1 <html devsite> 2 <head> 3 <title>Android - 2016 11 </title> 4 <meta name="project_path" value="/_project.yaml" /> 5 <meta name="book_path" value="/_book.yaml" /> 6 </head> 7 <body> 8 <!-- 9 Copyright 2017 The Android Open Source Project 10 11 Licensed under the Apache License, Version 2.0 (the "License"); 12 you may not use this file except in compliance with the License. 13 You may obtain a copy of the License at 14 15 http://www.apache.org/licenses/LICENSE-2.0 16 17 Unless required by applicable law or agreed to in writing, software 18 distributed under the License is distributed on an "AS IS" BASIS, 19 WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 20 See the License for the specific language governing permissions and 21 limitations under the License. 22 --> 23 24 25 26 <p><em>2016 11 7 | 2016 11 8 </em></p> 27 <p> 28 Android Android (OTA) Google <a href="https://developers.google.com/android/nexus/images">Google Developers </a> Google 2016 11 6 <a href="https://support.google.com/pixelphone/answer/4457705#pixel_phones&nexus_devices">Pixel Nexus </a></p> 29 <p> 30 2016 10 20 Android (AOSP) AOSP 31 </p> 32 <p> 33 </p> 34 <p> 35 <a href="#mitigations">Android Google </a> <a href="/security/enhancements/index.html">Android </a> <a href="https://developer.android.com/training/safetynet/index.html">SafetyNet</a> Android </p> 36 <p> 37 </p> 38 <h2 id="announcements"></h2> 39 <ul> 40 <li> Pixel Pixel XL Google Nexus <a href="#google-devices">Google </a> 41 </li> 42 <li> 3 Android Android <a href="#common-questions-and-answers"></a><ul> 43 <li><strong>2016-11-01</strong> 2016-11-01</li> 44 <li><strong>2016-11-05</strong> 2016-11-01 2016-11-05</li> 45 <li><strong></strong> 46 <p> 2016-12-01 47 </p> 48 <ul> 49 <li><strong>2016-11-06</strong> 2016-11-05 CVE-2016-5195 2016 10 19 </li> 50 </ul> 51 </li> 52 </ul> 53 </li> 54 <li> Google 2016 11 5 OTA </li> 55 </ul> 56 57 <h2 id="security-vulnerability-summary"></h2> 58 <p> 59 CVE Google <a href="/security/overview/updates-resources.html#severity"></a></p> 60 <h3 id="2016-11-01-summary">2016-11-01 - </h3> 61 <p> 62 2016-11-01</p> 63 <table> 64 <col width="55%"> 65 <col width="20%"> 66 <col width="13%"> 67 <col width="12%"> 68 <tr> 69 <th></th> 70 <th>CVE</th> 71 <th></th> 72 <th> Google </th> 73 </tr> 74 <tr> 75 <td>Mediaserver </td> 76 <td>CVE-2016-6699</td> 77 <td></td> 78 <td></td> 79 </tr> 80 <tr> 81 <td>libzipfile </td> 82 <td>CVE-2016-6700</td> 83 <td></td> 84 <td>*</td> 85 </tr> 86 <tr> 87 <td>Skia </td> 88 <td>CVE-2016-6701</td> 89 <td></td> 90 <td></td> 91 </tr> 92 <tr> 93 <td>libjpeg </td> 94 <td>CVE-2016-6702</td> 95 <td></td> 96 <td>*</td> 97 </tr> 98 <tr> 99 <td>Android Runtime </td> 100 <td>CVE-2016-6703</td> 101 <td></td> 102 <td>*</td> 103 </tr> 104 <tr> 105 <td>Mediaserver </td> 106 <td>CVE-2016-6704CVE-2016-6705CVE-2016-6706</td> 107 <td></td> 108 <td></td> 109 </tr> 110 <tr> 111 <td></td> 112 <td>CVE-2016-6707</td> 113 <td></td> 114 <td></td> 115 </tr> 116 <tr> 117 <td></td> 118 <td>CVE-2016-6708</td> 119 <td></td> 120 <td></td> 121 </tr> 122 <tr> 123 <td>Conscrypt </td> 124 <td>CVE-2016-6709</td> 125 <td></td> 126 <td></td> 127 </tr> 128 <tr> 129 <td></td> 130 <td>CVE-2016-6710</td> 131 <td></td> 132 <td></td> 133 </tr> 134 <tr> 135 <td></td> 136 <td>CVE-2014-9908</td> 137 <td></td> 138 <td>*</td> 139 </tr> 140 <tr> 141 <td>OpenJDK </td> 142 <td>CVE-2015-0410</td> 143 <td></td> 144 <td></td> 145 </tr> 146 <tr> 147 <td>Mediaserver </td> 148 <td>CVE-2016-6711CVE-2016-6712CVE-2016-6713CVE-2016-6714</td> 149 <td></td> 150 <td></td> 151 </tr> 152 <tr> 153 <td>Framework API </td> 154 <td>CVE-2016-6715</td> 155 <td></td> 156 <td></td> 157 </tr> 158 <tr> 159 <td>AOSP </td> 160 <td>CVE-2016-6716</td> 161 <td></td> 162 <td></td> 163 </tr> 164 <tr> 165 <td>Mediaserver </td> 166 <td>CVE-2016-6717</td> 167 <td></td> 168 <td></td> 169 </tr> 170 <tr> 171 <td></td> 172 <td>CVE-2016-6718</td> 173 <td></td> 174 <td></td> 175 </tr> 176 <tr> 177 <td></td> 178 <td>CVE-2016-6719</td> 179 <td></td> 180 <td></td> 181 </tr> 182 <tr> 183 <td>Mediaserver </td> 184 <td>CVE-2016-6720CVE-2016-6721CVE-2016-6722</td> 185 <td></td> 186 <td></td> 187 </tr> 188 <tr> 189 <td></td> 190 <td>CVE-2016-6723</td> 191 <td></td> 192 <td></td> 193 </tr> 194 <tr> 195 <td></td> 196 <td>CVE-2016-6724</td> 197 <td></td> 198 <td></td> 199 </tr> 200 </table> 201 <p> 202 * Android 7.0 Google </p> 203 <h3 id="2016-11-05-summary">2016-11-05 - </h3> 204 <p> 205 2016-11-05 2016-11-01 </p> 206 <table> 207 <col width="55%"> 208 <col width="20%"> 209 <col width="13%"> 210 <col width="12%"> 211 <tr> 212 <th></th> 213 <th>CVE</th> 214 <th></th> 215 <th> Google </th> 216 </tr> 217 <tr> 218 <td>Qualcomm </td> 219 <td>CVE-2016-6725</td> 220 <td></td> 221 <td></td> 222 </tr> 223 <tr> 224 <td></td> 225 <td>CVE-2015-8961CVE-2016-7910CVE-2016-7911</td> 226 <td></td> 227 <td></td> 228 </tr> 229 <tr> 230 <td> SCSI </td> 231 <td>CVE-2015-8962</td> 232 <td></td> 233 <td></td> 234 </tr> 235 <tr> 236 <td></td> 237 <td>CVE-2016-7913</td> 238 <td></td> 239 <td></td> 240 </tr> 241 <tr> 242 <td> USB </td> 243 <td>CVE-2016-7912</td> 244 <td></td> 245 <td></td> 246 </tr> 247 <tr> 248 <td> ION </td> 249 <td>CVE-2016-6728</td> 250 <td></td> 251 <td></td> 252 </tr> 253 <tr> 254 <td>Qualcomm </td> 255 <td>CVE-2016-6729</td> 256 <td></td> 257 <td></td> 258 </tr> 259 <tr> 260 <td>NVIDIA GPU </td> 261 <td>CVE-2016-6730CVE-2016-6731CVE-2016-6732CVE-2016-6733CVE-2016-6734CVE-2016-6735CVE-2016-6736</td> 262 <td></td> 263 <td></td> 264 </tr> 265 <tr> 266 <td></td> 267 <td>CVE-2016-6828</td> 268 <td></td> 269 <td></td> 270 </tr> 271 <tr> 272 <td></td> 273 <td>CVE-2016-2184</td> 274 <td></td> 275 <td></td> 276 </tr> 277 <tr> 278 <td> ION </td> 279 <td>CVE-2016-6737</td> 280 <td></td> 281 <td></td> 282 </tr> 283 <tr> 284 <td>Qualcomm </td> 285 <td>CVE-2016-6726CVE-2016-6727</td> 286 <td></td> 287 <td></td> 288 </tr> 289 <tr> 290 <td>Expat </td> 291 <td>CVE-2016-0718CVE-2012-6702CVE-2016-5300CVE-2015-1283</td> 292 <td></td> 293 <td>*</td> 294 </tr> 295 <tr> 296 <td>WebView </td> 297 <td>CVE-2016-6754</td> 298 <td></td> 299 <td>*</td> 300 </tr> 301 <tr> 302 <td>Freetype </td> 303 <td>CVE-2014-9675</td> 304 <td></td> 305 <td>*</td> 306 </tr> 307 <tr> 308 <td></td> 309 <td>CVE-2015-8963</td> 310 <td></td> 311 <td></td> 312 </tr> 313 <tr> 314 <td></td> 315 <td>CVE-2016-6136</td> 316 <td></td> 317 <td></td> 318 </tr> 319 <tr> 320 <td>Qualcomm </td> 321 <td>CVE-2016-6738</td> 322 <td></td> 323 <td></td> 324 </tr> 325 <tr> 326 <td>Qualcomm </td> 327 <td>CVE-2016-6739CVE-2016-6740CVE-2016-6741</td> 328 <td></td> 329 <td></td> 330 </tr> 331 <tr> 332 <td>Qualcomm </td> 333 <td>CVE-2016-3904</td> 334 <td></td> 335 <td></td> 336 </tr> 337 <tr> 338 <td>Synaptics </td> 339 <td>CVE-2016-6742CVE-2016-6744CVE-2016-6745CVE-2016-6743</td> 340 <td></td> 341 <td></td> 342 </tr> 343 <tr> 344 <td></td> 345 <td>CVE-2015-8964CVE-2016-7914CVE-2016-7915CVE-2016-7916</td> 346 <td></td> 347 <td></td> 348 </tr> 349 <tr> 350 <td>NVIDIA GPU </td> 351 <td>CVE-2016-6746</td> 352 <td></td> 353 <td></td> 354 </tr> 355 <tr> 356 <td>Mediaserver </td> 357 <td>CVE-2016-6747</td> 358 <td></td> 359 <td></td> 360 </tr> 361 <tr> 362 <td></td> 363 <td>CVE-2016-6753CVE-2016-7917</td> 364 <td></td> 365 <td></td> 366 </tr> 367 <tr> 368 <td>Qualcomm </td> 369 <td>CVE-2016-6748CVE-2016-6749CVE-2016-6750CVE-2016-3906CVE-2016-3907CVE-2016-6698CVE-2016-6751CVE-2016-6752</td> 370 <td></td> 371 <td></td> 372 </tr> 373 </table> 374 <p> 375 * Android 7.0 Google </p> 376 <h3 id="2016-11-06-summary">2016-11-06 - </h3> 377 <p> 378 2016-11-06 2016-11-05 2016-11-01 </p> 379 <table> 380 <col width="55%"> 381 <col width="20%"> 382 <col width="13%"> 383 <col width="12%"> 384 <tr> 385 <th></th> 386 <th>CVE</th> 387 <th></th> 388 <th> Google </th> 389 </tr> 390 <tr> 391 <td></td> 392 <td>CVE-2016-5195</td> 393 <td></td> 394 <td></td> 395 </tr> 396 </table> 397 398 <h2 id="mitigations">Android Google </h2> 399 <p> 400 <a href="/security/enhancements/index.html">Android </a> SafetyNet Android </p> 401 <ul> 402 <li> Android Android Android</li> 403 <li>Android <a href="http://static.googleusercontent.com/media/source.android.com/en//security/reports/Google_Android_Security_2015_Report_Final.pdf"> SafetyNet</a> <a href="http://static.googleusercontent.com/media/source.android.com/en//security/reports/Google_Android_Security_PHA_classifications.pdf"></a> <a href="http://www.android.com/gms">Google </a> Google Play Google Play Root Root </li> 404 <li> Google Messenger mediaserver </li> 405 </ul> 406 <h2 id="acknowledgements"></h2> 407 <p> 408 </p> 409 <ul> 410 <li>Google Chrome Abhishek AryaOliver Chang Martin BarbellaCVE-2016-6722</li> 411 <li>Google Andrei Kapishnikov Miriam GershensonCVE-2016-6703</li> 412 <li> <a href="http://www.pkav.net">PKAV</a> Ao Wang (<a href="http://twitter.com/@r4y2_wa">@r4y2_wa</a>) <a href="http://weibo.com/ele7enxxh">Zinuo Han</a>CVE-2016-6700CVE-2016-6702</li> 413 <li> AskyshangCVE-2016-6713</li> 414 <li>Android Billy LauCVE-2016-6737</li> 415 <li> <a href="mailto:kpatsak (a] unipi.gr">Constantinos Patsakis</a> <a href="mailto:talepis (a] unipi.gr">Efthimios Alepis</a>CVE-2016-6715</li> 416 <li> dragonltxCVE-2016-6714</li> 417 <li>Project Zero Gal BeniaminiCVE-2016-6707CVE-2016-6717</li> 418 <li><a href="http://www.360.com"> 360 </a> IceSword Gengjia Chen (<a href="http://twitter.com/chengjia4574">@chengjia4574</a>) <a href="http://weibo.com/jfpan">pjf</a>CVE-2016-6725CVE-2016-6738CVE-2016-6740CVE-2016-6741CVE-2016-6742CVE-2016-6744CVE-2016-6745CVE-2016-3906</li> 419 <li><a href="http://www.360.com"> 360 </a> Alpha (<a href="http://twitter.com/oldfresher">@oldfresher</a>)CVE-2016-6754</li> 420 <li><a href="http://www.360.com"> 360 </a> IceSword Jianqiang Zhao (<a href="http://twitter.com/jianqiangzhao">@jianqiangzhao</a>) <a href="http://weibo.com/jfpan">pjf</a>CVE-2016-6739CVE-2016-3904CVE-2016-3907CVE-2016-6698</li> 421 <li>Project Zero Mark BrandCVE-2016-6706</li> 422 <li>Google Mark RenoufCVE-2016-6724</li> 423 <li>Micha Bednarski (<a href="https://github.com/michalbednarski">github.com/michalbednarski</a>)CVE-2016-6710</li> 424 <li>Android Min ChongCVE-2016-6743</li> 425 <li> Peter Pi (<a href="http://twitter.com/heisecode">@heisecode</a>)CVE-2016-6721</li> 426 <li> KeenLab (<a href="http://twitter.com/flanker_hqd">@flanker_hqd</a>) (<a href="http://twitter.com/dmxcsnsbh">@dmxcsnsbh</a>)CVE-2016-6705</li> 427 <li>Google Robin LeeCVE-2016-6708</li> 428 <li><a href="mailto:sbauer (a] plzdonthack.me">Scott Bauer</a> (<a href="http://twitter.com/ScottyBauer1">@ScottyBauer1</a>)CVE-2016-6751</li> 429 <li> Sergey Bobrov (<a href="http://twitter.com/Black2Fan">@Black2Fan</a>)CVE-2016-6716</li> 430 <li> Seven Shen (<a href="http://twitter.com/lingtongshen">@lingtongshen</a>)CVE-2016-6748CVE-2016-6749CVE-2016-6750CVE-2016-6753</li> 431 <li> Victor van der VeenHerbert BosKaveh Razavi Cristiano Giuffrida Yanick FratantonioMartina Lindorfer Giovanni VignaCVE-2016-6728</li> 432 <li> Weichao Sun (<a href="https://twitter.com/sunblate">@sunblate</a>)CVE-2016-6712CVE-2016-6699CVE-2016-6711</li> 433 <li><a href="http://c0reteam.org">C0RE </a> Wenke Dou (<a href="mailto:vancouverdou (a] gmail.com">vancouverdou (a] gmail.com</a>)Chiachih Wu (<a href="https://twitter.com/chiachih_wu">@chiachih_wu</a>) Xuxian JiangCVE-2016-6720</li> 434 <li> (<a href="http://twitter.com/wish_wu">@wish_wu</a>)CVE-2016-6704</li> 435 <li><a href="https://wwws.nightwatchcybersecurity.com">Nightwatch Cybersecurity</a> Yakov ShafranovichCVE-2016-6723</li> 436 <li><a href="http://c0reteam.org">C0RE </a> <a href="mailto:computernik (a] gmail.com">Yuan-Tsung Lo</a><a href="mailto:yaojun8558363 (a] gmail.com">Yao Jun</a><a href="mailto:segfault5514 (a] gmail.com">Tong Lin</a>Chiachih Wu (<a href="https://twitter.com/chiachih_wu">@chiachih_wu</a>) Xuxian JiangCVE-2016-6730CVE-2016-6732CVE-2016-6734CVE-2016-6736</li> 437 <li><a href="http://c0reteam.org">C0RE </a> <a href="mailto:computernik (a] gmail.com">Yuan-Tsung Lo</a><a href="mailto:yaojun8558363 (a] gmail.com">Yao Jun</a><a href="mailto:wisedd (a] gmail.com">Xiaodong Wang</a>Chiachih Wu (<a href="https://twitter.com/chiachih_wu">@chiachih_wu</a>) Xuxian JiangCVE-2016-6731CVE-2016-6733CVE-2016-6735CVE-2016-6746</li> 438 </ul> 439 <p> 440 Android Zach Riggle </p> 441 442 <h2 id="2016-11-01-details">2016-11-01 - </h2> 443 <p> 444 <a href="#2016-11-01-summary">2016-11-01 - </a> CVE Google AOSP Bug ID AOSP Bug Bug ID </p> 445 446 <h3 id="rce-in-mediaserver">Mediaserver </h3> 447 <p> 448 Mediaserver Mediaserver 449 </p> 450 <table> 451 <col width="18%"> 452 <col width="18%"> 453 <col width="10%"> 454 <col width="19%"> 455 <col width="17%"> 456 <col width="17%"> 457 <tr> 458 <th>CVE</th> 459 <th></th> 460 <th></th> 461 <th> Google </th> 462 <th> AOSP </th> 463 <th></th> 464 </tr> 465 <tr> 466 <td>CVE-2016-6699</td> 467 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/3b1c9f692c4d4b7a683c2b358fc89e831a641b88">A-31373622</a></td> 468 <td></td> 469 <td></td> 470 <td>7.0</td> 471 <td>2016 7 27 </td> 472 </tr> 473 </table> 474 <h3 id="eop-in-libzipfile">libzipfile </h3> 475 <p> 476 libzipfile 477 </p> 478 <table> 479 <col width="18%"> 480 <col width="18%"> 481 <col width="10%"> 482 <col width="19%"> 483 <col width="17%"> 484 <col width="17%"> 485 <tr> 486 <th>CVE</th> 487 <th></th> 488 <th></th> 489 <th> Google </th> 490 <th> AOSP </th> 491 <th></th> 492 </tr> 493 <tr> 494 <td>CVE-2016-6700</td> 495 <td>A-30916186</td> 496 <td></td> 497 <td>*</td> 498 <td>4.4.45.0.25.1.1</td> 499 <td>2016 8 17 </td> 500 </tr> 501 </table> 502 <p> 503 * Android 7.0 Google 504 </p> 505 <h3 id="rce-in-skia">Skia </h3> 506 <p> 507 libskia 508 </p> 509 <table> 510 <col width="18%"> 511 <col width="18%"> 512 <col width="10%"> 513 <col width="19%"> 514 <col width="17%"> 515 <col width="17%"> 516 <tr> 517 <th>CVE</th> 518 <th></th> 519 <th></th> 520 <th> Google </th> 521 <th> AOSP </th> 522 <th></th> 523 </tr> 524 <tr> 525 <td>CVE-2016-6701</td> 526 <td><a href="https://android.googlesource.com/platform/external/skia/+/aca73722873e908633ff27375f6f93a08cbb7dd3">A-30190637</a></td> 527 <td></td> 528 <td></td> 529 <td>7.0</td> 530 <td>Google </td> 531 </tr> 532 </table> 533 <h3 id="rce-in-libjpeg">libjpeg </h3> 534 <p> 535 libjpeg libjpeg 536 </p> 537 <table> 538 <col width="18%"> 539 <col width="18%"> 540 <col width="10%"> 541 <col width="19%"> 542 <col width="17%"> 543 <col width="17%"> 544 <tr> 545 <th>CVE</th> 546 <th></th> 547 <th></th> 548 <th> Google </th> 549 <th> AOSP </th> 550 <th></th> 551 </tr> 552 <tr> 553 <td>CVE-2016-6702</td> 554 <td>A-30259087</td> 555 <td></td> 556 <td>*</td> 557 <td>4.4.45.0.25.1.1</td> 558 <td>2016 7 19 </td> 559 </tr> 560 </table> 561 <p> 562 * Android 7.0 Google 563 </p> 564 <h3 id="rce-in-android-runtime">Android Runtime </h3> 565 <p> 566 Android Runtime Android Runtime 567 </p> 568 <table> 569 <col width="18%"> 570 <col width="18%"> 571 <col width="10%"> 572 <col width="19%"> 573 <col width="17%"> 574 <col width="17%"> 575 <tr> 576 <th>CVE</th> 577 <th></th> 578 <th></th> 579 <th> Google </th> 580 <th> AOSP </th> 581 <th></th> 582 </tr> 583 <tr> 584 <td>CVE-2016-6703</td> 585 <td>A-30765246</td> 586 <td></td> 587 <td>*</td> 588 <td>4.4.45.0.25.1.16.06.0.1</td> 589 <td>Google </td> 590 </tr> 591 </table> 592 <p> 593 * Android 7.0 Google 594 </p> 595 <h3 id="eop-in-mediaserver">Mediaserver </h3> 596 <p> 597 Mediaserver 598 </p> 599 <table> 600 <col width="18%"> 601 <col width="18%"> 602 <col width="10%"> 603 <col width="19%"> 604 <col width="17%"> 605 <col width="17%"> 606 <tr> 607 <th>CVE</th> 608 <th></th> 609 <th></th> 610 <th> Google </th> 611 <th> AOSP </th> 612 <th></th> 613 </tr> 614 <tr> 615 <td>CVE-2016-6704</td> 616 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/c6c446f9e022adf20064e65a17574804f8af8e7d">A-30229821</a> [<a href="https://android.googlesource.com/platform/hardware/qcom/audio/+/9cb9810ecb63c8ff55ecf4bc77431dc5b0688b5f">2</a>] [<a href="https://android.googlesource.com/platform/system/media/+/a6274f03b4dfe1c3a22af51e3a17ea56a314e747">3</a>]</td> 617 <td></td> 618 <td></td> 619 <td>4.4.45.0.25.1.16.06.0.17.0</td> 620 <td>2016 7 19 </td> 621 </tr> 622 <tr> 623 <td>CVE-2016-6705</td> 624 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/3a03fa24d21f97e84e796ac5ef14b3f434c0e8f1">A-30907212</a> [<a href="https://android.googlesource.com/platform/frameworks/av/+/bd04b47d38a89f1dada1c6da2ef4a3d235c166b8">2</a>]</td> 625 <td></td> 626 <td></td> 627 <td>5.0.25.1.16.06.0.17.0</td> 628 <td>2016 8 16 </td> 629 </tr> 630 <tr> 631 <td>CVE-2016-6706</td> 632 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/1d4feebdb85db46e138530f360d9ff2490e14353">A-31385713</a> 633 </td> 634 <td></td> 635 <td></td> 636 <td>7.0</td> 637 <td>2016 9 8 </td> 638 </tr> 639 </table> 640 <h3 id="eop-in-system-server"></h3> 641 <p> 642 643 </p> 644 <table> 645 <col width="18%"> 646 <col width="18%"> 647 <col width="10%"> 648 <col width="19%"> 649 <col width="17%"> 650 <col width="17%"> 651 <tr> 652 <th>CVE</th> 653 <th></th> 654 <th></th> 655 <th> Google </th> 656 <th> AOSP </th> 657 <th></th> 658 </tr> 659 <tr> 660 <td>CVE-2016-6707</td> 661 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/16024ea7c4bae08c972cf6b3734029aad33e8870">A-31350622</a> 662 </td> 663 <td></td> 664 <td></td> 665 <td>6.06.0.17.0</td> 666 <td>2016 9 7 </td> 667 </tr> 668 </table> 669 <h3 id="eop-in-system-ui"></h3> 670 <p> 671 672 </p> 673 <table> 674 <col width="18%"> 675 <col width="18%"> 676 <col width="10%"> 677 <col width="19%"> 678 <col width="17%"> 679 <col width="17%"> 680 <tr> 681 <th>CVE</th> 682 <th></th> 683 <th></th> 684 <th> Google </th> 685 <th> AOSP </th> 686 <th></th> 687 </tr> 688 <tr> 689 <td>CVE-2016-6708</td> 690 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/c9c73fde339b4db496f2c1ff8c18df1e9db5a7c1">A-30693465</a> 691 </td> 692 <td></td> 693 <td></td> 694 <td>7.0</td> 695 <td>Google </td> 696 </tr> 697 </table> 698 <h3 id="id-in-conscrypt">Conscrypt </h3> 699 <p> 700 API Conscrypt 701 </p> 702 <table> 703 <col width="18%"> 704 <col width="18%"> 705 <col width="10%"> 706 <col width="19%"> 707 <col width="17%"> 708 <col width="17%"> 709 <tr> 710 <th>CVE</th> 711 <th></th> 712 <th></th> 713 <th> Google </th> 714 <th> AOSP </th> 715 <th></th> 716 </tr> 717 <tr> 718 <td>CVE-2016-6709</td> 719 <td><a href="https://android.googlesource.com/platform/external/conscrypt/+/44ef9535b9afb123d150d8e0362e4bb50794dd41">A-31081987</a> 720 </td> 721 <td></td> 722 <td></td> 723 <td>6.06.0.17.0</td> 724 <td>2015 10 9 </td> 725 </tr> 726 </table> 727 <h3 id="id-in-download-manager"></h3> 728 <p> 729 730 </p> 731 <table> 732 <col width="18%"> 733 <col width="18%"> 734 <col width="10%"> 735 <col width="19%"> 736 <col width="17%"> 737 <col width="17%"> 738 <tr> 739 <th>CVE</th> 740 <th></th> 741 <th></th> 742 <th> Google </th> 743 <th> AOSP </th> 744 <th></th> 745 </tr> 746 <tr> 747 <td>CVE-2016-6710</td> 748 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/9fab683c9598d234dd8461335c276ed3e37c91e8">A-30537115</a> [<a href="https://android.googlesource.com/platform/packages/providers/DownloadProvider/+/243e62949f7208d3b82eda3ee4ec22d3dbc1fb19">2</a>]</td> 749 <td></td> 750 <td></td> 751 <td>5.0.25.1.16.06.0.17.0</td> 752 <td>2016 7 30 </td> 753 </tr> 754 </table> 755 <h3 id="dos-in-bluetooth"></h3> 756 <p> 757 758 </p> 759 <table> 760 <col width="18%"> 761 <col width="18%"> 762 <col width="10%"> 763 <col width="19%"> 764 <col width="17%"> 765 <col width="17%"> 766 <tr> 767 <th>CVE</th> 768 <th></th> 769 <th></th> 770 <th> Google </th> 771 <th> AOSP </th> 772 <th></th> 773 </tr> 774 <tr> 775 <td>CVE-2014-9908</td> 776 <td>A-28672558</td> 777 <td></td> 778 <td>*</td> 779 <td>4.4.45.0.25.1.1</td> 780 <td>2014 5 5 </td> 781 </tr> 782 </table> 783 <p> 784 * Android 7.0 Google 785 </p> 786 <h3 id="dos-in-openjdk">OpenJDK </h3> 787 <p> 788 OpenJDK 789 </p> 790 <table> 791 <col width="18%"> 792 <col width="18%"> 793 <col width="10%"> 794 <col width="19%"> 795 <col width="17%"> 796 <col width="17%"> 797 <tr> 798 <th>CVE</th> 799 <th></th> 800 <th></th> 801 <th> Google </th> 802 <th> AOSP </th> 803 <th></th> 804 </tr> 805 <tr> 806 <td>CVE-2015-0410</td> 807 <td><a href="https://android.googlesource.com/platform/libcore/+/21098574528bdf99dd50a74a60e161573e999108">A-30703445</a> 808 </td> 809 <td></td> 810 <td></td> 811 <td>7.0</td> 812 <td>2015 1 16 </td> 813 </tr> 814 </table> 815 <h3 id="dos-in-mediaserver">Mediaserver </h3> 816 <p> 817 Mediaserver 818 </p> 819 <table> 820 <col width="18%"> 821 <col width="18%"> 822 <col width="10%"> 823 <col width="19%"> 824 <col width="17%"> 825 <col width="17%"> 826 <tr> 827 <th>CVE</th> 828 <th></th> 829 <th></th> 830 <th> Google </th> 831 <th> AOSP </th> 832 <th></th> 833 </tr> 834 <tr> 835 <td>CVE-2016-6711</td> 836 <td><a href="https://android.googlesource.com/platform/external/libvpx/+/063be1485e0099bc81ace3a08b0ec9186dcad693">A-30593765</a> 837 </td> 838 <td></td> 839 <td>*</td> 840 <td>4.4.45.0.25.1.16.06.0.1</td> 841 <td>2016 8 1 </td> 842 </tr> 843 <tr> 844 <td>CVE-2016-6712</td> 845 <td><a href="https://android.googlesource.com/platform/external/libvpx/+/fdb1b40e7bb147c07bda988c9501ad223795d12d">A-30593752</a> 846 </td> 847 <td></td> 848 <td>*</td> 849 <td>4.4.45.0.25.1.16.06.0.1</td> 850 <td>2016 8 1 </td> 851 </tr> 852 <tr> 853 <td>CVE-2016-6713</td> 854 <td><a href="https://android.googlesource.com/platform/external/libavc/+/8cafca0e8b1ed8125918e203118c5a4e612fd56c">A-30822755</a></td> 855 <td></td> 856 <td></td> 857 <td>6.06.0.17.0</td> 858 <td>2016 8 11 </td> 859 </tr> 860 <tr> 861 <td>CVE-2016-6714</td> 862 <td><a href="https://android.googlesource.com/platform/external/libavc/+/5bdb0a6b72782e505671a387bb5f83222d891d6a">A-31092462</a> 863 </td> 864 <td></td> 865 <td></td> 866 <td>6.06.0.17.0</td> 867 <td>2016 8 22 </td> 868 </tr> 869 </table> 870 <p> 871 * Android 7.0 Google 872 </p> 873 <h3 id="eop-in-framework-apis">Framework API </h3> 874 <p> 875 Framework API 876 </p> 877 <table> 878 <col width="18%"> 879 <col width="18%"> 880 <col width="10%"> 881 <col width="19%"> 882 <col width="17%"> 883 <col width="17%"> 884 <tr> 885 <th>CVE</th> 886 <th></th> 887 <th></th> 888 <th> Google </th> 889 <th> AOSP </th> 890 <th></th> 891 </tr> 892 <tr> 893 <td>CVE-2016-6715</td> 894 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/3de09838fb0996bb4b420630800ad34e828fd1b6">A-29833954</a> 895 </td> 896 <td></td> 897 <td></td> 898 <td>4.4.45.0.25.1.16.06.0.17.0</td> 899 <td>2016 6 28 </td> 900 </tr> 901 </table> 902 <h3 id="eop-in-aosp-launcher">AOSP </h3> 903 <p> 904 AOSP 905 </p> 906 <table> 907 <col width="18%"> 908 <col width="18%"> 909 <col width="10%"> 910 <col width="19%"> 911 <col width="17%"> 912 <col width="17%"> 913 <tr> 914 <th>CVE</th> 915 <th></th> 916 <th></th> 917 <th> Google </th> 918 <th> AOSP </th> 919 <th></th> 920 </tr> 921 <tr> 922 <td>CVE-2016-6716</td> 923 <td><a href="https://android.googlesource.com/platform/packages/apps/Launcher3/+/e83fc11c982e67dd0181966f5f3a239ea6b14924">A-30778130</a> 924 </td> 925 <td></td> 926 <td></td> 927 <td>7.0</td> 928 <td>2016 8 5 </td> 929 </tr> 930 </table> 931 <h3 id="eop-in-mediaserver-1">Mediaserver </h3> 932 <p> 933 Mediaserver 934 </p> 935 <table> 936 <col width="18%"> 937 <col width="18%"> 938 <col width="10%"> 939 <col width="19%"> 940 <col width="17%"> 941 <col width="17%"> 942 <tr> 943 <th>CVE</th> 944 <th></th> 945 <th></th> 946 <th> Google </th> 947 <th> AOSP </th> 948 <th></th> 949 </tr> 950 <tr> 951 <td>CVE-2016-6717</td> 952 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/45d9bbabbe7920bf4e0a68074b97d8260aef2e07">A-31350239</a> 953 </td> 954 <td></td> 955 <td></td> 956 <td>4.4.45.0.25.1.16.06.0.17.0</td> 957 <td>2016 9 7 </td> 958 </tr> 959 </table> 960 <h3 id="eop-in-account-manager-service"></h3> 961 <p> 962 963 </p> 964 <table> 965 <col width="18%"> 966 <col width="18%"> 967 <col width="10%"> 968 <col width="19%"> 969 <col width="17%"> 970 <col width="17%"> 971 <tr> 972 <th>CVE</th> 973 <th></th> 974 <th></th> 975 <th> Google </th> 976 <th> AOSP </th> 977 <th></th> 978 </tr> 979 <tr> 980 <td>CVE-2016-6718</td> 981 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/fecfd550edeca422c0d9f32a9c0abe73398a1ff1">A-30455516</a> 982 </td> 983 <td></td> 984 <td></td> 985 <td>7.0</td> 986 <td>Google </td> 987 </tr> 988 </table> 989 <h3 id="eop-in-bluetooth"></h3> 990 <p> 991 992 </p> 993 <table> 994 <col width="18%"> 995 <col width="18%"> 996 <col width="10%"> 997 <col width="19%"> 998 <col width="17%"> 999 <col width="17%"> 1000 <tr> 1001 <th>CVE</th> 1002 <th></th> 1003 <th></th> 1004 <th> Google </th> 1005 <th> AOSP </th> 1006 <th></th> 1007 </tr> 1008 <tr> 1009 <td>CVE-2016-6719</td> 1010 <td><a href="https://android.googlesource.com/platform/packages/apps/Bluetooth/+/e1b6db10e913c09d0b695368336137f6aabee462">A-29043989</a> [<a href="https://android.googlesource.com/platform/frameworks/base/+/b1dc1757071ba46ee653d68f331486e86778b8e4">2</a>]</td> 1011 <td></td> 1012 <td></td> 1013 <td>4.4.45.0.25.1.16.06.0.17.0</td> 1014 <td>Google </td> 1015 </tr> 1016 </table> 1017 <h3 id="id-in-mediaserver">Mediaserver </h3> 1018 <p> 1019 Mediaserver 1020 </p> 1021 <table> 1022 <col width="18%"> 1023 <col width="18%"> 1024 <col width="10%"> 1025 <col width="19%"> 1026 <col width="17%"> 1027 <col width="17%"> 1028 <tr> 1029 <th>CVE</th> 1030 <th></th> 1031 <th></th> 1032 <th> Google </th> 1033 <th> AOSP </th> 1034 <th></th> 1035 </tr> 1036 <tr> 1037 <td>CVE-2016-6720</td> 1038 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/0f177948ae2640bfe4d70f8e4248e106406b3b0a">A-29422020</a> [<a href="https://android.googlesource.com/platform/frameworks/av/+/2c75e1c3b98e4e94f50c63e2b7694be5f948477c">2</a>] [<a href="https://android.googlesource.com/platform/frameworks/av/+/7c88b498fda1c2b608a9dd73960a2fd4d7b7e3f7">3</a>] [<a href="https://android.googlesource.com/platform/frameworks/av/+/640b04121d7cd2cac90e2f7c82b97fce05f074a5">4</a>]</td> 1039 <td></td> 1040 <td></td> 1041 <td>4.4.45.0.25.1.16.06.0.17.0</td> 1042 <td>2016 6 15 </td> 1043 </tr> 1044 <tr> 1045 <td>CVE-2016-6721</td> 1046 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/f6bf0102bdc1adff973e08d8ce9c869c4e2efade">A-30875060</a></td> 1047 <td></td> 1048 <td></td> 1049 <td>6.06.0.17.0</td> 1050 <td>2016 8 13 </td> 1051 </tr> 1052 <tr> 1053 <td>CVE-2016-6722</td> 1054 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/89c03b3b9ff74a507a8b8334c50b08b334483556">A-31091777</a></td> 1055 <td></td> 1056 <td></td> 1057 <td>4.4.45.0.25.1.16.06.0.17.0</td> 1058 <td>2016 8 23 </td> 1059 </tr> 1060 </table> 1061 <h3 id="dos-in-proxy-auto-config"></h3> 1062 <p> 1063 1064 </p> 1065 <table> 1066 <col width="18%"> 1067 <col width="18%"> 1068 <col width="10%"> 1069 <col width="19%"> 1070 <col width="17%"> 1071 <col width="17%"> 1072 <tr> 1073 <th>CVE</th> 1074 <th></th> 1075 <th></th> 1076 <th> Google </th> 1077 <th> AOSP </th> 1078 <th></th> 1079 </tr> 1080 <tr> 1081 <td>CVE-2016-6723</td> 1082 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/d5b0d0b1df2e1a7943a4bb2034fd21487edd0264">A-30100884</a> [<a href="https://android.googlesource.com/platform/frameworks/base/+/31f351160cdfd9dbe9919682ebe41bde3bcf91c6">2</a>]</td> 1083 <td></td> 1084 <td></td> 1085 <td>4.4.45.0.25.1.16.06.0.17.0</td> 1086 <td>2016 7 11 </td> 1087 </tr> 1088 </table> 1089 <h3 id="dos-in-input-manager-service"></h3> 1090 <p> 1091 1092 </p> 1093 <table> 1094 <col width="18%"> 1095 <col width="18%"> 1096 <col width="10%"> 1097 <col width="19%"> 1098 <col width="17%"> 1099 <col width="17%"> 1100 <tr> 1101 <th>CVE</th> 1102 <th></th> 1103 <th></th> 1104 <th> Google </th> 1105 <th> AOSP </th> 1106 <th></th> 1107 </tr> 1108 <tr> 1109 <td>CVE-2016-6724</td> 1110 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/7625010a2d22f8c3f1aeae2ef88dde37cbebd0bf">A-30568284</a> 1111 </td> 1112 <td></td> 1113 <td></td> 1114 <td>4.4.45.0.25.1.16.06.0.17.0</td> 1115 <td>Google </td> 1116 </tr> 1117 </table> 1118 <h2 id="2016-11-05-details">2016-11-05 - </h2> 1119 <p> 1120 <a href="#2016-11-05-summary">2016-11-05 - </a> CVE Google AOSP Bug ID AOSP Bug Bug ID </p> 1121 <h3 id="rce-in-qualcomm-crypto-driver">Qualcomm </h3> 1122 <p> 1123 Qualcomm 1124 </p> 1125 <table> 1126 <col width="19%"> 1127 <col width="20%"> 1128 <col width="10%"> 1129 <col width="23%"> 1130 <col width="17%"> 1131 <tr> 1132 <th>CVE</th> 1133 <th></th> 1134 <th></th> 1135 <th> Google </th> 1136 <th></th> 1137 </tr> 1138 <tr> 1139 <td>CVE-2016-6725</td> 1140 <td>A-30515053<br> 1141 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.10/commit/?id=cc95d644ee8a043f2883d65dda20e16f95041de3">QC-CR#1050970</a></td> 1142 <td></td> 1143 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixelPixel XL</td> 1144 <td>2016 7 25 </td> 1145 </tr> 1146 </table> 1147 <h3 id="eop-in-kernel-file-system"></h3> 1148 <p> 1149 1150 </p> 1151 <table> 1152 <col width="19%"> 1153 <col width="20%"> 1154 <col width="10%"> 1155 <col width="23%"> 1156 <col width="17%"> 1157 <tr> 1158 <th>CVE</th> 1159 <th></th> 1160 <th></th> 1161 <th> Google </th> 1162 <th></th> 1163 </tr> 1164 <tr> 1165 <td>CVE-2015-8961</td> 1166 <td>A-30952474<br> 1167 <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=6934da9238da947628be83635e365df41064b09b"></a></td> 1168 <td></td> 1169 <td>PixelPixel XL</td> 1170 <td>2015 10 18 </td> 1171 </tr> 1172 <tr> 1173 <td>CVE-2016-7911</td> 1174 <td>A-30946378<br> 1175 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=8ba8682107ee2ca3347354e018865d8e1967c5f4"></a></td> 1176 <td></td> 1177 <td>Nexus 5XNexus 6Nexus 6PNexus 9Android OnePixel CNexus PlayerPixelPixel XL</td> 1178 <td>2016 7 1 </td> 1179 </tr> 1180 <tr> 1181 <td>CVE-2016-7910</td> 1182 <td>A-30942273<br> 1183 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=77da160530dd1dc94f6ae15a981f24e5f0021e84"></a></td> 1184 <td></td> 1185 <td>Nexus 5XNexus 6Nexus 6PNexus 9Android OnePixel CNexus PlayerPixelPixel XL</td> 1186 <td>2016 7 29 </td> 1187 </tr> 1188 </table> 1189 <h3 id="eop-in-kernel-scsi-driver"> SCSI </h3> 1190 <p> 1191 SCSI 1192 </p> 1193 <table> 1194 <col width="19%"> 1195 <col width="20%"> 1196 <col width="10%"> 1197 <col width="23%"> 1198 <col width="17%"> 1199 <tr> 1200 <th>CVE</th> 1201 <th></th> 1202 <th></th> 1203 <th> Google </th> 1204 <th></th> 1205 </tr> 1206 <tr> 1207 <td>CVE-2015-8962</td> 1208 <td>A-30951599<br> 1209 <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=f3951a3709ff50990bf3e188c27d346792103432"></a></td> 1210 <td></td> 1211 <td>PixelPixel XL</td> 1212 <td>2015 10 30 </td> 1213 </tr> 1214 </table> 1215 <h3 id="eop-in-kernel-media-driver"></h3> 1216 <p> 1217 1218 </p> 1219 <table> 1220 <col width="19%"> 1221 <col width="20%"> 1222 <col width="10%"> 1223 <col width="23%"> 1224 <col width="17%"> 1225 <tr> 1226 <th>CVE</th> 1227 <th></th> 1228 <th></th> 1229 <th> Google </th> 1230 <th></th> 1231 </tr> 1232 <tr> 1233 <td>CVE-2016-7913</td> 1234 <td>A-30946097<br> 1235 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=8dfbcc4351a0b6d2f2d77f367552f48ffefafe18"></a></td> 1236 <td></td> 1237 <td>Nexus 6PAndroid OneNexus PlayerPixelPixel XL</td> 1238 <td>2016 1 28 </td> 1239 </tr> 1240 </table> 1241 <h3 id="eop-in-kernel-usb-driver"> USB </h3> 1242 <p> 1243 USB 1244 </p> 1245 <table> 1246 <col width="19%"> 1247 <col width="20%"> 1248 <col width="10%"> 1249 <col width="23%"> 1250 <col width="17%"> 1251 <tr> 1252 <th>CVE</th> 1253 <th></th> 1254 <th></th> 1255 <th> Google </th> 1256 <th></th> 1257 </tr> 1258 <tr> 1259 <td>CVE-2016-7912</td> 1260 <td>A-30950866<br> 1261 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=38740a5b87d53ceb89eb2c970150f6e94e00373a"></a></td> 1262 <td></td> 1263 <td>Pixel CPixelPixel XL</td> 1264 <td>2016 4 14 </td> 1265 </tr> 1266 </table> 1267 <h3 id="eop-in-kernel-ion-subsystem"> ION </h3> 1268 <p> 1269 ION 1270 </p> 1271 <table> 1272 <col width="19%"> 1273 <col width="20%"> 1274 <col width="10%"> 1275 <col width="23%"> 1276 <col width="17%"> 1277 <tr> 1278 <th>CVE</th> 1279 <th></th> 1280 <th></th> 1281 <th> Google </th> 1282 <th></th> 1283 </tr> 1284 <tr> 1285 <td>CVE-2016-6728</td> 1286 <td>A-30400942*</td> 1287 <td></td> 1288 <td>Nexus 5Nexus 5XNexus 6Nexus 6PNexus 9Nexus PlayerPixel CAndroid One</td> 1289 <td>2016 7 25 </td> 1290 </tr> 1291 </table> 1292 <p> 1293 * <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> Google 1294 </p> 1295 <h3 id="eop-in-qualcomm-bootloader">Qualcomm </h3> 1296 <p> 1297 Qualcomm 1298 </p> 1299 <table> 1300 <col width="19%"> 1301 <col width="20%"> 1302 <col width="10%"> 1303 <col width="23%"> 1304 <col width="17%"> 1305 <tr> 1306 <th>CVE</th> 1307 <th></th> 1308 <th></th> 1309 <th> Google </th> 1310 <th></th> 1311 </tr> 1312 <tr> 1313 <td>CVE-2016-6729</td> 1314 <td>A-30977990*<br>QC-CR#977684</td> 1315 <td></td> 1316 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixelPixel XL</td> 1317 <td>2016 7 25 </td> 1318 </tr> 1319 </table> 1320 <p> 1321 * <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> Google 1322 </p> 1323 <h3 id="eop-in-nvidia-gpu-driver">NVIDIA GPU </h3> 1324 <p> 1325 NVIDIA GPU 1326 </p> 1327 <table> 1328 <col width="19%"> 1329 <col width="20%"> 1330 <col width="10%"> 1331 <col width="23%"> 1332 <col width="17%"> 1333 <tr> 1334 <th>CVE</th> 1335 <th></th> 1336 <th></th> 1337 <th> Google </th> 1338 <th></th> 1339 </tr> 1340 <tr> 1341 <td>CVE-2016-6730</td> 1342 <td>A-30904789*<br>N-CVE-2016-6730</td> 1343 <td></td> 1344 <td>Pixel C</td> 1345 <td>2016 8 16 </td> 1346 </tr> 1347 <tr> 1348 <td>CVE-2016-6731</td> 1349 <td>A-30906023*<br>N-CVE-2016-6731</td> 1350 <td></td> 1351 <td>Pixel C</td> 1352 <td>2016 8 16 </td> 1353 </tr> 1354 <tr> 1355 <td>CVE-2016-6732</td> 1356 <td>A-30906599*<br>N-CVE-2016-6732</td> 1357 <td></td> 1358 <td>Pixel C</td> 1359 <td>2016 8 16 </td> 1360 </tr> 1361 <tr> 1362 <td>CVE-2016-6733</td> 1363 <td>A-30906694*<br>N-CVE-2016-6733</td> 1364 <td></td> 1365 <td>Pixel C</td> 1366 <td>2016 8 16 </td> 1367 </tr> 1368 <tr> 1369 <td>CVE-2016-6734</td> 1370 <td>A-30907120*<br>N-CVE-2016-6734</td> 1371 <td></td> 1372 <td>Pixel C</td> 1373 <td>2016 8 16 </td> 1374 </tr> 1375 <tr> 1376 <td>CVE-2016-6735</td> 1377 <td>A-30907701*<br>N-CVE-2016-6735</td> 1378 <td></td> 1379 <td>Pixel C</td> 1380 <td>2016 8 16 </td> 1381 </tr> 1382 <tr> 1383 <td>CVE-2016-6736</td> 1384 <td>A-30953284*<br>N-CVE-2016-6736</td> 1385 <td></td> 1386 <td>Pixel C</td> 1387 <td>2016 8 18 </td> 1388 </tr> 1389 </table> 1390 <p> 1391 * <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> Google 1392 </p> 1393 <h3 id="eop-in-kernel-networking-subsystem"></h3> 1394 <p> 1395 1396 </p> 1397 <table> 1398 <col width="19%"> 1399 <col width="20%"> 1400 <col width="10%"> 1401 <col width="23%"> 1402 <col width="17%"> 1403 <tr> 1404 <th>CVE</th> 1405 <th></th> 1406 <th></th> 1407 <th> Google </th> 1408 <th></th> 1409 </tr> 1410 <tr> 1411 <td>CVE-2016-6828</td> 1412 <td>A-31183296<br> 1413 <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/include/net/tcp.h?id=bb1fceca22492109be12640d49f5ea5a544c6bb4"></a></td> 1414 <td></td> 1415 <td>Nexus 5XNexus 6Nexus 6PNexus 9Android OnePixel CNexus PlayerPixelPixel XL</td> 1416 <td>2016 8 18 </td> 1417 </tr> 1418 </table> 1419 <h3 id="eop-in-kernel-sound-subsystem"></h3> 1420 <p> 1421 1422 </p> 1423 <table> 1424 <col width="19%"> 1425 <col width="20%"> 1426 <col width="10%"> 1427 <col width="23%"> 1428 <col width="17%"> 1429 <tr> 1430 <th>CVE</th> 1431 <th></th> 1432 <th></th> 1433 <th> Google </th> 1434 <th></th> 1435 </tr> 1436 <tr> 1437 <td>CVE-2016-2184</td> 1438 <td>A-30952477<br> 1439 <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=836b34a935abc91e13e63053d0a83b24dfb5ea78"></a></td> 1440 <td></td> 1441 <td>Nexus 5XNexus 6Nexus 6PNexus 9Android OnePixel CNexus PlayerPixelPixel XL</td> 1442 <td>2016 3 31 </td> 1443 </tr> 1444 </table> 1445 <h3 id="eop-in-kernel-ion-subsystem-1"> ION </h3> 1446 <p> 1447 ION 1448 </p> 1449 <table> 1450 <col width="19%"> 1451 <col width="20%"> 1452 <col width="10%"> 1453 <col width="23%"> 1454 <col width="17%"> 1455 <tr> 1456 <th>CVE</th> 1457 <th></th> 1458 <th></th> 1459 <th> Google </th> 1460 <th></th> 1461 </tr> 1462 <tr> 1463 <td>CVE-2016-6737</td> 1464 <td>A-30928456*</td> 1465 <td></td> 1466 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixel CNexus PlayerPixelPixel XL</td> 1467 <td>Google </td> 1468 </tr> 1469 </table> 1470 <p> 1471 * <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> Google 1472 </p> 1473 <h3 id="vulnerabilities-in-qualcomm-components">Qualcomm </h3> 1474 <p> 1475 Qualcomm 2016 6 Qualcomm AMSS 80-NV606-17 1476 </p> 1477 <table> 1478 <col width="19%"> 1479 <col width="20%"> 1480 <col width="10%"> 1481 <col width="23%"> 1482 <col width="17%"> 1483 <tr> 1484 <th>CVE</th> 1485 <th></th> 1486 <th>*</th> 1487 <th> Google </th> 1488 <th></th> 1489 </tr> 1490 <tr> 1491 <td>CVE-2016-6727</td> 1492 <td>A-31092400**</td> 1493 <td></td> 1494 <td>Android One</td> 1495 <td>Qualcomm </td> 1496 </tr> 1497 <tr> 1498 <td>CVE-2016-6726</td> 1499 <td>A-30775830**</td> 1500 <td></td> 1501 <td>Nexus 6Android One</td> 1502 <td>Qualcomm </td> 1503 </tr> 1504 </table> 1505 <p>* </p> 1506 <p> 1507 ** <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> Google 1508 </p> 1509 <h3 id="rce-in-expat">Expat </h3> 1510 <p> 1511 Expat Expat XML Expat 1512 </p> 1513 <table> 1514 <col width="18%"> 1515 <col width="18%"> 1516 <col width="10%"> 1517 <col width="19%"> 1518 <col width="17%"> 1519 <col width="17%"> 1520 <tr> 1521 <th>CVE</th> 1522 <th></th> 1523 <th></th> 1524 <th> Google </th> 1525 <th> AOSP </th> 1526 <th></th> 1527 </tr> 1528 1529 <tr> 1530 <td>CVE-2016-0718</td> 1531 <td><a href="https://android.googlesource.com/platform/external/expat/+/52ac633b73856ded34b33bd4adb4ab793bbbe963">A-28698301</a></td> 1532 <td></td> 1533 <td>*</td> 1534 <td>4.4.45.0.25.1.16.06.0.1</td> 1535 <td>2016 5 10 </td> 1536 </tr> 1537 <tr> 1538 <td>CVE-2012-6702</td> 1539 <td><a href="https://android.googlesource.com/platform/external/expat/+/a11ff32280a863bff93df13ad643912ad9bf1302">A-29149404</a></td> 1540 <td></td> 1541 <td>*</td> 1542 <td>4.4.45.0.25.1.16.06.0.1</td> 1543 <td>2016 3 6 </td> 1544 </tr> 1545 <tr> 1546 <td>CVE-2016-5300</td> 1547 <td><a href="https://android.googlesource.com/platform/external/expat/+/a11ff32280a863bff93df13ad643912ad9bf1302">A-29149404</a></td> 1548 <td></td> 1549 <td>*</td> 1550 <td>4.4.45.0.25.1.16.06.0.1</td> 1551 <td>2016 6 4 </td> 1552 </tr> 1553 <tr> 1554 <td>CVE-2015-1283</td> 1555 <td><a href="https://android.googlesource.com/platform/external/expat/+/13b40c2040a17038b63a61e2b112c634da203d3b">A-27818751</a></td> 1556 <td></td> 1557 <td>*</td> 1558 <td>4.4.45.0.25.1.16.06.0.1</td> 1559 <td>2015 7 24 </td> 1560 </tr> 1561 </table> 1562 1563 <p> 1564 * Android 7.0 Google 1565 </p> 1566 <h3 id="rce-in-webview">WebView </h3> 1567 <p> 1568 WebView 1569 </p> 1570 <table> 1571 <col width="18%"> 1572 <col width="18%"> 1573 <col width="10%"> 1574 <col width="19%"> 1575 <col width="17%"> 1576 <col width="17%"> 1577 <tr> 1578 <th>CVE</th> 1579 <th></th> 1580 <th></th> 1581 <th> Google </th> 1582 <th> AOSP </th> 1583 <th></th> 1584 </tr> 1585 <tr> 1586 <td>CVE-2016-6754</td> 1587 <td>A-31217937</td> 1588 <td></td> 1589 <td>*</td> 1590 <td>5.0.25.1.16.06.0.1</td> 1591 <td>2016 8 23 </td> 1592 </tr> 1593 </table> 1594 <p> 1595 * Android 7.0 Google 1596 </p> 1597 <h3 id="rce-in-freetype">Freetype </h3> 1598 <p> 1599 Freetype Freetype 1600 </p> 1601 <table> 1602 <col width="18%"> 1603 <col width="18%"> 1604 <col width="10%"> 1605 <col width="19%"> 1606 <col width="17%"> 1607 <col width="17%"> 1608 <tr> 1609 <th>CVE</th> 1610 <th></th> 1611 <th></th> 1612 <th> Google </th> 1613 <th> AOSP </th> 1614 <th></th> 1615 </tr> 1616 <tr> 1617 <td>CVE-2014-9675</td> 1618 <td><a href="https://android.googlesource.com/platform/external/freetype/+/f720f0dbcf012d6c984dbbefa0875ef9840458c6">A-24296662</a> [<a href="https://android.googlesource.com/platform/external/pdfium/+/96f965ff7411f1edba72140fd70740e63cabec71">2</a>]</td> 1619 <td></td> 1620 <td>*</td> 1621 <td>4.4.45.0.25.1.16.06.0.1</td> 1622 <td>Google </td> 1623 </tr> 1624 </table> 1625 <p> 1626 * Android 7.0 Google 1627 </p> 1628 <h3 id="eop-in-kernel-performance-subsystem"></h3> 1629 <p> 1630 1631 </p> 1632 <table> 1633 <col width="19%"> 1634 <col width="20%"> 1635 <col width="10%"> 1636 <col width="23%"> 1637 <col width="17%"> 1638 <tr> 1639 <th>CVE</th> 1640 <th></th> 1641 <th></th> 1642 <th> Google </th> 1643 <th></th> 1644 </tr> 1645 <tr> 1646 <td>CVE-2015-8963</td> 1647 <td>A-30952077<br> 1648 <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=12ca6ad2e3a896256f086497a7c7406a547ee373"></a></td> 1649 <td></td> 1650 <td>Nexus 5XNexus 6Nexus 6PNexus 9Android OnePixel CNexus PlayerPixelPixel XL</td> 1651 <td>2015 12 15 </td> 1652 </tr> 1653 </table> 1654 <h3 id="eop-in-kernel-system-call-auditing-subsystem"></h3> 1655 <p> 1656 1657 </p> 1658 <table> 1659 <col width="19%"> 1660 <col width="20%"> 1661 <col width="10%"> 1662 <col width="23%"> 1663 <col width="17%"> 1664 <tr> 1665 <th>CVE</th> 1666 <th></th> 1667 <th></th> 1668 <th> Google </th> 1669 <th></th> 1670 </tr> 1671 <tr> 1672 <td>CVE-2016-6136</td> 1673 <td>A-30956807<br> 1674 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=43761473c254b45883a64441dd0bc85a42f3645c"></a></td> 1675 <td></td> 1676 <td>Android OnePixel CNexus Player</td> 1677 <td>2016 7 1 </td> 1678 </tr> 1679 </table> 1680 <h3 id="eop-in-qualcomm-crypto-engine-driver">Qualcomm </h3> 1681 <p> 1682 Qualcomm 1683 </p> 1684 <table> 1685 <col width="19%"> 1686 <col width="20%"> 1687 <col width="10%"> 1688 <col width="23%"> 1689 <col width="17%"> 1690 <tr> 1691 <th>CVE</th> 1692 <th></th> 1693 <th></th> 1694 <th> Google </th> 1695 <th></th> 1696 </tr> 1697 <tr> 1698 <td>CVE-2016-6738</td> 1699 <td>A-30034511<br> 1700 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=a829c54236b455885c3e9c7c77ac528b62045e79">QC-CR#1050538</a></td> 1701 <td></td> 1702 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixelPixel XL</td> 1703 <td>2016 7 7 </td> 1704 </tr> 1705 </table> 1706 <h3 id="eop-in-qualcomm-camera-driver">Qualcomm </h3> 1707 <p> 1708 Qualcomm 1709 </p> 1710 <table> 1711 <col width="19%"> 1712 <col width="20%"> 1713 <col width="10%"> 1714 <col width="23%"> 1715 <col width="17%"> 1716 <tr> 1717 <th>CVE</th> 1718 <th></th> 1719 <th></th> 1720 <th> Google </th> 1721 <th></th> 1722 </tr> 1723 <tr> 1724 <td>CVE-2016-6739</td> 1725 <td>A-30074605*<br>QC-CR#1049826</td> 1726 <td></td> 1727 <td>Nexus 5XNexus 6PPixelPixel XL</td> 1728 <td>2016 7 11 </td> 1729 </tr> 1730 <tr> 1731 <td>CVE-2016-6740</td> 1732 <td>A-30143904<br> 1733 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.10/commit/?id=ef78bd62f0c064ae4c827e158d828b2c110ebcdc">QC-CR#1056307</a></td> 1734 <td></td> 1735 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixelPixel XL</td> 1736 <td>2016 7 12 </td> 1737 </tr> 1738 <tr> 1739 <td>CVE-2016-6741</td> 1740 <td>A-30559423<br> 1741 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=d291eebd8e43bba3229ae7ef9146a132894dc293">QC-CR#1060554</a></td> 1742 <td></td> 1743 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixelPixel XL</td> 1744 <td>2016 7 28 </td> 1745 </tr> 1746 </table> 1747 <p> 1748 * <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> Google 1749 </p> 1750 <h3 id="eop-in-qualcomm-bus-driver">Qualcomm </h3> 1751 <p> 1752 Qualcomm 1753 </p> 1754 <table> 1755 <col width="19%"> 1756 <col width="20%"> 1757 <col width="10%"> 1758 <col width="23%"> 1759 <col width="17%"> 1760 <tr> 1761 <th>CVE</th> 1762 <th></th> 1763 <th></th> 1764 <th> Google </th> 1765 <th></th> 1766 </tr> 1767 <tr> 1768 <td>CVE-2016-3904</td> 1769 <td>A-30311977<br> 1770 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=069683407ca9a820d05c914b57c587bcd3f16a3a">QC-CR#1050455</a></td> 1771 <td></td> 1772 <td>Nexus 5XNexus 6PPixelPixel XL</td> 1773 <td>2016 7 22 </td> 1774 </tr> 1775 </table> 1776 <h3 id="eop-in-synaptics-touchscreen-driver">Synaptics </h3> 1777 <p> 1778 Synaptics 1779 </p> 1780 <table> 1781 <col width="19%"> 1782 <col width="20%"> 1783 <col width="10%"> 1784 <col width="23%"> 1785 <col width="17%"> 1786 <tr> 1787 <th>CVE</th> 1788 <th></th> 1789 <th></th> 1790 <th> Google </th> 1791 <th></th> 1792 </tr> 1793 <tr> 1794 <td>CVE-2016-6742</td> 1795 <td>A-30799828*</td> 1796 <td></td> 1797 <td>Nexus 5XAndroid One</td> 1798 <td>2016 8 9 </td> 1799 </tr> 1800 <tr> 1801 <td>CVE-2016-6744</td> 1802 <td>A-30970485*</td> 1803 <td></td> 1804 <td>Nexus 5X</td> 1805 <td>2016 8 19 </td> 1806 </tr> 1807 <tr> 1808 <td>CVE-2016-6745</td> 1809 <td>A-31252388*</td> 1810 <td></td> 1811 <td>Nexus 5XNexus 6PNexus 9Android OnePixelPixel XL</td> 1812 <td>2016 9 1 </td> 1813 </tr> 1814 <tr> 1815 <td>CVE-2016-6743</td> 1816 <td>A-30937462*</td> 1817 <td></td> 1818 <td>Nexus 9Android One</td> 1819 <td>Google </td> 1820 </tr> 1821 </table> 1822 <p> 1823 * <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> Google 1824 </p> 1825 <h3 id="id-in-kernel-components"></h3> 1826 <p> 1827 1828 </p> 1829 <table> 1830 <col width="19%"> 1831 <col width="20%"> 1832 <col width="10%"> 1833 <col width="23%"> 1834 <col width="17%"> 1835 <tr> 1836 <th>CVE</th> 1837 <th></th> 1838 <th></th> 1839 <th> Google </th> 1840 <th></th> 1841 </tr> 1842 <tr> 1843 <td>CVE-2015-8964</td> 1844 <td>A-30951112<br> 1845 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=dd42bf1197144ede075a9d4793123f7689e164bc"></a></td> 1846 <td></td> 1847 <td>Nexus 5XNexus 6Nexus 6PNexus 9Android OnePixel CNexus PlayerPixelPixel XL</td> 1848 <td>2015 11 27 </td> 1849 </tr> 1850 <tr> 1851 <td>CVE-2016-7915</td> 1852 <td>A-30951261<br> 1853 <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=50220dead1650609206efe91f0cc116132d59b3f"></a></td> 1854 <td></td> 1855 <td>Nexus 5XNexus 6Nexus 6PNexus 9Android OnePixel CNexus PlayerPixelPixel XL</td> 1856 <td>2016 1 19 </td> 1857 </tr> 1858 <tr> 1859 <td>CVE-2016-7914</td> 1860 <td>A-30513364<br> 1861 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=8d4a2ec1e0b41b0cf9a0c5cd4511da7f8e4f3de2"></a></td> 1862 <td></td> 1863 <td>Pixel CPixelPixel XL</td> 1864 <td>2016 4 6 </td> 1865 </tr> 1866 <tr> 1867 <td>CVE-2016-7916</td> 1868 <td>A-30951939<br> 1869 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=8148a73c9901a8794a50f950083c00ccf97d43b3"></a></td> 1870 <td></td> 1871 <td>Nexus 5XNexus 6Nexus 6PNexus 9Android OnePixel CNexus PlayerPixelPixel XL</td> 1872 <td>2016 5 5 </td> 1873 </tr> 1874 </table> 1875 <h3 id="id-in-nvidia-gpu-driver">NVIDIA GPU </h3> 1876 <p> 1877 NVIDIA GPU 1878 </p> 1879 <table> 1880 <col width="19%"> 1881 <col width="20%"> 1882 <col width="10%"> 1883 <col width="23%"> 1884 <col width="17%"> 1885 <tr> 1886 <th>CVE</th> 1887 <th></th> 1888 <th></th> 1889 <th> Google </th> 1890 <th></th> 1891 </tr> 1892 <tr> 1893 <td>CVE-2016-6746</td> 1894 <td>A-30955105*<br>N-CVE-2016-6746</td> 1895 <td></td> 1896 <td>Pixel C</td> 1897 <td>2016 8 18 </td> 1898 </tr> 1899 </table> 1900 <p> 1901 * <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> Google 1902 </p> 1903 <h3 id="dos-in-mediaserver-1">Mediaserver </h3> 1904 <p> 1905 Mediaserver 1906 </p> 1907 <table> 1908 <col width="19%"> 1909 <col width="20%"> 1910 <col width="10%"> 1911 <col width="23%"> 1912 <col width="17%"> 1913 <tr> 1914 <th>CVE</th> 1915 <th></th> 1916 <th></th> 1917 <th> Google </th> 1918 <th></th> 1919 </tr> 1920 <tr> 1921 <td>CVE-2016-6747</td> 1922 <td>A-31244612*<br>N-CVE-2016-6747</td> 1923 <td></td> 1924 <td>Nexus 9</td> 1925 <td>Google </td> 1926 </tr> 1927 </table> 1928 <p> 1929 * <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> Google 1930 </p> 1931 <h3 id="id-in-kernel-components-1"></h3> 1932 <p> 1933 1934 </p> 1935 <table> 1936 <col width="19%"> 1937 <col width="20%"> 1938 <col width="10%"> 1939 <col width="23%"> 1940 <col width="17%"> 1941 <tr> 1942 <th>CVE</th> 1943 <th></th> 1944 <th></th> 1945 <th> Google </th> 1946 <th></th> 1947 </tr> 1948 <tr> 1949 <td>CVE-2016-7917</td> 1950 <td>A-30947055<br> 1951 <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=c58d6c93680f28ac58984af61d0a7ebf4319c241"></a></td> 1952 <td></td> 1953 <td>Pixel CPixelPixel XL</td> 1954 <td>2016 2 2 </td> 1955 </tr> 1956 <tr> 1957 <td>CVE-2016-6753</td> 1958 <td>A-30149174*</td> 1959 <td></td> 1960 <td>Nexus 5XNexus 6Nexus 6PNexus 9Pixel CNexus PlayerPixelPixel XL</td> 1961 <td>2016 7 13 </td> 1962 </tr> 1963 </table> 1964 <p> 1965 * <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> Google 1966 </p> 1967 <h3 id="id-in-qualcomm-components">Qualcomm </h3> 1968 <p> 1969 Qualcomm GPU SMSM 1970 </p> 1971 <table> 1972 <col width="19%"> 1973 <col width="20%"> 1974 <col width="10%"> 1975 <col width="23%"> 1976 <col width="17%"> 1977 <tr> 1978 <th>CVE</th> 1979 <th></th> 1980 <th></th> 1981 <th> Google </th> 1982 <th></th> 1983 </tr> 1984 <tr> 1985 <td>CVE-2016-6748</td> 1986 <td>A-30076504<br> 1987 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.10/commit/?id=be651d020b122a1ba9410d23ca4ebbe9f5598df6">QC-CR#987018</a></td> 1988 <td></td> 1989 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixelPixel XL</td> 1990 <td>2016 7 12 </td> 1991 </tr> 1992 <tr> 1993 <td>CVE-2016-6749</td> 1994 <td>A-30228438<br> 1995 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.10/commit/?id=f9185dc83b92e7d1ee341e32e8cf5ed00a7253a7">QC-CR#1052818</a></td> 1996 <td></td> 1997 <td>Nexus 5XNexus 6PPixelPixel XL</td> 1998 <td>2016 7 12 </td> 1999 </tr> 2000 <tr> 2001 <td>CVE-2016-6750</td> 2002 <td>A-30312054<br> 2003 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=34bda711a1c7bc7f9fd7bea3a5be439ed00577e5">QC-CR#1052825</a></td> 2004 <td></td> 2005 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixelPixel XL</td> 2006 <td>2016 7 21 </td> 2007 </tr> 2008 <tr> 2009 <td>CVE-2016-3906</td> 2010 <td>A-30445973<br> 2011 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=b333d32745fec4fb1098ee1a03d4425f3c1b4c2e">QC-CR#1054344</a></td> 2012 <td></td> 2013 <td>Nexus 5XNexus 6P</td> 2014 <td>2016 7 27 </td> 2015 </tr> 2016 <tr> 2017 <td>CVE-2016-3907</td> 2018 <td>A-30593266<br> 2019 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.10/commit/?id=744330f4e5d70dce71c4c9e03c5b6a8b59bb0cda">QC-CR#1054352</a></td> 2020 <td></td> 2021 <td>Nexus 5XNexus 6PPixelPixel XL</td> 2022 <td>2016 8 2 </td> 2023 </tr> 2024 <tr> 2025 <td>CVE-2016-6698</td> 2026 <td>A-30741851<br> 2027 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.10/commit/?id=de90beb76ad0b80da821c3b857dd30cd36319e61">QC-CR#1058826</a></td> 2028 <td></td> 2029 <td>Nexus 5XNexus 6PAndroid OnePixelPixel XL</td> 2030 <td>2016 8 2 </td> 2031 </tr> 2032 <tr> 2033 <td>CVE-2016-6751</td> 2034 <td>A-30902162*<br>QC-CR#1062271</td> 2035 <td></td> 2036 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixelPixel XL</td> 2037 <td>2016 8 15 </td> 2038 </tr> 2039 <tr> 2040 <td>CVE-2016-6752</td> 2041 <td>A-31498159<br> 2042 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?h=0de2c7600c8f1f0152a2f421c6593f931186400a">QC-CR#987051</a></td> 2043 <td></td> 2044 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixelPixel XL</td> 2045 <td>Google </td> 2046 </tr> 2047 </table> 2048 <p> 2049 * <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> Google 2050 </p> 2051 2052 <h2 id="2016-11-06-details">2016-11-06 - </h2> 2053 <p> 2054 <a href="#2016-11-06-summary">2016-11-06 - </a> CVE Google AOSP Bug ID AOSP Bug Bug ID </p> 2055 <h3 id="eop-in-kernel-memory-subsystem"></h3> 2056 <p> 2057 2058 </p> 2059 <p> 2060 <strong></strong>2016-11-06 2016-11-01 2016-11-05 2061 </p> 2062 <table> 2063 <tr> 2064 <th>CVE</th> 2065 <th></th> 2066 <th></th> 2067 <th></th> 2068 <th></th> 2069 </tr> 2070 <tr> 2071 <td>CVE-2016-5195</td> 2072 <td>A-32141528<br> 2073 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=9691eac5593ff1e2f82391ad327f21d90322aec1"></a> [<a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=e45a502bdeae5a075257c4f061d1ff4ff0821354">2</a>]</td> 2074 <td></td> 2075 <td>3.103.18</td> 2076 <td>2016 10 12 </td> 2077 </tr> 2078 </table> 2079 <h2 id="common-questions-and-answers"></h2> 2080 <p> 2081 2082 </p> 2083 <p> 2084 <strong>1. </strong> 2085 </p> 2086 <p> 2087 <a href="https://support.google.com/pixelphone/answer/4457705#pixel_phones&nexus_devices">Pixel Nexus </a> 2088 </p> 2089 <ul> 2090 <li>2016-11-01 2016-11-01 </li> 2091 <li>2016-11-05 2016-11-05 </li> 2092 <li>2016-11-06 2016-11-06 </li> 2093 </ul> 2094 <p> 2095 2096 </p> 2097 <ul> 2098 <li>[ro.build.version.security_patch]:[2016-11-01]</li> 2099 <li>[ro.build.version.security_patch]:[2016-11-05]</li> 2100 <li>[ro.build.version.security_patch]:[2016-11-06]</li> 2101 </ul> 2102 <p> 2103 <strong>2. 3 </strong> 2104 </p> 2105 <p> 2106 3 Android Android Android 2107 </p> 2108 <ul> 2109 <li> 2016 11 1 </li> 2110 <li> 2016 11 5 </li> 2111 <li> 2016 11 6 </li> 2112 </ul> 2113 <p> 2114 2115 </p> 2116 <p id="google-devices"> 2117 <strong>3. Google </strong> 2118 </p> 2119 <p> 2120 <a href="#2016-11-01-details">2016-11-01</a><a href="#2016-11-05-details">2016-11-05</a> <a href="#2016-11-06-details">2016-11-06</a> Google Google <em></em> 2121 </p> 2122 <ul> 2123 <li><strong> Google </strong> Nexus Pixel Google <em></em><a href="https://support.google.com/pixelphone/answer/4457705#pixel_phones&nexus_devices"></a>Nexus 5Nexus 5XNexus 6Nexus 6PNexus 7 (2013)Nexus 9Android OneNexus PlayerPixel CPixel Pixel XL</li> 2124 <li><strong> Google </strong> Google Google Google <em></em></li> 2125 <li><strong> Google </strong> Android 7.0 Google Google <em></em></li> 2126 </ul> 2127 <p> 2128 <strong>4. </strong> 2129 </p> 2130 <p> 2131 <em></em> 2132 </p> 2133 <table> 2134 <tr> 2135 <th></th> 2136 <th></th> 2137 </tr> 2138 <tr> 2139 <td>A-</td> 2140 <td>Android Bug ID</td> 2141 </tr> 2142 <tr> 2143 <td>QC-</td> 2144 <td>Qualcomm </td> 2145 </tr> 2146 <tr> 2147 <td>M-</td> 2148 <td>MediaTek </td> 2149 </tr> 2150 <tr> 2151 <td>N-</td> 2152 <td>NVIDIA </td> 2153 </tr> 2154 <tr> 2155 <td>B-</td> 2156 <td>Broadcom </td> 2157 </tr> 2158 </table> 2159 2160 <h2 id="revisions"></h2> 2161 <ul> 2162 <li>2016 11 7 </li> 2163 <li>11 8 AOSP CVE-2016-6709 </li> 2164 </ul> 2165 2166 </body> 2167 </html> 2168
