> 756 </tr> 757 <tr> 758 <td>CVE-2016-5348</td> 759 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/218b813d5bc2d7d3952ea1861c38b4aa944ac59b">A-29555864</a> 760 </td> 761 <td></td> 762 <td> Nexus </td> 763 <td>4.4.45.0.25.1.16.06.0.17.0</td> 764 <td>2016 6 20 </td> 765 </tr> 766 </table> 767 <h3 id="dosv-in-mediaserver">Mediaserver </h3> 768 <p> 769 Mediaserver 770 </p> 771 <table> 772 <col width="18%"> 773 <col width="16%"> 774 <col width="10%"> 775 <col width="19%"> 776 <col width="19%"> 777 <col width="17%"> 778 <tr> 779 <th>CVE</th> 780 <th></th> 781 <th></th> 782 <th> Nexus </th> 783 <th> AOSP </th> 784 <th></th> 785 </tr> 786 <tr> 787 <td>CVE-2016-3920</td> 788 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/6d0249be2275fd4086783f259f4e2c54722a7c55">A-30744884</a> 789 </td> 790 <td></td> 791 <td> Nexus </td> 792 <td>5.0.25.1.16.06.0.17.0</td> 793 <td>2016 8 5 </td> 794 </tr> 795 </table> 796 <h3 id="eopv-in-framework-listener">Framework </h3> 797 <p> 798 Framework 799 </p> 800 <table> 801 <col width="18%"> 802 <col width="16%"> 803 <col width="10%"> 804 <col width="18%"> 805 <col width="20%"> 806 <col width="17%"> 807 <tr> 808 <th>CVE</th> 809 <th></th> 810 <th></th> 811 <th> Nexus </th> 812 <th> AOSP </th> 813 <th></th> 814 </tr> 815 <tr> 816 <td>CVE-2016-3921</td> 817 <td><a href="https://android.googlesource.com/platform/system/core/+/771ab014c24a682b32990da08e87e2f0ab765bd2">A-29831647</a> 818 </td> 819 <td></td> 820 <td> Nexus </td> 821 <td>4.4.45.0.25.1.16.06.0.17.0</td> 822 <td>2016 6 25 </td> 823 </tr> 824 </table> 825 <h3 id="eopv-in-telephony-2">Telephony </h3> 826 <p> 827 Telephony 828 </p> 829 <table> 830 <col width="18%"> 831 <col width="16%"> 832 <col width="10%"> 833 <col width="19%"> 834 <col width="19%"> 835 <col width="17%"> 836 <tr> 837 <th>CVE</th> 838 <th></th> 839 <th></th> 840 <th> Nexus </th> 841 <th> AOSP </th> 842 <th></th> 843 </tr> 844 <tr> 845 <td>CVE-2016-3922</td> 846 <td><a href="https://android.googlesource.com/platform/hardware/ril/+/95610818918f6f11fe7d23aca1380e6c0fac2af0">A-30202619</a> 847 </td> 848 <td></td> 849 <td> Nexus </td> 850 <td>6.06.0.17.0</td> 851 <td>2016 7 17 </td> 852 </tr> 853 </table> 854 <h3 id="eopv-in-accessibility-services"></h3> 855 <p> 856 857 </p> 858 <table> 859 <col width="18%"> 860 <col width="16%"> 861 <col width="10%"> 862 <col width="19%"> 863 <col width="18%"> 864 <col width="18%"> 865 <tr> 866 <th>CVE</th> 867 <th></th> 868 <th></th> 869 <th> Nexus </th> 870 <th> AOSP </th> 871 <th></th> 872 </tr> 873 <tr> 874 <td>CVE-2016-3923</td> 875 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/5f256310187b4ff2f13a7abb9afed9126facd7bc">A-30647115</a> 876 </td> 877 <td></td> 878 <td> Nexus </td> 879 <td>7.0</td> 880 <td>Google </td> 881 </tr> 882 </table> 883 <h3 id="information-disclosure-vulnerability-in-mediaserver">Mediaserver </h3> 884 <p> 885 Mediaserver 886 </p> 887 <table> 888 <col width="18%"> 889 <col width="16%"> 890 <col width="10%"> 891 <col width="18%"> 892 <col width="20%"> 893 <col width="17%"> 894 <tr> 895 <th>CVE</th> 896 <th></th> 897 <th></th> 898 <th> Nexus </th> 899 <th> AOSP </th> 900 <th></th> 901 </tr> 902 <tr> 903 <td>CVE-2016-3924</td> 904 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/c894aa36be535886a8e5ff02cdbcd07dd24618f6">A-30204301</a> 905 </td> 906 <td></td> 907 <td> Nexus </td> 908 <td>4.4.45.0.25.1.16.06.0.17.0</td> 909 <td>2016 7 18 </td> 910 </tr> 911 </table> 912 <h3 id="dosv-in-wi-fi-2">WLAN </h3> 913 <p> 914 WLAN WLAN 915 </p> 916 <table> 917 <col width="18%"> 918 <col width="16%"> 919 <col width="10%"> 920 <col width="19%"> 921 <col width="17%"> 922 <col width="19%"> 923 <tr> 924 <th>CVE</th> 925 <th></th> 926 <th></th> 927 <th> Nexus </th> 928 <th> AOSP </th> 929 <th></th> 930 </tr> 931 <tr> 932 <td>CVE-2016-3925</td> 933 <td><a href="https://android.googlesource.com/platform/frameworks/opt/net/wifi/+/c2905409c20c8692d4396b8531b09e7ec81fa3fb">A-30230534</a> 934 </td> 935 <td></td> 936 <td> Nexus </td> 937 <td>6.06.0.17.0</td> 938 <td>Google </td> 939 </tr> 940 </table> 941 <h2 id="2016-10-05-security-patch-level-vulnerability-details">2016-10-05 - </h2> 942 <p> 943 <a href="#2016-10-05-security-patch-level-vulnerability-summary">2016-10-05 - </a> CVE Nexus AOSP Bug ID AOSP Bug Bug ID </p> 944 <h3 id="remote-code-execution-vulnerability-in-kernel-asn-1-decoder"> ASN.1 </h3> 945 <p> 946 ASN.1 947 </p> 948 <table> 949 <col width="19%"> 950 <col width="20%"> 951 <col width="10%"> 952 <col width="23%"> 953 <col width="17%"> 954 <tr> 955 <th>CVE</th> 956 <th></th> 957 <th></th> 958 <th> Nexus </th> 959 <th></th> 960 </tr> 961 <tr> 962 <td>CVE-2016-0758</td> 963 <td>A-29814470<br> 964 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=23c8a812dc3c621009e4f0e5342aa4e2ede1ceaa"></a></td> 965 <td></td> 966 <td>Nexus 5XNexus 6P</td> 967 <td>2016 5 12 </td> 968 </tr> 969 </table> 970 <h3 id="remote-code-execution-vulnerability-in-kernel-networking-subsystem"></h3> 971 <p> 972 973 </p> 974 <table> 975 <col width="19%"> 976 <col width="20%"> 977 <col width="10%"> 978 <col width="23%"> 979 <col width="17%"> 980 <tr> 981 <th>CVE</th> 982 <th></th> 983 <th></th> 984 <th> Nexus </th> 985 <th></th> 986 </tr> 987 <tr> 988 <td>CVE-2016-7117</td> 989 <td>A-30515201<br> 990 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=34b88a68f26a75e4fded796f1a49c40f82234b7d"></a></td> 991 <td></td> 992 <td> Nexus </td> 993 <td>Google </td> 994 </tr> 995 </table> 996 <h3 id="eopv-in-mediatek-video-driver">MediaTek </h3> 997 <p> 998 MediaTek 999 </p> 1000 <table> 1001 <col width="19%"> 1002 <col width="20%"> 1003 <col width="10%"> 1004 <col width="23%"> 1005 <col width="17%"> 1006 <tr> 1007 <th>CVE</th> 1008 <th></th> 1009 <th></th> 1010 <th> Nexus </th> 1011 <th></th> 1012 </tr> 1013 <tr> 1014 <td>CVE-2016-3928</td> 1015 <td>A-30019362*<br>M-ALPS02829384</td> 1016 <td></td> 1017 <td></td> 1018 <td>2016 7 6 </td> 1019 </tr> 1020 </table> 1021 <p> 1022 * <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> Nexus 1023 </p> 1024 <h3 id="eopv-in-kernel-shared-memory-driver"></h3> 1025 <p> 1026 1027 </p> 1028 <table> 1029 <col width="19%"> 1030 <col width="20%"> 1031 <col width="10%"> 1032 <col width="23%"> 1033 <col width="17%"> 1034 <tr> 1035 <th>CVE</th> 1036 <th></th> 1037 <th></th> 1038 <th> Nexus </th> 1039 <th></th> 1040 </tr> 1041 <tr> 1042 <td>CVE-2016-5340</td> 1043 <td>A-30652312<br> 1044 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.10/commit/?id=06e51489061e5473b4e2035c79dcf7c27a6f75a6">QC-CR#1008948</a></td> 1045 <td></td> 1046 <td>Nexus 5Nexus 5XNexus 6Nexus 6PAndroid One</td> 1047 <td>2016 7 26 </td> 1048 </tr> 1049 </table> 1050 1051 <h3 id="vulnerabilities-in-qc-components"> 1052 Qualcomm </h3> 1053 <p> 1054 Qualcomm 2016 3 2016 4 Qualcomm AMSS 1055 </p> 1056 <table> 1057 <col width="19%"> 1058 <col width="16%"> 1059 <col width="10%"> 1060 <col width="23%"> 1061 <col width="21%"> 1062 <tr> 1063 <th>CVE</th> 1064 <th></th> 1065 <th></th> 1066 <th> Nexus </th> 1067 <th></th> 1068 </tr> 1069 <tr> 1070 <td>CVE-2016-3926</td> 1071 <td>A-28823953*</td> 1072 <td></td> 1073 <td>Nexus 5Nexus 5XNexus 6Nexus 6P</td> 1074 <td>Qualcomm </td> 1075 </tr> 1076 <tr> 1077 <td>CVE-2016-3927</td> 1078 <td>A-28823244*</td> 1079 <td></td> 1080 <td>Nexus 5XNexus 6P</td> 1081 <td>Qualcomm </td> 1082 </tr> 1083 <tr> 1084 <td>CVE-2016-3929</td> 1085 <td>A-28823675*</td> 1086 <td></td> 1087 <td>Nexus 5XNexus 6P</td> 1088 <td>Qualcomm </td> 1089 </tr> 1090 </table> 1091 <p> 1092 * <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> Nexus 1093 </p> 1094 <h3 id="eopv-in-qualcomm-networking-component">Qualcomm </h3> 1095 <p> 1096 Qualcomm 1097 </p> 1098 <table> 1099 <col width="19%"> 1100 <col width="20%"> 1101 <col width="10%"> 1102 <col width="23%"> 1103 <col width="17%"> 1104 <tr> 1105 <th>CVE</th> 1106 <th></th> 1107 <th></th> 1108 <th> Nexus </th> 1109 <th></th> 1110 </tr> 1111 <tr> 1112 <td>CVE-2016-2059</td> 1113 <td>A-27045580<br> 1114 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=9e8bdd63f7011dff5523ea435433834b3702398d">QC-CR#974577</a></td> 1115 <td></td> 1116 <td>Nexus 5Nexus 5XNexus 6Nexus 6PAndroid One</td> 1117 <td>2016 2 4 </td> 1118 </tr> 1119 </table> 1120 <h3 id="eopv-in-nvidia-mmc-test-driver">NVIDIA MMC </h3> 1121 <p> 1122 NVIDIA MMC 1123 </p> 1124 <table> 1125 <col width="19%"> 1126 <col width="20%"> 1127 <col width="10%"> 1128 <col width="23%"> 1129 <col width="17%"> 1130 <tr> 1131 <th>CVE</th> 1132 <th></th> 1133 <th></th> 1134 <th> Nexus </th> 1135 <th></th> 1136 </tr> 1137 <tr> 1138 <td>CVE-2016-3930</td> 1139 <td>A-28760138*<br>N-CVE-2016-3930</td> 1140 <td></td> 1141 <td>Nexus 9</td> 1142 <td>2016 5 12 </td> 1143 </tr> 1144 </table> 1145 <p> 1146 * <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> Nexus 1147 </p> 1148 <h3 id="eopv-in-qsee-communicator-driver">Qualcomm QSEE </h3> 1149 <p> 1150 Qualcomm QSEE 1151 </p> 1152 <table> 1153 <col width="19%"> 1154 <col width="20%"> 1155 <col width="10%"> 1156 <col width="23%"> 1157 <col width="17%"> 1158 <tr> 1159 <th>CVE</th> 1160 <th></th> 1161 <th></th> 1162 <th> Nexus </th> 1163 <th></th> 1164 </tr> 1165 <tr> 1166 <td>CVE-2016-3931</td> 1167 <td>A-29157595<br> 1168 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=e80b88323f9ff0bb0e545f209eec08ec56fca816">QC-CR#1036418</a></td> 1169 <td></td> 1170 <td>Nexus 5XNexus 6Nexus 6PAndroid One</td> 1171 <td>2016 6 4 </td> 1172 </tr> 1173 </table> 1174 <h3 id="eopv-in-mediaserver-2">Mediaserver </h3> 1175 <p> 1176 Mediaserver 1177 </p> 1178 <table> 1179 <col width="19%"> 1180 <col width="20%"> 1181 <col width="10%"> 1182 <col width="23%"> 1183 <col width="17%"> 1184 <tr> 1185 <th>CVE</th> 1186 <th></th> 1187 <th></th> 1188 <th> Nexus </th> 1189 <th></th> 1190 </tr> 1191 <tr> 1192 <td>CVE-2016-3932</td> 1193 <td>A-29161895<br>M-ALPS02770870</td> 1194 <td></td> 1195 <td></td> 1196 <td>2016 6 6 </td> 1197 </tr> 1198 <tr> 1199 <td>CVE-2016-3933</td> 1200 <td>A-29421408*<br>N-CVE-2016-3933</td> 1201 <td></td> 1202 <td>Nexus 9Pixel C</td> 1203 <td>2016 6 14 </td> 1204 </tr> 1205 </table> 1206 <p> 1207 * <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> Nexus 1208 </p> 1209 <h3 id="eopv-in-qualcomm-camera-driver">Qualcomm </h3> 1210 <p> 1211 Qualcomm 1212 </p> 1213 <table> 1214 <col width="19%"> 1215 <col width="20%"> 1216 <col width="10%"> 1217 <col width="23%"> 1218 <col width="17%"> 1219 <tr> 1220 <th>CVE</th> 1221 <th></th> 1222 <th></th> 1223 <th> Nexus </th> 1224 <th></th> 1225 </tr> 1226 <tr> 1227 <td>CVE-2016-3903</td> 1228 <td>A-29513227<br> 1229 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?id=b8874573428e8ce024f57c6242d662fcca5e5d55">QC-CR#1040857</a></td> 1230 <td></td> 1231 <td>Nexus 5Nexus 5XNexus 6Nexus 6PAndroid One</td> 1232 <td>2016 6 20 </td> 1233 </tr> 1234 <tr> 1235 <td>CVE-2016-3934</td> 1236 <td>A-30102557<br> 1237 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?id=27fbeb6b025d5d46ccb0497cbed4c6e78ed1c5cc">QC-CR#789704</a></td> 1238 <td></td> 1239 <td>Nexus 5Nexus 5XNexus 6Nexus 6PAndroid One</td> 1240 <td>2016 7 12 </td> 1241 </tr> 1242 </table> 1243 <h3 id="eopv-in-qualcomm-sound-driver">Qualcomm </h3> 1244 <p> 1245 Qualcomm 1246 </p> 1247 <table> 1248 <col width="19%"> 1249 <col width="20%"> 1250 <col width="10%"> 1251 <col width="23%"> 1252 <col width="17%"> 1253 <tr> 1254 <th>CVE</th> 1255 <th></th> 1256 <th></th> 1257 <th> Nexus </th> 1258 <th></th> 1259 </tr> 1260 <tr> 1261 <td>CVE-2015-8951</td> 1262 <td>A-30142668<br> 1263 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?h=APSS.FSM.3.0&id=ccff36b07bfc49efc77b9f1b55ed2bf0900b1d5b">QC-CR#948902</a><br>QC-CR#948902</td> 1264 <td></td> 1265 <td>Nexus 5XNexus 6PAndroid One</td> 1266 <td>2016 6 20 </td> 1267 </tr> 1268 </table> 1269 <h3 id="eopv-in-qualcomm-crypto-engine-driver">Qualcomm </h3> 1270 <p> 1271 Qualcomm 1272 </p> 1273 <table> 1274 <col width="19%"> 1275 <col width="20%"> 1276 <col width="10%"> 1277 <col width="23%"> 1278 <col width="17%"> 1279 <tr> 1280 <th>CVE</th> 1281 <th></th> 1282 <th></th> 1283 <th> Nexus </th> 1284 <th></th> 1285 </tr> 1286 <tr> 1287 <td>CVE-2016-3901</td> 1288 <td>A-29999161<br> 1289 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=5f69ccf3b011c1d14a1b1b00dbaacf74307c9132">QC-CR#1046434</a></td> 1290 <td></td> 1291 <td>Nexus 5XNexus 6Nexus 6PAndroid One</td> 1292 <td>2016 7 6 </td> 1293 </tr> 1294 <tr> 1295 <td>CVE-2016-3935</td> 1296 <td>A-29999665<br> 1297 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=5f69ccf3b011c1d14a1b1b00dbaacf74307c9132">QC-CR#1046507</a></td> 1298 <td></td> 1299 <td>Nexus 5XNexus 6Nexus 6PAndroid One</td> 1300 <td>2016 7 6 </td> 1301 </tr> 1302 </table> 1303 <h3 id="eopv-in-mediatek-video-driver-2">MediaTek </h3> 1304 <p> 1305 MediaTek 1306 </p> 1307 <table> 1308 <col width="19%"> 1309 <col width="20%"> 1310 <col width="10%"> 1311 <col width="23%"> 1312 <col width="17%"> 1313 <tr> 1314 <th>CVE</th> 1315 <th></th> 1316 <th></th> 1317 <th> Nexus </th> 1318 <th></th> 1319 </tr> 1320 <tr> 1321 <td>CVE-2016-3936</td> 1322 <td>A-30019037*<br>M-ALPS02829568</td> 1323 <td></td> 1324 <td></td> 1325 <td>2016 7 6 </td> 1326 </tr> 1327 <tr> 1328 <td>CVE-2016-3937</td> 1329 <td>A-30030994*<br>M-ALPS02834874</td> 1330 <td></td> 1331 <td></td> 1332 <td>2016 7 7 </td> 1333 </tr> 1334 </table> 1335 <p> 1336 * <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> Nexus 1337 </p> 1338 <h3 id="eopv-in-qualcomm-video-driver">Qualcomm </h3> 1339 <p> 1340 Qualcomm 1341 </p> 1342 <table> 1343 <col width="19%"> 1344 <col width="20%"> 1345 <col width="10%"> 1346 <col width="23%"> 1347 <col width="17%"> 1348 <tr> 1349 <th>CVE</th> 1350 <th></th> 1351 <th></th> 1352 <th> Nexus </th> 1353 <th></th> 1354 </tr> 1355 <tr> 1356 <td>CVE-2016-3938</td> 1357 <td>A-30019716<br> 1358 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=467c81f9736b1ebc8d4ba70f9221bba02425ca10">QC-CR#1049232</a></td> 1359 <td></td> 1360 <td>Nexus 5XNexus 6Nexus 6PAndroid One</td> 1361 <td>2016 7 7 </td> 1362 </tr> 1363 <tr> 1364 <td>CVE-2016-3939</td> 1365 <td>A-30874196<br> 1366 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=e0bb18771d6ca71db2c2a61226827059be3fa424">QC-CR#1001224</a></td> 1367 <td></td> 1368 <td>Nexus 5XNexus 6Nexus 6PAndroid One</td> 1369 <td>2016 8 15 </td> 1370 </tr> 1371 </table> 1372 <h3 id="eopv-in-synaptics-touchscreen-driver">Synaptics </h3> 1373 <p> 1374 Synaptics 1375 </p> 1376 <table> 1377 <col width="19%"> 1378 <col width="20%"> 1379 <col width="10%"> 1380 <col width="23%"> 1381 <col width="17%"> 1382 <tr> 1383 <th>CVE</th> 1384 <th></th> 1385 <th></th> 1386 <th> Nexus </th> 1387 <th></th> 1388 </tr> 1389 <tr> 1390 <td>CVE-2016-3940</td> 1391 <td>A-30141991*</td> 1392 <td></td> 1393 <td>Nexus 6PAndroid One</td> 1394 <td>2016 7 12 </td> 1395 </tr> 1396 <tr> 1397 <td>CVE-2016-6672</td> 1398 <td>A-30537088*</td> 1399 <td></td> 1400 <td>Nexus 5X</td> 1401 <td>2016 7 31 </td> 1402 </tr> 1403 </table> 1404 <p> 1405 * <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> Nexus 1406 </p> 1407 <h3 id="eopv-in-nvidia-camera-driver">NVIDIA </h3> 1408 <p> 1409 NVIDIA 1410 </p> 1411 <table> 1412 <col width="19%"> 1413 <col width="20%"> 1414 <col width="10%"> 1415 <col width="23%"> 1416 <col width="17%"> 1417 <tr> 1418 <th>CVE</th> 1419 <th></th> 1420 <th></th> 1421 <th> Nexus </th> 1422 <th></th> 1423 </tr> 1424 <tr> 1425 <td>CVE-2016-6673</td> 1426 <td>A-30204201*<br>N-CVE-2016-6673</td> 1427 <td></td> 1428 <td>Nexus 9</td> 1429 <td>2016 7 17 </td> 1430 </tr> 1431 </table> 1432 <p> 1433 * <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> Nexus 1434 </p> 1435 <h3 id="eopv-in-system_server">system_server </h3> 1436 <p> 1437 system_server 1438 </p> 1439 <table> 1440 <col width="19%"> 1441 <col width="20%"> 1442 <col width="10%"> 1443 <col width="23%"> 1444 <col width="17%"> 1445 <tr> 1446 <th>CVE</th> 1447 <th></th> 1448 <th></th> 1449 <th> Nexus </th> 1450 <th></th> 1451 </tr> 1452 <tr> 1453 <td>CVE-2016-6674</td> 1454 <td>A-30445380*</td> 1455 <td></td> 1456 <td> Nexus </td> 1457 <td>2016 7 26 </td> 1458 </tr> 1459 </table> 1460 <p> 1461 * <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> Nexus 1462 </p> 1463 <h3 id="eopv-in-qualcomm-wi-fi-driver">Qualcomm WLAN </h3> 1464 <p> 1465 Qualcomm WLAN 1466 </p> 1467 <table> 1468 <col width="19%"> 1469 <col width="20%"> 1470 <col width="10%"> 1471 <col width="23%"> 1472 <col width="17%"> 1473 <tr> 1474 <th>CVE</th> 1475 <th></th> 1476 <th></th> 1477 <th> Nexus </th> 1478 <th></th> 1479 </tr> 1480 <tr> 1481 <td>CVE-2016-3905</td> 1482 <td>A-28061823<br> 1483 <a href="https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-2.0/commit/?id=b5112838eb91b71eded4b5ee37338535784e0aef">QC-CR#1001449</a></td> 1484 <td></td> 1485 <td>Nexus 5X</td> 1486 <td>Google </td> 1487 </tr> 1488 <tr> 1489 <td>CVE-2016-6675</td> 1490 <td>A-30873776<br> 1491 <a href="https://source.codeaurora.org/quic/la//platform/vendor/qcom-opensource/wlan/prima/commit/?id=1353fa0bd0c78427f3ae7d9bde7daeb75bd01d09">QC-CR#1000861</a></td> 1492 <td></td> 1493 <td>Nexus 5XAndroid One</td> 1494 <td>2016 8 15 </td> 1495 </tr> 1496 <tr> 1497 <td>CVE-2016-6676</td> 1498 <td>A-30874066<br> 1499 <a href="https://source.codeaurora.org/quic/la//platform/vendor/qcom-opensource/wlan/qcacld-2.0/commit/?id=6ba9136879232442a182996427e5c88e5a7512a8">QC-CR#1000853</a></td> 1500 <td></td> 1501 <td>Nexus 5XAndroid One</td> 1502 <td>2016 8 15 </td> 1503 </tr> 1504 <tr> 1505 <td>CVE-2016-5342</td> 1506 <td>A-30878283<br> 1507 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=579e796cb089324c55e0e689a180575ba81b23d9">QC-CR#1032174</a></td> 1508 <td></td> 1509 <td>Android One</td> 1510 <td>2016 8 15 </td> 1511 </tr> 1512 </table> 1513 <h3 id="eopv-in-kernel-performance-subsystem"></h3> 1514 <p> 1515 1516 </p> 1517 <table> 1518 <col width="19%"> 1519 <col width="20%"> 1520 <col width="10%"> 1521 <col width="23%"> 1522 <col width="17%"> 1523 <tr> 1524 <th>CVE</th> 1525 <th></th> 1526 <th></th> 1527 <th> Nexus </th> 1528 <th></th> 1529 </tr> 1530 <tr> 1531 <td>CVE-2015-8955</td> 1532 <td>A-29508816<br> 1533 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=8fff105e13041e49b82f92eef034f363a6b1c071"></a></td> 1534 <td></td> 1535 <td>Nexus 5XNexus 6PPixel CAndroid One</td> 1536 <td>Google </td> 1537 </tr> 1538 </table> 1539 <h3 id="information-disclosure-vulnerability-in-kernel-ion-subsystem"> ION </h3> 1540 <p> 1541 ION 1542 </p> 1543 <table> 1544 <col width="19%"> 1545 <col width="20%"> 1546 <col width="10%"> 1547 <col width="23%"> 1548 <col width="17%"> 1549 <tr> 1550 <th>CVE</th> 1551 <th></th> 1552 <th></th> 1553 <th> Nexus </th> 1554 <th></th> 1555 </tr> 1556 <tr> 1557 <td>CVE-2015-8950</td> 1558 <td>A-29795245<br> 1559 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?id=6e2c437a2d0a85d90d3db85a7471f99764f7bbf8">QC-CR#1041735</a></td> 1560 <td></td> 1561 <td>Nexus 5Nexus 5XNexus 6Nexus 6P</td> 1562 <td>2016 5 12 </td> 1563 </tr> 1564 </table> 1565 <h3 id="information-disclosure-vulnerability-in-nvidia-gpu-driver">NVIDIA GPU </h3> 1566 <p> 1567 NVIDIA GPU 1568 </p> 1569 <table> 1570 <col width="19%"> 1571 <col width="20%"> 1572 <col width="10%"> 1573 <col width="23%"> 1574 <col width="17%"> 1575 <tr> 1576 <th>CVE</th> 1577 <th></th> 1578 <th></th> 1579 <th> Nexus </th> 1580 <th></th> 1581 </tr> 1582 <tr> 1583 <td>CVE-2016-6677</td> 1584 <td>A-30259955*<br>N-CVE-2016-6677</td> 1585 <td></td> 1586 <td>Nexus 9</td> 1587 <td>2016 7 19 </td> 1588 </tr> 1589 </table> 1590 <p> 1591 * <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> Nexus 1592 </p> 1593 <h3 id="eopv-in-qualcomm-character-driver">Qualcomm </h3> 1594 <p> 1595 Qualcomm 1596 </p> 1597 <table> 1598 <col width="19%"> 1599 <col width="20%"> 1600 <col width="10%"> 1601 <col width="23%"> 1602 <col width="17%"> 1603 <tr> 1604 <th>CVE</th> 1605 <th></th> 1606 <th></th> 1607 <th> Nexus </th> 1608 <th></th> 1609 </tr> 1610 <tr> 1611 <td>CVE-2015-0572</td> 1612 <td>A-29156684<br> 1613 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?id=34ad3d34fbff11b8e1210b9da0dac937fb956b61">QC-CR#848489</a></td> 1614 <td></td> 1615 <td>Nexus 5XNexus 6P</td> 1616 <td>2016 5 28 </td> 1617 </tr> 1618 </table> 1619 <h3 id="information-disclosure-vulnerability-in-qualcomm-sound-driver">Qualcomm </h3> 1620 <p> 1621 Qualcomm 1622 </p> 1623 <table> 1624 <col width="19%"> 1625 <col width="20%"> 1626 <col width="10%"> 1627 <col width="23%"> 1628 <col width="17%"> 1629 <tr> 1630 <th>CVE</th> 1631 <th></th> 1632 <th></th> 1633 <th> Nexus </th> 1634 <th></th> 1635 </tr> 1636 <tr> 1637 <td>CVE-2016-3860</td> 1638 <td>A-29323142<br> 1639 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/diff/sound/soc/msm/qdsp6v2/audio_calibration.c?id=528976f54be246ec93a71ac53aa4faf3e3791c48">QC-CR#1038127</a></td> 1640 <td></td> 1641 <td>Nexus 5XNexus 6PAndroid One</td> 1642 <td>2016 6 13 </td> 1643 </tr> 1644 </table> 1645 <h3 id="information-disclosure-vulnerability-in-motorola-usbnet-driver">Motorola USBNet </h3> 1646 <p> 1647 Motorola USBNet 1648 </p> 1649 <table> 1650 <col width="19%"> 1651 <col width="20%"> 1652 <col width="10%"> 1653 <col width="23%"> 1654 <col width="17%"> 1655 <tr> 1656 <th>CVE</th> 1657 <th></th> 1658 <th></th> 1659 <th> Nexus </th> 1660 <th></th> 1661 </tr> 1662 <tr> 1663 <td>CVE-2016-6678</td> 1664 <td>A-29914434*</td> 1665 <td></td> 1666 <td>Nexus 6</td> 1667 <td>2016 6 30 </td> 1668 </tr> 1669 </table> 1670 <p> 1671 * <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> Nexus 1672 </p> 1673 <h3 id="information-disclosure-vulnerability-in-qualcomm-components">Qualcomm </h3> 1674 <p> 1675 Qualcomm IPA WLAN 1676 </p> 1677 <table> 1678 <col width="19%"> 1679 <col width="20%"> 1680 <col width="10%"> 1681 <col width="23%"> 1682 <col width="17%"> 1683 <tr> 1684 <th>CVE</th> 1685 <th></th> 1686 <th></th> 1687 <th> Nexus </th> 1688 <th></th> 1689 </tr> 1690 <tr> 1691 <td>CVE-2016-6679</td> 1692 <td>A-29915601<br> 1693 <a href="https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/prima/commit/?id=d39345f0abc309959d831d09fcbf1619cc0ae0f5">QC-CR#1000913</a> [<a href="https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-2.0/commit/?id=f081695446679aa44baa0d00940ea18455eeb4c5">2</a>]</td> 1694 <td></td> 1695 <td>Nexus 5XAndroid One</td> 1696 <td>2016 6 30 </td> 1697 </tr> 1698 <tr> 1699 <td>CVE-2016-3902</td> 1700 <td>A-29953313*<br> 1701 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.10/commit/?id=2fca425d781572393fbe51abe2e27a932d24a768">QC-CR#1044072</a></td> 1702 <td></td> 1703 <td>Nexus 5XNexus 6P</td> 1704 <td>2016 7 2 </td> 1705 </tr> 1706 <tr> 1707 <td>CVE-2016-6680</td> 1708 <td>A-29982678*<br> 1709 <a href="https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-2.0/commit/?id=2f2fa073b95d4700de88c0f7558b4a18c13ac552">QC-CR#1048052</a></td> 1710 <td></td> 1711 <td>Nexus 5XAndroid One</td> 1712 <td>2016 7 3 </td> 1713 </tr> 1714 <tr> 1715 <td>CVE-2016-6681</td> 1716 <td>A-30152182<br> 1717 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=0950fbd39ff189497f1b6115825c210e3eeaf395">QC-CR#1049521</a></td> 1718 <td></td> 1719 <td>Nexus 5XNexus 6PAndroid One</td> 1720 <td>2016 7 14 </td> 1721 </tr> 1722 <tr> 1723 <td>CVE-2016-6682</td> 1724 <td>A-30152501<br> 1725 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=0950fbd39ff189497f1b6115825c210e3eeaf395">QC-CR#1049615</a></td> 1726 <td></td> 1727 <td>Nexus 5XNexus 6PAndroid One</td> 1728 <td>2016 7 14 </td> 1729 </tr> 1730 </table> 1731 <p> 1732 * <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> Nexus 1733 </p> 1734 <h3 id="information-disclosure-vulnerability-in-kernel-components"></h3> 1735 <p> 1736 Binder 1737 </p> 1738 <table> 1739 <col width="19%"> 1740 <col width="18%"> 1741 <col width="10%"> 1742 <col width="25%"> 1743 <col width="17%"> 1744 <tr> 1745 <th>CVE</th> 1746 <th></th> 1747 <th></th> 1748 <th> Nexus </th> 1749 <th></th> 1750 </tr> 1751 <tr> 1752 <td>CVE-2016-6683</td> 1753 <td>A-30143283*</td> 1754 <td></td> 1755 <td> Nexus </td> 1756 <td>2016 7 13 </td> 1757 </tr> 1758 <tr> 1759 <td>CVE-2016-6684</td> 1760 <td>A-30148243*</td> 1761 <td></td> 1762 <td>Nexus 5Nexus 5XNexus 6Nexus 6PNexus 9Nexus PlayerAndroid One</td> 1763 <td>2016 7 13 </td> 1764 </tr> 1765 <tr> 1766 <td>CVE-2015-8956</td> 1767 <td>A-30149612*</td> 1768 <td></td> 1769 <td>Nexus 5Nexus 6PAndroid One</td> 1770 <td>2016 7 14 </td> 1771 </tr> 1772 <tr> 1773 <td>CVE-2016-6685</td> 1774 <td>A-30402628*</td> 1775 <td></td> 1776 <td>Nexus 6P</td> 1777 <td>2016 7 25 </td> 1778 </tr> 1779 </table> 1780 <p> 1781 * <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> Nexus 1782 </p> 1783 <h3 id="information-disclosure-vulnerability-in-nvidia-profiler">NVIDIA </h3> 1784 <p>NVIDIA 1785 </p> 1786 <table> 1787 <col width="19%"> 1788 <col width="20%"> 1789 <col width="10%"> 1790 <col width="23%"> 1791 <col width="17%"> 1792 <tr> 1793 <th>CVE</th> 1794 <th></th> 1795 <th></th> 1796 <th> Nexus </th> 1797 <th></th> 1798 </tr> 1799 <tr> 1800 <td>CVE-2016-6686</td> 1801 <td>A-30163101*<br>N-CVE-2016-6686</td> 1802 <td></td> 1803 <td>Nexus 9</td> 1804 <td>2016 7 15 </td> 1805 </tr> 1806 <tr> 1807 <td>CVE-2016-6687</td> 1808 <td>A-30162222*<br>N-CVE-2016-6687</td> 1809 <td></td> 1810 <td>Nexus 9</td> 1811 <td>2016 7 15 </td> 1812 </tr> 1813 <tr> 1814 <td>CVE-2016-6688</td> 1815 <td>A-30593080*<br>N-CVE-2016-6688</td> 1816 <td></td> 1817 <td>Nexus 9</td> 1818 <td>2016 8 2 </td> 1819 </tr> 1820 </table> 1821 <p> 1822 * <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> Nexus 1823 </p> 1824 <h3 id="information-disclosure-vulnerability-in-kernel"></h3> 1825 <p> 1826 Binder 1827 </p> 1828 <table> 1829 <col width="19%"> 1830 <col width="20%"> 1831 <col width="10%"> 1832 <col width="23%"> 1833 <col width="17%"> 1834 <tr> 1835 <th>CVE</th> 1836 <th></th> 1837 <th></th> 1838 <th> Nexus </th> 1839 <th></th> 1840 </tr> 1841 <tr> 1842 <td>CVE-2016-6689</td> 1843 <td>A-30768347*</td> 1844 <td></td> 1845 <td> Nexus </td> 1846 <td>2016 8 9 </td> 1847 </tr> 1848 </table> 1849 <p> 1850 * <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> Nexus 1851 </p> 1852 <h3 id="dosv-in-kernel-networking-subsystem"></h3> 1853 <p> 1854 TCP 1855 </p> 1856 <table> 1857 <col width="19%"> 1858 <col width="18%"> 1859 <col width="10%"> 1860 <col width="25%"> 1861 <col width="17%"> 1862 <tr> 1863 <th>CVE</th> 1864 <th></th> 1865 <th></th> 1866 <th> Nexus </th> 1867 <th></th> 1868 </tr> 1869 <tr> 1870 <td>CVE-2016-5696</td> 1871 <td>A-30809774<br> 1872 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=75ff39ccc1bd5d3c455b6822ab09e533c551f758"></a></td> 1873 <td></td> 1874 <td>Nexus 5XNexus 6Nexus 6PNexus 9Nexus PlayerPixel CAndroid One</td> 1875 <td>2016 7 12 </td> 1876 </tr> 1877 </table> 1878 <h3 id="dosv-in-kernel-sound-driver"></h3> 1879 <p> 1880 1881 </p> 1882 <table> 1883 <col width="19%"> 1884 <col width="18%"> 1885 <col width="10%"> 1886 <col width="25%"> 1887 <col width="17%"> 1888 <tr> 1889 <th>CVE</th> 1890 <th></th> 1891 <th></th> 1892 <th> Nexus </th> 1893 <th></th> 1894 </tr> 1895 <tr> 1896 <td>CVE-2016-6690</td> 1897 <td>A-28838221*</td> 1898 <td></td> 1899 <td>Nexus 5Nexus 5XNexus 6Nexus 6PNexus Player</td> 1900 <td>2016 5 18 </td> 1901 </tr> 1902 </table> 1903 <p> 1904 * <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> Nexus 1905 </p> 1906 <h3 id="vulnerabilities-in-qualcomm-components">Qualcomm </h3> 1907 <p> 1908 Qualcomm 1909 </p> 1910 <table> 1911 <col width="19%"> 1912 <col width="20%"> 1913 <col width="10%"> 1914 <col width="23%"> 1915 <col width="17%"> 1916 <tr> 1917 <th>CVE</th> 1918 <th></th> 1919 <th></th> 1920 <th> Nexus </th> 1921 <th></th> 1922 </tr> 1923 <tr> 1924 <td>CVE-2016-6691</td> 1925 <td><a href="https://source.codeaurora.org/quic/la//platform/frameworks/opt/net/wifi/commit/?id=343f123c396b2a97fc7cce396cd5d99365cb9131">QC-CR#978452</a></td> 1926 <td></td> 1927 <td></td> 1928 <td>2016 7 </td> 1929 </tr> 1930 <tr> 1931 <td>CVE-2016-6692</td> 1932 <td><a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=0f0e7047d39f9fb3a1a7f389918ff79cdb4a50b3">QC-CR#1004933</a></td> 1933 <td></td> 1934 <td></td> 1935 <td>2016 8 </td> 1936 </tr> 1937 <tr> 1938 <td>CVE-2016-6693</td> 1939 <td><a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=ac328eb631fa74a63d5d2583e6bfeeb5a7a2df65">QC-CR#1027585</a></td> 1940 <td></td> 1941 <td></td> 1942 <td>2016 8 </td> 1943 </tr> 1944 <tr> 1945 <td>CVE-2016-6694</td> 1946 <td><a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=961e38553aae8ba9b1af77c7a49acfbb7b0b6f62">QC-CR#1033525</a></td> 1947 <td></td> 1948 <td></td> 1949 <td>2016 8 </td> 1950 </tr> 1951 <tr> 1952 <td>CVE-2016-6695</td> 1953 <td><a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=c319c2b0926d1ea5edb4d0778d88bd3ce37c4b95">QC-CR#1033540</a></td> 1954 <td></td> 1955 <td></td> 1956 <td>2016 8 </td> 1957 </tr> 1958 <tr> 1959 <td>CVE-2016-6696</td> 1960 <td><a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=c3c9341bfdf93606983f893a086cb33a487306e5">QC-CR#1041130</a></td> 1961 <td></td> 1962 <td></td> 1963 <td>2016 8 </td> 1964 </tr> 1965 <tr> 1966 <td>CVE-2016-5344</td> 1967 <td><a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=64e15c36d6c1c57dc2d95a3f163bc830a469fc20">QC-CR#993650</a></td> 1968 <td></td> 1969 <td></td> 1970 <td>2016 8 </td> 1971 </tr> 1972 <tr> 1973 <td>CVE-2016-5343</td> 1974 <td><a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=6927e2e0af4dcac357be86ba563c9ae12354bb08">QC-CR#1010081</a></td> 1975 <td></td> 1976 <td></td> 1977 <td>2016 8 </td> 1978 </tr> 1979 </table> 1980 <h2 id="common-questions-and-answers"></h2> 1981 <p> 1982 1983 </p> 1984 <p> 1985 <strong>1. 1986 </strong> 1987 </p> 1988 <p> 1989 2016-10-01 2016-10-01 2016-10-05 2016-10-05 <a href="https://support.google.com/nexus/answer/4457705"></a>[ro.build.version.security_patch]:[2016-10-01] [ro.build.version.security_patch]:[2016-10-05] 1990 </p> 1991 <p> 1992 <strong>2. </strong> 1993 </p> 1994 <p> 1995 Android Android Android 1996 </p> 1997 <p> 1998 2016 10 5 1999 </p> 2000 <p> 2001 2016 10 1 2002 </p> 2003 <p> 2004 <strong>3. Nexus </strong> 2005 </p> 2006 <p> 2007 <a href="#2016-10-01-security-patch-level-vulnerability-details">2016-10-01</a> <a href="#2016-10-05-security-patch-level-vulnerability-details">2016-10-05</a> Nexus Nexus <em></em> 2008 </p> 2009 <ul> 2010 <li><strong> Nexus </strong> Nexus Nexus Nexus <em></em> Nexus <a href="https://support.google.com/nexus/answer/4457705#nexus_devices"></a>Nexus 5Nexus 5XNexus 6Nexus 6PNexus 7 (2013)Nexus 9Android OneNexus Player Pixel C</li> 2011 <li><strong> Nexus </strong> Nexus Nexus Nexus <em></em></li> 2012 <li><strong> Nexus </strong> Android 7.0 Nexus Nexus <em></em></li> 2013 </ul> 2014 <p> 2015 <strong>4. </strong> 2016 </p> 2017 <p> 2018 <em></em> 2019 </p> 2020 <table> 2021 <tr> 2022 <th></th> 2023 <th></th> 2024 </tr> 2025 <tr> 2026 <td>A-</td> 2027 <td>Android Bug ID</td> 2028 </tr> 2029 <tr> 2030 <td>QC-</td> 2031 <td>Qualcomm </td> 2032 </tr> 2033 <tr> 2034 <td>M-</td> 2035 <td>MediaTek </td> 2036 </tr> 2037 <tr> 2038 <td>N-</td> 2039 <td>NVIDIA </td> 2040 </tr> 2041 <tr> 2042 <td>B-</td> 2043 <td>Broadcom </td> 2044 </tr> 2045 </table> 2046 2047 <h2 id="revisions"></h2> 2048 <ul> 2049 <li>2016 10 3 </li> 2050 <li>2016 10 4 AOSP CVE-2016-3920CVE-2016-6693CVE-2016-6694CVE-2016-6695 CVE-2016-6696 </li> 2051 </ul> 2052 2053 </body> 2054 </html> 2055
