1 <html devsite> 2 <head> 3 <title>Android 2016 9 </title> 4 <meta name="project_path" value="/_project.yaml" /> 5 <meta name="book_path" value="/_book.yaml" /> 6 </head> 7 <body> 8 <!-- 9 Copyright 2017 The Android Open Source Project 10 11 Licensed under the Apache License, Version 2.0 (the "License"); 12 you may not use this file except in compliance with the License. 13 You may obtain a copy of the License at 14 15 http://www.apache.org/licenses/LICENSE-2.0 16 17 Unless required by applicable law or agreed to in writing, software 18 distributed under the License is distributed on an "AS IS" BASIS, 19 WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 20 See the License for the specific language governing permissions and 21 limitations under the License. 22 --> 23 24 25 <p><em>2016 9 6 | 2016 9 12 </em> 26 </p> 27 28 <p>Android Android Google OTA Nexus Nexus <a href="https://developers.google.com/android/nexus/images">Google Developers </a>2016 9 6 <a href="https://support.google.com/nexus/answer/4457705#nexus_devices"></a> Nexus 2016 9 6 OTA 29 </p> 30 31 <p> 32 2016 8 5 () Android (AOSP) AOSP 33 </p> 34 35 <p> 36 </p> 37 38 <p> <a href="/security/enhancements/index.html">Android </a> ( SafetyNet) Android <a href="#mitigations">Android Google </a> 39 </p> 40 41 <p> 42 </p> 43 44 <h2 id="announcements"></h2> 45 <ul> 46 <li> Android Android <a href="#common-questions-and-answers"></a> 47 <ul> 48 <li><strong>2016-09-01</strong> 2016-09-01 () 49 <li><strong>2016-09-05</strong> 2016-09-01 2016-09-05 () 50 <li><strong>2016-09-06</strong> 2016-09-012016-09-05 2016-09-06 () 51 <li> Nexus 2016 9 6 OTA </li> 52 </li></li></li></ul> 53 </li> 54 </ul> 55 <h2></h2> 56 <p> 57 ID (CVE) Nexus <a href="/security/overview/updates-resources.html#severity"></a> 58 </p> 59 60 <h3 id="2016-09-01-summary">2016-09-01 </h3> 61 <p> 62 2016-09-01 63 </p> 64 65 <table> 66 <col width="55%"> 67 <col width="20%"> 68 <col width="13%"> 69 <col width="12%"> 70 <tr> 71 <th></th> 72 <th>CVE</th> 73 <th></th> 74 <th> Nexus </th> 75 </tr> 76 <tr> 77 <td>LibUtils </td> 78 <td>CVE-2016-3861</td> 79 <td></td> 80 <td></td> 81 </tr> 82 <tr> 83 <td></td> 84 <td>CVE-2016-3862</td> 85 <td></td> 86 <td></td> 87 </tr> 88 <tr> 89 <td>MediaMuxer </td> 90 <td>CVE-2016-3863</td> 91 <td></td> 92 <td></td> 93 </tr> 94 <tr> 95 <td></td> 96 <td>CVE-2016-3870CVE-2016-3871CVE-2016-3872</td> 97 <td></td> 98 <td></td> 99 </tr> 100 <tr> 101 <td></td> 102 <td>CVE-2016-3875</td> 103 <td></td> 104 <td>*</td> 105 </tr> 106 <tr> 107 <td></td> 108 <td>CVE-2016-3876</td> 109 <td></td> 110 <td></td> 111 </tr> 112 <tr> 113 <td></td> 114 <td>CVE-2016-3899CVE-2016-3878CVE-2016-3879CVE-2016-3880CVE-2016-3881</td> 115 <td></td> 116 <td></td> 117 </tr> 118 <tr> 119 <td></td> 120 <td>CVE-2016-3883</td> 121 <td></td> 122 <td></td> 123 </tr> 124 <tr> 125 <td></td> 126 <td>CVE-2016-3884</td> 127 <td></td> 128 <td></td> 129 </tr> 130 <tr> 131 <td>Debuggerd </td> 132 <td>CVE-2016-3885</td> 133 <td></td> 134 <td></td> 135 </tr> 136 <tr> 137 <td></td> 138 <td>CVE-2016-3886</td> 139 <td></td> 140 <td></td> 141 </tr> 142 <tr> 143 <td></td> 144 <td>CVE-2016-3887</td> 145 <td></td> 146 <td></td> 147 </tr> 148 <tr> 149 <td></td> 150 <td>CVE-2016-3888</td> 151 <td></td> 152 <td></td> 153 </tr> 154 <tr> 155 <td></td> 156 <td>CVE-2016-3889</td> 157 <td></td> 158 <td></td> 159 </tr> 160 <tr> 161 <td>Java </td> 162 <td>CVE-2016-3890</td> 163 <td></td> 164 <td>*</td> 165 </tr> 166 <tr> 167 <td></td> 168 <td>CVE-2016-3895</td> 169 <td></td> 170 <td></td> 171 </tr> 172 <tr> 173 <td>AOSP Mail </td> 174 <td>CVE-2016-3896</td> 175 <td></td> 176 <td>*</td> 177 </tr> 178 <tr> 179 <td>Wi-Fi </td> 180 <td>CVE-2016-3897</td> 181 <td></td> 182 <td>*</td> 183 </tr> 184 <tr> 185 <td></td> 186 <td>CVE-2016-3898</td> 187 <td></td> 188 <td></td> 189 </tr> 190 </table> 191 <p>* Android 7.0 Nexus 192 </p> 193 194 <h3 id="2016-09-05-summary">2016-09-05 </h3> 195 <p> 196 2016-09-05 2016-09-01 197 </p> 198 199 <table> 200 <col width="55%"> 201 <col width="20%"> 202 <col width="13%"> 203 <col width="12%"> 204 <tr> 205 <th></th> 206 <th>CVE</th> 207 <th></th> 208 <th> Nexus </th> 209 </tr> 210 <tr> 211 <td></td> 212 <td>CVE-2014-9529CVE-2016-4470</td> 213 <td></td> 214 <td></td> 215 </tr> 216 <tr> 217 <td></td> 218 <td>CVE-2013-7446</td> 219 <td></td> 220 <td></td> 221 </tr> 222 <tr> 223 <td></td> 224 <td>CVE-2016-3134</td> 225 <td></td> 226 <td></td> 227 </tr> 228 <tr> 229 <td> USB </td> 230 <td>CVE-2016-3951</td> 231 <td></td> 232 <td></td> 233 </tr> 234 <tr> 235 <td></td> 236 <td>CVE-2014-4655</td> 237 <td></td> 238 <td></td> 239 </tr> 240 <tr> 241 <td> ASN.1 </td> 242 <td>CVE-2016-2053</td> 243 <td></td> 244 <td></td> 245 </tr> 246 <tr> 247 <td>Qualcomm </td> 248 <td>CVE-2016-3864</td> 249 <td></td> 250 <td></td> 251 </tr> 252 <tr> 253 <td>Qualcomm </td> 254 <td>CVE-2016-3858</td> 255 <td></td> 256 <td></td> 257 </tr> 258 <tr> 259 <td></td> 260 <td>CVE-2016-4805</td> 261 <td></td> 262 <td></td> 263 </tr> 264 <tr> 265 <td>Synaptics </td> 266 <td>CVE-2016-3865</td> 267 <td></td> 268 <td></td> 269 </tr> 270 <tr> 271 <td>Qualcomm </td> 272 <td>CVE-2016-3859</td> 273 <td></td> 274 <td></td> 275 </tr> 276 <tr> 277 <td>Qualcomm </td> 278 <td>CVE-2016-3866</td> 279 <td></td> 280 <td></td> 281 </tr> 282 <tr> 283 <td>Qualcomm IPA </td> 284 <td>CVE-2016-3867</td> 285 <td></td> 286 <td></td> 287 </tr> 288 <tr> 289 <td>Qualcomm </td> 290 <td>CVE-2016-3868</td> 291 <td></td> 292 <td></td> 293 </tr> 294 <tr> 295 <td>Broadcom Wi-Fi </td> 296 <td>CVE-2016-3869</td> 297 <td></td> 298 <td></td> 299 </tr> 300 <tr> 301 <td> eCryptfs </td> 302 <td>CVE-2016-1583</td> 303 <td></td> 304 <td></td> 305 </tr> 306 <tr> 307 <td>NVIDIA </td> 308 <td>CVE-2016-3873</td> 309 <td></td> 310 <td></td> 311 </tr> 312 <tr> 313 <td>Qualcomm Wi-Fi </td> 314 <td>CVE-2016-3874</td> 315 <td></td> 316 <td></td> 317 </tr> 318 <tr> 319 <td></td> 320 <td>CVE-2015-1465CVE-2015-5364</td> 321 <td></td> 322 <td></td> 323 </tr> 324 <tr> 325 <td> ext4 </td> 326 <td>CVE-2015-8839</td> 327 <td></td> 328 <td></td> 329 </tr> 330 <tr> 331 <td>Qualcomm SPMI </td> 332 <td>CVE-2016-3892</td> 333 <td></td> 334 <td></td> 335 </tr> 336 <tr> 337 <td>Qualcomm </td> 338 <td>CVE-2016-3893</td> 339 <td></td> 340 <td></td> 341 </tr> 342 <tr> 343 <td>Qualcomm DMA </td> 344 <td>CVE-2016-3894</td> 345 <td></td> 346 <td></td> 347 </tr> 348 <tr> 349 <td></td> 350 <td>CVE-2016-4998</td> 351 <td></td> 352 <td></td> 353 </tr> 354 <tr> 355 <td></td> 356 <td>CVE-2015-2922</td> 357 <td></td> 358 <td></td> 359 </tr> 360 <tr> 361 <td>Qualcomm </td> 362 <td>CVE-2016-2469</td> 363 <td></td> 364 <td></td> 365 </tr> 366 </table> 367 <h3 id="2016-09-06-summary">2016-09-06 </h3> 368 <p>2016-09-06 2016-09-05 2016-09-01 369 </p> 370 371 <table> 372 <col width="55%"> 373 <col width="20%"> 374 <col width="13%"> 375 <col width="12%"> 376 <tr> 377 <th></th> 378 <th>CVE</th> 379 <th></th> 380 <th> Nexus </th> 381 </tr> 382 <tr> 383 <td></td> 384 <td>CVE-2016-5340</td> 385 <td></td> 386 <td></td> 387 </tr> 388 <tr> 389 <td>Qualcomm </td> 390 <td>CVE-2016-2059</td> 391 <td></td> 392 <td></td> 393 </tr> 394 </table> 395 <h2 id="mitigations">Android Google </h2> 396 <p> <a href="/security/enhancements/index.html">Android </a> SafetyNet Android 397 </p> 398 <ul> 399 <li>Android Android Android</li> 400 <li>Android <a href="http://static.googleusercontent.com/media/source.android.com/en//security/reports/Google_Android_Security_2015_Report_Final.pdf"> SafetyNet</a> <a href="http://static.googleusercontent.com/media/source.android.com/en//security/reports/Google_Android_Security_PHA_classifications.pdf"></a> <a href="http://www.android.com/gms">Google </a> Google Play Google Play Root Root () </li> 401 <li>Google Hangouts Messenger </li> 402 </ul> 403 404 <h2 id="acknowledgements"></h2> 405 <p> 406 </p> 407 408 409 <ul> 410 <li> Cory PruceCVE-2016-3897</li> 411 <li> 360 IceSword Gengjia Chen (<a href="https://twitter.com/chengjia4574">@chengjia4574</a>) <a href="http://weibo.com/jfpan ">pjf</a>CVE-2016-3869CVE-2016-3865CVE-2016-3866CVE-2016-3867</li> 412 <li><a href="http://www.cmcm.com"></a> Hao QinCVE-2016-3863</li> 413 <li>Google Project Zero Jann HornCVE-2016-3885</li> 414 <li> 360 IceSword Jianqiang Zhao (<a href="https://twitter.com/jianqiangzhao ">@jianqiangzhao</a>) <a href="http://weibo.com/jfpan ">pjf</a>CVE-2016-3858</li> 415 <li>Joshua Drake (<a href="https://twitter.com/jduck">@jduck</a>)CVE-2016-3861</li> 416 <li> CISPA Madhu Priya MuruganCVE-2016-3896</li> 417 <li>Google Makoto OnukiCVE-2016-3876</li> 418 <li>Google Project Zero Mark BrandCVE-2016-3861</li> 419 <li>Android Max SpectorCVE-2016-3888</li> 420 <li>Android Max Spector Quan ToCVE-2016-3889</li> 421 <li><a href="http://c0reteam.org">C0RE </a> Mingjian Zhou (<a href="https://twitter.com/Mingjian_Zhou">@Mingjian_Zhou</a>)Chiachih Wu (<a href="https://twitter.com/chiachih_wu">@chiachih_wu</a>) Xuxian JiangCVE-2016-3895</li> 422 <li>Tesla Motors Product Nathan Crandall (<a href="https://twitter.com/natecray">@natecray</a>) CVE-2016-2446 </li> 423 <li>Google Oleksiy VyalovCVE-2016-3890</li> 424 <li>Google Chrome Oliver ChangCVE-2016-3880</li> 425 <li> Peng XiaoChengming YangNing YouChao Yang Yang SongCVE-2016-3859</li> 426 <li>TEAM Lv51 Ronald L. Loor Vargas (<a href="https://twitter.com/loor_rlv">@loor_rlv</a>)CVE-2016-3886</li> 427 <li>IBM X-Force Sagi KedmiCVE-2016-3873</li> 428 <li><a href="mailto:sbauer (a] plzdonthack.me">Scott Bauer</a> (<a href="https://twitter.com/ScottyBauer1">@ScottyBauer1</a>)CVE-2016-3893CVE-2016-3868CVE-2016-3867</li> 429 <li> Seven Shen (<a href="https://twitter.com/lingtongshen">@lingtongshen</a>)CVE-2016-3894</li> 430 <li>SentinelOne/RedNaga Tim Strazzere (<a href="https://twitter.com/timstrazz">@timstrazz</a>)CVE-2016-3862</li> 431 <li>trotmaster (<a href="https://twitter.com/trotmaster99">@trotmaster99</a>)CVE-2016-3883</li> 432 <li>Google Victor ChangCVE-2016-3887</li> 433 <li>Google Vignesh VenkatasubramanianCVE-2016-3881</li> 434 <li> Weichao Sun (<a href="https://twitter.com/sunblate">@sunblate</a>)CVE-2016-3878</li> 435 <li><a href="http://c0reteam.org">C0RE </a> <a href="mailto:vancouverdou (a] gmail.com">Wenke Dou</a>Mingjian Zhou (<a href="https://twitter.com/Mingjian_Zhou">@Mingjian_Zhou</a>)Chiachih Wu (<a href="https://twitter.com/chiachih_wu">@chiachih_wu</a>) Xuxian JiangCVE-2016-3870CVE-2016-3871CVE-2016-3872</li> 436 <li><a href="http://blog.trendmicro.com/trendlabs-security-intelligence/author/wishwu/"></a> Wish Wu (<a href="http://weibo.com/wishlinux"></a>) (<a href="https://twitter.com/wish_wu">@wish_wu</a>)CVE-2016-3892</li> 437 <li><a href="http://www.alibaba.com/"></a> Xingyu He () (<a href="https://twitter.com/Spid3r_">@Spid3r_</a>)CVE-2016-3879</li> 438 <li> TCA Yacong GuCVE-2016-3884</li> 439 <li> <a href="http://yurushao.info">Yuru Shao</a>CVE-2016-3898</li> 440 </ul> 441 442 <h2 id="2016-09-01-details">2016-09-01 </h2> 443 <p> 444 <a href="#2016-09-01-summary">2016-09-01 </a> CVE Nexus AOSP () ID ( AOSP ) ID </p> 445 446 <h3>LibUtils </h3> 447 <p> 448 LibUtils 449 </p> 450 451 <table> 452 <col width="18%"> 453 <col width="16%"> 454 <col width="10%"> 455 <col width="19%"> 456 <col width="19%"> 457 <col width="17%"> 458 <tr> 459 <th>CVE</th> 460 <th></th> 461 <th></th> 462 <th> Nexus </th> 463 <th> AOSP </th> 464 <th></th> 465 </tr> 466 <tr> 467 <td>CVE-2016-3861</td> 468 <td><a href="https://android.googlesource.com/platform/system/core/+/ecf5fd58a8f50362ce9e8d4245a33d56f29f142b"> 469 A-29250543</a> 470 [<a href="https://android.googlesource.com/platform/frameworks/av/+/3944c65637dfed14a5a895685edfa4bacaf9f76e">2</a>] 471 [<a href="https://android.googlesource.com/platform/frameworks/base/+/866dc26ad4a98cc835d075b627326e7d7e52ffa1">3</a>] 472 [<a href="https://android.googlesource.com/platform/frameworks/native/+/1f4b49e64adf4623eefda503bca61e253597b9bf">4</a>] 473 </td> 474 <td></td> 475 <td> Nexus </td> 476 <td>4.4.45.0.25.1.16.06.0.17.0</td> 477 <td>2016 6 9 </td> 478 </tr> 479 </table> 480 <h3></h3> 481 <p> 482 </p> 483 484 <table> 485 <col width="18%"> 486 <col width="18%"> 487 <col width="10%"> 488 <col width="19%"> 489 <col width="17%"> 490 <col width="17%"> 491 <tr> 492 <th>CVE</th> 493 <th></th> 494 <th></th> 495 <th> Nexus </th> 496 <th> AOSP </th> 497 <th></th> 498 </tr> 499 <tr> 500 <td>CVE-2016-3862</td> 501 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/e739d9ca5469ed30129d0fa228e3d0f2878671ac"> 502 A-29270469</a></td> 503 <td></td> 504 <td> Nexus </td> 505 <td>4.4.45.0.25.1.16.06.0.1</td> 506 <td>2016 6 10 </td> 507 </tr> 508 </table> 509 <h3>MediaMuxer </h3> 510 <p> 511 MediaMuxer MediaMuxer 512 </p> 513 514 <table> 515 <col width="18%"> 516 <col width="16%"> 517 <col width="10%"> 518 <col width="19%"> 519 <col width="19%"> 520 <col width="17%"> 521 <tr> 522 <th>CVE</th> 523 <th></th> 524 <th></th> 525 <th> Nexus </th> 526 <th> AOSP </th> 527 <th></th> 528 </tr> 529 <tr> 530 <td>CVE-2016-3863</td> 531 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/119a012b2a9a186655da4bef3ed4ed8dd9b94c26"> 532 A-29161888</a></td> 533 <td></td> 534 <td> Nexus </td> 535 <td>4.4.45.0.25.1.16.06.0.17.0</td> 536 <td>2016 6 6 </td> 537 </tr> 538 </table> 539 <h3></h3> 540 <p> 541 </p> 542 543 <table> 544 <col width="18%"> 545 <col width="16%"> 546 <col width="10%"> 547 <col width="19%"> 548 <col width="19%"> 549 <col width="17%"> 550 <tr> 551 <th>CVE</th> 552 <th></th> 553 <th></th> 554 <th> Nexus </th> 555 <th> AOSP </th> 556 <th></th> 557 </tr> 558 <tr> 559 <td>CVE-2016-3870</td> 560 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/1e9801783770917728b7edbdeff3d0ec09c621ac"> 561 A-29421804</a> 562 <td></td> 563 <td> Nexus </td> 564 <td>4.4.45.0.25.1.16.06.0.17.0</td> 565 <td>2016 6 15 </td> 566 </td></tr> 567 <tr> 568 <td>CVE-2016-3871</td> 569 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/c2639afac631f5c1ffddf70ee8a6fe943d0bedf9"> 570 A-29422022</a> 571 [<a href="https://android.googlesource.com/platform/frameworks/av/+/3c4edac2a5b00dec6c8579a0ee658cfb3bb16d94">2</a>] 572 [<a href="https://android.googlesource.com/platform/frameworks/av/+/c17ad2f0c7e00fd1bbf01d0dfed41f72d78267ad">3</a>] 573 </td> 574 <td></td> 575 <td> Nexus </td> 576 <td>4.4.45.0.25.1.16.06.0.17.0</td> 577 <td>2016 6 15 </td> 578 </tr> 579 <tr> 580 <td>CVE-2016-3872</td> 581 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/630ed150f7201ddadb00b8b8ce0c55c4cc6e8742"> 582 A-29421675</a> 583 [<a href="https://android.googlesource.com/platform/frameworks/av/+/9f9ba255a0c59544f3555c9c45512c3a2fac5fad">2</a>] 584 </td> 585 <td></td> 586 <td> Nexus </td> 587 <td>4.4.45.0.25.1.16.06.0.17.0</td> 588 <td>2016 6 15 </td> 589 </tr> 590 </table> 591 <h3></h3> 592 <p> 593 594 </p> 595 596 <table> 597 <col width="18%"> 598 <col width="18%"> 599 <col width="10%"> 600 <col width="19%"> 601 <col width="17%"> 602 <col width="17%"> 603 <tr> 604 <th>CVE</th> 605 <th></th> 606 <th></th> 607 <th> Nexus </th> 608 <th> AOSP </th> 609 <th></th> 610 </tr> 611 <tr> 612 <td>CVE-2016-3875</td> 613 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/69729fa8b13cadbf3173fe1f389fe4f3b7bd0f9c"> 614 A-26251884</a></td> 615 <td></td> 616 <td>*</td> 617 <td>6.06.0.1</td> 618 <td>Google </td> 619 </tr> 620 </table> 621 <p>* Android 7.0 Nexus 622 </p> 623 624 <h3></h3> 625 <p> 626 627 </p> 628 629 <table> 630 <col width="18%"> 631 <col width="18%"> 632 <col width="10%"> 633 <col width="19%"> 634 <col width="17%"> 635 <col width="17%"> 636 <tr> 637 <th>CVE</th> 638 <th></th> 639 <th></th> 640 <th> Nexus </th> 641 <th> AOSP </th> 642 <th></th> 643 </tr> 644 <tr> 645 <td>CVE-2016-3876</td> 646 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/91fc934bb2e5ea59929bb2f574de6db9b5100745"> 647 A-29900345</a></td> 648 <td></td> 649 <td> Nexus </td> 650 <td>6.06.0.17.0</td> 651 <td>Google </td> 652 </tr> 653 </table> 654 <h3></h3> 655 <p> 656 657 </p> 658 659 <table> 660 <col width="18%"> 661 <col width="16%"> 662 <col width="10%"> 663 <col width="19%"> 664 <col width="19%"> 665 <col width="17%"> 666 <tr> 667 <th>CVE</th> 668 <th></th> 669 <th></th> 670 <th> Nexus </th> 671 <th> AOSP </th> 672 <th></th> 673 </tr> 674 <tr> 675 <td>CVE-2016-3899</td> 676 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/97837bb6cbac21ea679843a0037779d3834bed64"> 677 A-29421811</a></td> 678 <td></td> 679 <td> Nexus </td> 680 <td>4.4.45.0.25.1.16.06.0.17.0</td> 681 <td>2016 6 16 </td> 682 </tr> 683 <tr> 684 <td>CVE-2016-3878</td> 685 <td><a href="https://android.googlesource.com/platform/external/libavc/+/7109ce3f8f90a28ca9f0ee6e14f6ac5e414c62cf"> 686 A-29493002</a></td> 687 <td></td> 688 <td> Nexus *</td> 689 <td>6.06.0.1</td> 690 <td>2016 6 17 </td> 691 </tr> 692 <tr> 693 <td>CVE-2016-3879</td> 694 <td><a href="https://android.googlesource.com/platform/external/sonivox/+/cadfb7a3c96d4fef06656cf37143e1b3e62cae86"> 695 A-29770686</a></td> 696 <td></td> 697 <td> Nexus *</td> 698 <td>4.4.45.0.25.1.16.06.0.1</td> 699 <td>2016 6 25 </td> 700 </tr> 701 <tr> 702 <td>CVE-2016-3880</td> 703 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/68f67ef6cf1f41e77337be3bc4bff91f3a3c6324"> 704 A-25747670</a></td> 705 <td></td> 706 <td> Nexus </td> 707 <td>4.4.45.0.25.1.16.06.0.17.0</td> 708 <td>Google </td> 709 </tr> 710 <tr> 711 <td>CVE-2016-3881</td> 712 <td><a href="https://android.googlesource.com/platform/external/libvpx/+/4974dcbd0289a2530df2ee2a25b5f92775df80da"> 713 A-30013856</a></td> 714 <td></td> 715 <td> Nexus </td> 716 <td>4.4.45.0.25.1.16.06.0.17.0</td> 717 <td>Google </td> 718 </tr> 719 </table> 720 <p>* Android 7.0 Nexus 721 </p> 722 723 <h3></h3> 724 <p> 725 726 </p> 727 728 <table> 729 <col width="18%"> 730 <col width="16%"> 731 <col width="10%"> 732 <col width="19%"> 733 <col width="19%"> 734 <col width="17%"> 735 <tr> 736 <th>CVE</th> 737 <th></th> 738 <th></th> 739 <th> Nexus </th> 740 <th> AOSP </th> 741 <th></th> 742 </tr> 743 <tr> 744 <td>CVE-2016-3883</td> 745 <td><a href="https://android.googlesource.com/platform/frameworks/opt/telephony/+/b2c89e6f8962dc7aff88cb38aa3ee67d751edda9"> 746 A-28557603</a></td> 747 <td></td> 748 <td> Nexus </td> 749 <td>4.4.45.0.25.1.16.06.0.17.0</td> 750 <td>2016 5 3 </td> 751 </tr> 752 </table> 753 <h3></h3> 754 <p> 755 () 756 </p> 757 758 <table> 759 <col width="18%"> 760 <col width="18%"> 761 <col width="10%"> 762 <col width="19%"> 763 <col width="17%"> 764 <col width="17%"> 765 <tr> 766 <th>CVE</th> 767 <th></th> 768 <th></th> 769 <th> Nexus </th> 770 <th> AOSP </th> 771 <th></th> 772 </tr> 773 <tr> 774 <td>CVE-2016-3884</td> 775 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/61e9103b5725965568e46657f4781dd8f2e5b623"> 776 A-29421441</a></td> 777 <td></td> 778 <td> Nexus </td> 779 <td>6.06.0.17.0</td> 780 <td>2016 6 15 </td> 781 </tr> 782 </table> 783 <h3>Debuggerd </h3> 784 <p> 785 Android Android 786 </p> 787 788 <table> 789 <col width="18%"> 790 <col width="18%"> 791 <col width="10%"> 792 <col width="19%"> 793 <col width="17%"> 794 <col width="17%"> 795 <tr> 796 <th>CVE</th> 797 <th></th> 798 <th></th> 799 <th> Nexus </th> 800 <th> AOSP </th> 801 <th></th> 802 </tr> 803 <tr> 804 <td>CVE-2016-3885</td> 805 <td><a href="https://android.googlesource.com/platform/system/core/+/d7603583f90c2bc6074a4ee2886bd28082d7c65b"> 806 A-29555636</a></td> 807 <td></td> 808 <td> Nexus </td> 809 <td>5.0.25.1.16.06.0.17.0</td> 810 <td>2016 6 21 </td> 811 </tr> 812 </table> 813 <h3></h3> 814 <p> 815 816 </p> 817 818 <table> 819 <col width="18%"> 820 <col width="18%"> 821 <col width="10%"> 822 <col width="19%"> 823 <col width="17%"> 824 <col width="17%"> 825 <tr> 826 <th>CVE</th> 827 <th></th> 828 <th></th> 829 <th> Nexus </th> 830 <th> AOSP </th> 831 <th></th> 832 </tr> 833 <tr> 834 <td>CVE-2016-3886</td> 835 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/6ca6cd5a50311d58a1b7bf8fbef3f9aa29eadcd5"> 836 A-30107438</a></td> 837 <td></td> 838 <td> Nexus </td> 839 <td>7.0</td> 840 <td>2016 6 23 </td> 841 </tr> 842 </table> 843 <h3></h3> 844 <p> 845 VPN 846 </p> 847 848 <table> 849 <col width="18%"> 850 <col width="17%"> 851 <col width="10%"> 852 <col width="19%"> 853 <col width="17%"> 854 <col width="18%"> 855 <tr> 856 <th>CVE</th> 857 <th></th> 858 <th></th> 859 <th> Nexus </th> 860 <th> AOSP </th> 861 <th></th> 862 </tr> 863 <tr> 864 <td>CVE-2016-3887</td> 865 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/335702d106797bce8a88044783fa1fc1d5f751d0"> 866 A-29899712</a></td> 867 <td></td> 868 <td> Nexus </td> 869 <td>7.0</td> 870 <td>Google </td> 871 </tr> 872 </table> 873 <h3></h3> 874 <p> 875 () 876 </p> 877 878 <table> 879 <col width="18%"> 880 <col width="16%"> 881 <col width="10%"> 882 <col width="19%"> 883 <col width="19%"> 884 <col width="17%"> 885 <tr> 886 <th>CVE</th> 887 <th></th> 888 <th></th> 889 <th> Nexus </th> 890 <th> AOSP </th> 891 <th></th> 892 </tr> 893 <tr> 894 <td>CVE-2016-3888</td> 895 <td><a href="https://android.googlesource.com/platform/frameworks/opt/telephony/+/b8d1aee993dcc565e6576b2f2439a8f5a507cff6"> 896 A-29420123</a></td> 897 <td></td> 898 <td> Nexus </td> 899 <td>4.4.45.0.25.1.16.06.0.17.0</td> 900 <td>Google </td> 901 </tr> 902 </table> 903 <h3></h3> 904 <p> 905 906 </p> 907 908 <table> 909 <col width="18%"> 910 <col width="17%"> 911 <col width="10%"> 912 <col width="19%"> 913 <col width="17%"> 914 <col width="18%"> 915 <tr> 916 <th>CVE</th> 917 <th></th> 918 <th></th> 919 <th> Nexus </th> 920 <th> AOSP </th> 921 <th></th> 922 </tr> 923 <tr> 924 <td>CVE-2016-3889</td> 925 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/e206f02d46ae5e38c74d138b51f6e1637e261abe"> 926 A-29194585</a> 927 [<a href="https://android.googlesource.com/platform/packages/apps/Settings/+/bd5d5176c74021e8cf4970f93f273ba3023c3d72">2</a>] 928 </td> 929 <td></td> 930 <td> Nexus </td> 931 <td>6.06.0.17.0</td> 932 <td>Google </td> 933 </tr> 934 </table> 935 <h3>Java </h3> 936 <p> 937 Java (Java Debug Wire Protocol) 938 </p> 939 940 <table> 941 <col width="18%"> 942 <col width="16%"> 943 <col width="10%"> 944 <col width="19%"> 945 <col width="18%"> 946 <col width="18%"> 947 <tr> 948 <th>CVE</th> 949 <th></th> 950 <th></th> 951 <th> Nexus </th> 952 <th> AOSP </th> 953 <th></th> 954 </tr> 955 <tr> 956 <td>CVE-2016-3890</td> 957 <td><a href="https://android.googlesource.com/platform/system/core/+/268068f25673242d1d5130d96202d3288c91b700"> 958 A-28347842</a> 959 [<a href="https://android.googlesource.com/platform/system/core/+/014b01706cc64dc9c2ad94a96f62e07c058d0b5d">2</a>] 960 </td> 961 <td></td> 962 <td>*</td> 963 <td>4.4.45.0.25.1.16.06.0.1</td> 964 <td>Google </td> 965 </tr> 966 </table> 967 <p>* Android 7.0 Nexus 968 </p> 969 970 <h3></h3> 971 <p> 972 973 </p> 974 975 <table> 976 <col width="18%"> 977 <col width="18%"> 978 <col width="10%"> 979 <col width="19%"> 980 <col width="17%"> 981 <col width="17%"> 982 <tr> 983 <th>CVE</th> 984 <th></th> 985 <th></th> 986 <th> Nexus </th> 987 <th> AOSP </th> 988 <th></th> 989 </tr> 990 <tr> 991 <td>CVE-2016-3895</td> 992 <td><a href="https://android.googlesource.com/platform/frameworks/native/+/363247929c35104b3e5ee9e637e9dcf579080aee"> 993 A-29983260</a></td> 994 <td></td> 995 <td> Nexus </td> 996 <td>6.06.0.17.0</td> 997 <td>2016 7 4 </td> 998 </tr> 999 </table> 1000 <h3>AOSP Mail </h3> 1001 <p> 1002 AOSP Mail 1003 </p> 1004 1005 <table> 1006 <col width="18%"> 1007 <col width="16%"> 1008 <col width="10%"> 1009 <col width="19%"> 1010 <col width="19%"> 1011 <col width="17%"> 1012 <tr> 1013 <th>CVE</th> 1014 <th></th> 1015 <th></th> 1016 <th> Nexus </th> 1017 <th> AOSP </th> 1018 <th></th> 1019 </tr> 1020 <tr> 1021 <td>CVE-2016-3896</td> 1022 <td><a href="https://android.googlesource.com/platform/packages/apps/Email/+/cb2dfe43f25cb0c32cc73aa4569c0a5186a4ef43"> 1023 A-29767043</a></td> 1024 <td></td> 1025 <td>*</td> 1026 <td>4.4.45.0.25.1.16.06.0.1</td> 1027 <td>2016 7 24 </td> 1028 </tr> 1029 </table> 1030 <p>* Android 7.0 Nexus 1031 </p> 1032 1033 <h3>Wi-Fi </h3> 1034 <p> 1035 Wi-Fi 1036 </p> 1037 1038 <table> 1039 <col width="18%"> 1040 <col width="16%"> 1041 <col width="10%"> 1042 <col width="19%"> 1043 <col width="19%"> 1044 <col width="17%"> 1045 <tr> 1046 <th>CVE</th> 1047 <th></th> 1048 <th></th> 1049 <th> Nexus </th> 1050 <th> AOSP </th> 1051 <th></th> 1052 </tr> 1053 <tr> 1054 <td>CVE-2016-3897</td> 1055 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/55271d454881b67ff38485fdd97598c542cc2d55"> 1056 A-25624963</a> 1057 [<a href="https://android.googlesource.com/platform/frameworks/base/+/81be4e3aac55305cbb5c9d523cf5c96c66604b39">2</a>] 1058 </td> 1059 <td></td> 1060 <td>*</td> 1061 <td>4.4.45.0.25.1.16.06.0.1</td> 1062 <td>2015 11 5 </td> 1063 </tr> 1064 </table> 1065 <p>* Android 7.0 Nexus 1066 </p> 1067 1068 <h3></h3> 1069 <p> 1070 119 TTY 1071 </p> 1072 1073 <table> 1074 <col width="18%"> 1075 <col width="18%"> 1076 <col width="10%"> 1077 <col width="19%"> 1078 <col width="17%"> 1079 <col width="17%"> 1080 <tr> 1081 <th>CVE</th> 1082 <th></th> 1083 <th></th> 1084 <th> Nexus </th> 1085 <th> AOSP </th> 1086 <th></th> 1087 </tr> 1088 <tr> 1089 <td>CVE-2016-3898</td> 1090 <td><a href="https://android.googlesource.com/platform/packages/services/Telephony/+/d1d248d10cf03498efb7041f1a8c9c467482a19d"> 1091 A-29832693</a></td> 1092 <td></td> 1093 <td> Nexus </td> 1094 <td>5.0.25.1.16.06.0.17.0</td> 1095 <td>2016 6 28 </td> 1096 </tr> 1097 </table> 1098 <h2 id="2016-09-05-details">2016-09-05 </h2> 1099 <p> 1100 <a href="#2016-09-05-summary">2016-09-05 </a> CVE Nexus AOSP () ID ( AOSP ) ID </p> 1101 1102 <h3></h3> 1103 <p> 1104 (Re-flash) 1105 </p> 1106 1107 <table> 1108 <col width="19%"> 1109 <col width="20%"> 1110 <col width="10%"> 1111 <col width="23%"> 1112 <col width="17%"> 1113 <tr> 1114 <th>CVE</th> 1115 <th></th> 1116 <th></th> 1117 <th> Nexus </th> 1118 <th></th> 1119 </tr> 1120 <tr> 1121 <td>CVE-2014-9529</td> 1122 <td>A-29510361 1123 <p> 1124 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=a3a8784454692dd72e5d5d34dcdab17b4420e74c"></a></p></td> 1125 <td></td> 1126 <td>Nexus 5Nexus 6Nexus 9Nexus PlayerAndroid One</td> 1127 <td>2015 1 6 </td> 1128 </tr> 1129 <tr> 1130 <td>CVE-2016-4470</td> 1131 <td>A-29823941 1132 <p> 1133 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=38327424b40bcebe2de92d07312c89360ac9229a"></a></p></td> 1134 <td></td> 1135 <td>Nexus 5Nexus 5XNexus 6Nexus 6PNexus 9Nexus Player</td> 1136 <td>2016 6 15 </td> 1137 </tr> 1138 </table> 1139 <h3></h3> 1140 <p> 1141 (Re-flash) 1142 </p> 1143 1144 <table> 1145 <col width="19%"> 1146 <col width="20%"> 1147 <col width="10%"> 1148 <col width="23%"> 1149 <col width="17%"> 1150 <tr> 1151 <th>CVE</th> 1152 <th></th> 1153 <th></th> 1154 <th> Nexus </th> 1155 <th></th> 1156 </tr> 1157 <tr> 1158 <td>CVE-2013-7446</td> 1159 <td>A-29119002 1160 <p> 1161 <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/net/unix/af_unix.c?id=7d267278a9ece963d77eefec61630223fce08c6c"></a></p></td> 1162 <td></td> 1163 <td>Nexus 5Nexus 5XNexus 6Nexus 6PNexus 9Nexus PlayerPixel CAndroid One</td> 1164 <td>2015 11 18 </td> 1165 </tr> 1166 </table> 1167 <h3></h3> 1168 <p> 1169 (Re-flash) 1170 </p> 1171 1172 <table> 1173 <col width="19%"> 1174 <col width="20%"> 1175 <col width="10%"> 1176 <col width="23%"> 1177 <col width="17%"> 1178 <tr> 1179 <th>CVE</th> 1180 <th></th> 1181 <th></th> 1182 <th> Nexus </th> 1183 <th></th> 1184 </tr> 1185 <tr> 1186 <td>CVE-2016-3134</td> 1187 <td>A-28940694 1188 <p> 1189 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=54d83fc74aa9ec72794373cb47432c5f7fb1a309"></a></p></td> 1190 <td></td> 1191 <td>Nexus 5Nexus 5XNexus 6Nexus 6PNexus 9Nexus PlayerPixel CAndroid One</td> 1192 <td>2016 3 9 </td> 1193 </tr> 1194 </table> 1195 <h3> USB </h3> 1196 <p> 1197 USB (Re-flash) 1198 </p> 1199 1200 <table> 1201 <col width="19%"> 1202 <col width="20%"> 1203 <col width="10%"> 1204 <col width="23%"> 1205 <col width="17%"> 1206 <tr> 1207 <th>CVE</th> 1208 <th></th> 1209 <th></th> 1210 <th> Nexus </th> 1211 <th></th> 1212 </tr> 1213 <tr> 1214 <td>CVE-2016-3951</td> 1215 <td>A-28744625 1216 <p> 1217 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=4d06dd537f95683aba3651098ae288b7cbff8274"></a> 1218 [<a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=1666984c8625b3db19a9abc298931d35ab7bc64b">2</a>]</p></td> 1219 <td></td> 1220 <td>Nexus 5Nexus 5XNexus 6Nexus 6PNexus 9Nexus PlayerPixel CAndroid One</td> 1221 <td>2016 4 6 </td> 1222 </tr> 1223 </table> 1224 <h3></h3> 1225 <p> 1226 1227 </p> 1228 1229 <table> 1230 <col width="19%"> 1231 <col width="20%"> 1232 <col width="10%"> 1233 <col width="23%"> 1234 <col width="17%"> 1235 <tr> 1236 <th>CVE</th> 1237 <th></th> 1238 <th></th> 1239 <th> Nexus </th> 1240 <th></th> 1241 </tr> 1242 <tr> 1243 <td>CVE-2014-4655</td> 1244 <td>A-29916012 1245 <p> 1246 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=82262a46627bebb0febcc26664746c25cef08563"></a></p></td> 1247 <td></td> 1248 <td>Nexus 5Nexus 6Nexus 9Nexus Player</td> 1249 <td>2014 6 26 </td> 1250 </tr> 1251 </table> 1252 <h3> ASN.1 </h3> 1253 <p> 1254 ASN.1 1255 </p> 1256 1257 <table> 1258 <col width="19%"> 1259 <col width="20%"> 1260 <col width="10%"> 1261 <col width="23%"> 1262 <col width="17%"> 1263 <tr> 1264 <th>CVE</th> 1265 <th></th> 1266 <th></th> 1267 <th> Nexus </th> 1268 <th></th> 1269 </tr> 1270 <tr> 1271 <td>CVE-2016-2053</td> 1272 <td>A-28751627 1273 <p> 1274 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=0d62e9dd6da45bbf0f33a8617afc5fe774c8f45f"></a></p></td> 1275 <td></td> 1276 <td>Nexus 5XNexus 6P</td> 1277 <td>2016 1 25 </td> 1278 </tr> 1279 </table> 1280 <h3>Qualcomm </h3> 1281 <p> 1282 Qualcomm 1283 </p> 1284 1285 <table> 1286 <col width="19%"> 1287 <col width="18%"> 1288 <col width="10%"> 1289 <col width="25%"> 1290 <col width="17%"> 1291 <tr> 1292 <th>CVE</th> 1293 <th></th> 1294 <th></th> 1295 <th> Nexus </th> 1296 <th></th> 1297 </tr> 1298 <tr> 1299 <td>CVE-2016-3864</td> 1300 <td>A-28823714*<br> 1301 QC-CR#913117</td> 1302 <td></td> 1303 <td>Nexus 5Nexus 5XNexus 6Nexus 6PAndroid One</td> 1304 <td>2016 4 29 </td> 1305 </tr> 1306 </table> 1307 <p>* Nexus <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> 1308 </p> 1309 1310 <h3>Qualcomm </h3> 1311 <p> 1312 Qualcomm 1313 </p> 1314 1315 <table> 1316 <col width="19%"> 1317 <col width="20%"> 1318 <col width="10%"> 1319 <col width="23%"> 1320 <col width="17%"> 1321 <tr> 1322 <th>CVE</th> 1323 <th></th> 1324 <th></th> 1325 <th> Nexus </th> 1326 <th></th> 1327 </tr> 1328 <tr> 1329 <td>CVE-2016-3858</td> 1330 <td>A-28675151<br> 1331 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?id=0c148b9a9028c566eac680f19e5d664b483cdee3">QC-CR#1022641</a></td> 1332 <td></td> 1333 <td>Nexus 5XNexus 6P</td> 1334 <td>2016 5 9 </td> 1335 </tr> 1336 </table> 1337 <h3></h3> 1338 <p> 1339 1340 </p> 1341 1342 <table> 1343 <col width="19%"> 1344 <col width="20%"> 1345 <col width="10%"> 1346 <col width="23%"> 1347 <col width="17%"> 1348 <tr> 1349 <th>CVE</th> 1350 <th></th> 1351 <th></th> 1352 <th> Nexus </th> 1353 <th></th> 1354 </tr> 1355 <tr> 1356 <td>CVE-2016-4805</td> 1357 <td>A-28979703 1358 <p> 1359 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=1f461dcdd296eecedaffffc6bae2bfa90bd7eb89"></a></p></td> 1360 <td></td> 1361 <td>Nexus 5Nexus 5XNexus 6Nexus 6PNexus 9</td> 1362 <td>2016 5 15 </td> 1363 </tr> 1364 </table> 1365 <h3>Synaptics </h3> 1366 <p> 1367 Synaptics 1368 </p> 1369 1370 <table> 1371 <col width="19%"> 1372 <col width="20%"> 1373 <col width="10%"> 1374 <col width="23%"> 1375 <col width="17%"> 1376 <tr> 1377 <th>CVE</th> 1378 <th></th> 1379 <th></th> 1380 <th> Nexus </th> 1381 <th></th> 1382 </tr> 1383 <tr> 1384 <td>CVE-2016-3865</td> 1385 <td>A-28799389*</td> 1386 <td></td> 1387 <td>Nexus 5XNexus 9</td> 1388 <td>2016 5 16 </td> 1389 </tr> 1390 </table> 1391 <p>* Nexus <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> 1392 </p> 1393 1394 <h3>Qualcomm </h3> 1395 <p> 1396 Qualcomm 1397 </p> 1398 1399 <table> 1400 <col width="19%"> 1401 <col width="20%"> 1402 <col width="10%"> 1403 <col width="23%"> 1404 <col width="17%"> 1405 <tr> 1406 <th>CVE</th> 1407 <th></th> 1408 <th></th> 1409 <th> Nexus </th> 1410 <th></th> 1411 </tr> 1412 <tr> 1413 <td>CVE-2016-3859</td> 1414 <td>A-28815326*<br> 1415 QC-CR#1034641</td> 1416 <td></td> 1417 <td>Nexus 5Nexus 5XNexus 6Nexus 6P</td> 1418 <td>2016 5 17 </td> 1419 </tr> 1420 </table> 1421 <p>* Nexus <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> 1422 </p> 1423 1424 <h3>Qualcomm </h3> 1425 <p> 1426 Qualcomm 1427 </p> 1428 1429 <table> 1430 <col width="19%"> 1431 <col width="20%"> 1432 <col width="10%"> 1433 <col width="23%"> 1434 <col width="17%"> 1435 <tr> 1436 <th>CVE</th> 1437 <th></th> 1438 <th></th> 1439 <th> Nexus </th> 1440 <th></th> 1441 </tr> 1442 <tr> 1443 <td>CVE-2016-3866</td> 1444 <td>A-28868303*<br> 1445 QC-CR#1032820</td> 1446 <td></td> 1447 <td>Nexus 5XNexus 6Nexus 6P</td> 1448 <td>2016 5 18 </td> 1449 </tr> 1450 </table> 1451 <p>* Nexus <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> 1452 </p> 1453 1454 <h3>Qualcomm IPA </h3> 1455 <p> 1456 Qualcomm IPA 1457 </p> 1458 1459 <table> 1460 <col width="19%"> 1461 <col width="20%"> 1462 <col width="10%"> 1463 <col width="23%"> 1464 <col width="17%"> 1465 <tr> 1466 <th>CVE</th> 1467 <th></th> 1468 <th></th> 1469 <th> Nexus </th> 1470 <th></th> 1471 </tr> 1472 <tr> 1473 <td>CVE-2016-3867</td> 1474 <td>A-28919863*<br> 1475 QC-CR#1037897</td> 1476 <td></td> 1477 <td>Nexus 5XNexus 6P</td> 1478 <td>2016 5 21 </td> 1479 </tr> 1480 </table> 1481 <p>* Nexus <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> 1482 </p> 1483 1484 <h3>Qualcomm </h3> 1485 <p> 1486 Qualcomm 1487 </p> 1488 1489 <table> 1490 <col width="19%"> 1491 <col width="20%"> 1492 <col width="10%"> 1493 <col width="23%"> 1494 <col width="17%"> 1495 <tr> 1496 <th>CVE</th> 1497 <th></th> 1498 <th></th> 1499 <th> Nexus </th> 1500 <th></th> 1501 </tr> 1502 <tr> 1503 <td>CVE-2016-3868</td> 1504 <td>A-28967028*<br> 1505 QC-CR#1032875</td> 1506 <td></td> 1507 <td>Nexus 5XNexus 6P</td> 1508 <td>2016 5 25 </td> 1509 </tr> 1510 </table> 1511 <p>* Nexus <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> 1512 </p> 1513 1514 <h3>Broadcom Wi-Fi </h3> 1515 <p> 1516 Broadcom Wi-Fi 1517 </p> 1518 1519 <table> 1520 <col width="19%"> 1521 <col width="20%"> 1522 <col width="10%"> 1523 <col width="23%"> 1524 <col width="17%"> 1525 <tr> 1526 <th>CVE</th> 1527 <th></th> 1528 <th></th> 1529 <th> Nexus </th> 1530 <th></th> 1531 </tr> 1532 <tr> 1533 <td>CVE-2016-3869</td> 1534 <td>A-29009982*<br> 1535 B-RB#96070</td> 1536 <td></td> 1537 <td>Nexus 5Nexus 6Nexus 6PNexus 9Nexus PlayerPixel C</td> 1538 <td>2016 5 27 </td> 1539 </tr> 1540 </table> 1541 <p>* Nexus <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> 1542 </p> 1543 1544 <h3> eCryptfs </h3> 1545 <p> 1546 eCryptfs 1547 </p> 1548 1549 <table> 1550 <col width="17%"> 1551 <col width="22%"> 1552 <col width="10%"> 1553 <col width="23%"> 1554 <col width="17%"> 1555 <tr> 1556 <th>CVE</th> 1557 <th></th> 1558 <th></th> 1559 <th> Nexus </th> 1560 <th></th> 1561 </tr> 1562 <tr> 1563 <td>CVE-2016-1583</td> 1564 <td>A-29444228<br> 1565 <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=e54ad7f1ee263ffa5a2de9c609d58dfa27b21cd9"></a> 1566 [<a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=2f36db71009304b3f0b95afacd8eba1f9f046b87">2</a>] 1567 [<a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=29d6455178a09e1dc340380c582b13356227e8df">3</a>]</td> 1568 <td></td> 1569 <td>Pixel C</td> 1570 <td>2016 6 1 </td> 1571 </tr> 1572 </table> 1573 <h3>NVIDIA </h3> 1574 <p> 1575 NVIDIA 1576 </p> 1577 1578 <table> 1579 <col width="19%"> 1580 <col width="20%"> 1581 <col width="10%"> 1582 <col width="23%"> 1583 <col width="17%"> 1584 <tr> 1585 <th>CVE</th> 1586 <th></th> 1587 <th></th> 1588 <th> Nexus </th> 1589 <th></th> 1590 </tr> 1591 <tr> 1592 <td>CVE-2016-3873</td> 1593 <td>A-29518457*<br> 1594 N-CVE-2016-3873</td> 1595 <td></td> 1596 <td>Nexus 9</td> 1597 <td>2016 6 20 </td> 1598 </tr> 1599 </table> 1600 <p>* Nexus <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> 1601 </p> 1602 1603 <h3>Qualcomm Wi-Fi </h3> 1604 <p> 1605 Qualcomm Wi-Fi 1606 </p> 1607 1608 <table> 1609 <col width="19%"> 1610 <col width="20%"> 1611 <col width="10%"> 1612 <col width="23%"> 1613 <col width="17%"> 1614 <tr> 1615 <th>CVE</th> 1616 <th></th> 1617 <th></th> 1618 <th> Nexus </th> 1619 <th></th> 1620 </tr> 1621 <tr> 1622 <td>CVE-2016-3874</td> 1623 <td>A-29944562<br> 1624 <a href="https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-2.0/commit/?id=50e8f265b3f7926aeb4e49c33f7301ace89faa77">QC-CR#997797</a> 1625 [<a href="https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-2.0/commit/?id=a3974e61c960aadcc147c3c5704a67309171642d">2</a>]</td> 1626 <td></td> 1627 <td>Nexus 5X</td> 1628 <td>2016 7 1 </td> 1629 </tr> 1630 </table> 1631 <h3></h3> 1632 <p> 1633 1634 </p> 1635 1636 <table> 1637 <col width="19%"> 1638 <col width="18%"> 1639 <col width="10%"> 1640 <col width="25%"> 1641 <col width="17%"> 1642 <tr> 1643 <th>CVE</th> 1644 <th></th> 1645 <th></th> 1646 <th> Nexus </th> 1647 <th></th> 1648 </tr> 1649 <tr> 1650 <td>CVE-2015-1465</td> 1651 <td>A-29506807 1652 <p> 1653 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=df4d92549f23e1c037e83323aff58a21b3de7fe0"></a></p></td> 1654 <td></td> 1655 <td>Nexus 5Nexus 6Nexus 9Nexus PlayerPixel CAndroid One</td> 1656 <td>2015 2 3 </td> 1657 </tr> 1658 <tr> 1659 <td>CVE-2015-5364</td> 1660 <td>A-29507402 1661 <p> 1662 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=beb39db59d14990e401e235faf66a6b9b31240b0"></a></p></td> 1663 <td></td> 1664 <td>Nexus 5Nexus 5XNexus 6Nexus 6PNexus 9Nexus PlayerPixel CAndroid One</td> 1665 <td>2015 6 30 </td> 1666 </tr> 1667 </table> 1668 <h3> ext4 </h3> 1669 <p> 1670 ext4 (Re-flash) 1671 </p> 1672 1673 <table> 1674 <col width="19%"> 1675 <col width="16%"> 1676 <col width="10%"> 1677 <col width="27%"> 1678 <col width="17%"> 1679 <tr> 1680 <th>CVE</th> 1681 <th></th> 1682 <th></th> 1683 <th> Nexus </th> 1684 <th></th> 1685 </tr> 1686 <tr> 1687 <td>CVE-2015-8839</td> 1688 <td>A-28760453*</td> 1689 <td></td> 1690 <td>Nexus 5XNexus 6Nexus 6PNexus 9Nexus PlayerPixel CAndroid One</td> 1691 <td>2016 4 4 </td> 1692 </tr> 1693 </table> 1694 <p>* Nexus <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> 1695 </p> 1696 1697 <h3>Qualcomm SPMI </h3> 1698 <p> 1699 Qualcomm SPMI 1700 </p> 1701 1702 <table> 1703 <col width="19%"> 1704 <col width="20%"> 1705 <col width="10%"> 1706 <col width="23%"> 1707 <col width="17%"> 1708 <tr> 1709 <th>CVE</th> 1710 <th></th> 1711 <th></th> 1712 <th> Nexus </th> 1713 <th></th> 1714 </tr> 1715 <tr> 1716 <td>CVE-2016-3892</td> 1717 <td>A-28760543*<br> 1718 QC-CR#1024197</td> 1719 <td></td> 1720 <td>Nexus 5Nexus 5XNexus 6Nexus 6P</td> 1721 <td>2016 5 13 </td> 1722 </tr> 1723 </table> 1724 <p>* Nexus <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> 1725 </p> 1726 1727 <h3>Qualcomm </h3> 1728 <p> 1729 Qualcomm 1730 </p> 1731 1732 <table> 1733 <col width="19%"> 1734 <col width="20%"> 1735 <col width="10%"> 1736 <col width="23%"> 1737 <col width="17%"> 1738 <tr> 1739 <th>CVE</th> 1740 <th></th> 1741 <th></th> 1742 <th> Nexus </th> 1743 <th></th> 1744 </tr> 1745 <tr> 1746 <td>CVE-2016-3893</td> 1747 <td>A-29512527<br> 1748 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?id=a7a6ddc91cce7ad5ad55c9709b24bfc80f5ac873">QC-CR#856400</a></td> 1749 <td></td> 1750 <td>Nexus 6P</td> 1751 <td>2016 6 20 </td> 1752 </tr> 1753 </table> 1754 <h3>Qualcomm DMA </h3> 1755 <p> 1756 Qualcomm DMA 1757 </p> 1758 1759 <table> 1760 <col width="19%"> 1761 <col width="20%"> 1762 <col width="10%"> 1763 <col width="23%"> 1764 <col width="17%"> 1765 <tr> 1766 <th>CVE</th> 1767 <th></th> 1768 <th></th> 1769 <th> Nexus </th> 1770 <th></th> 1771 </tr> 1772 <tr> 1773 <td>CVE-2016-3894</td> 1774 <td>A-29618014*<br> 1775 QC-CR#1042033</td> 1776 <td></td> 1777 <td>Nexus 6</td> 1778 <td>2016 6 23 </td> 1779 </tr> 1780 </table> 1781 <p>* Nexus <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> 1782 </p> 1783 1784 <h3></h3> 1785 <p> 1786 1787 </p> 1788 1789 <table> 1790 <col width="19%"> 1791 <col width="20%"> 1792 <col width="10%"> 1793 <col width="23%"> 1794 <col width="17%"> 1795 <tr> 1796 <th>CVE</th> 1797 <th></th> 1798 <th></th> 1799 <th> Nexus </th> 1800 <th></th> 1801 </tr> 1802 <tr> 1803 <td>CVE-2016-4998</td> 1804 <td>A-29637687<br> 1805 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=bdf533de6968e9686df777dc178486f600c6e617"></a> 1806 [<a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=6e94e0cfb0887e4013b3b930fa6ab1fe6bb6ba91">2</a>]</td> 1807 <td></td> 1808 <td>Nexus 5Nexus 5XNexus 6Nexus 6PNexus 9Nexus PlayerPixel CAndroid One</td> 1809 <td>2016 6 24 </td> 1810 </tr> 1811 </table> 1812 <h3></h3> 1813 <p> 1814 Wi-Fi Wi-Fi 1815 </p> 1816 1817 <table> 1818 <col width="19%"> 1819 <col width="20%"> 1820 <col width="10%"> 1821 <col width="23%"> 1822 <col width="17%"> 1823 <tr> 1824 <th>CVE</th> 1825 <th></th> 1826 <th></th> 1827 <th> Nexus </th> 1828 <th></th> 1829 </tr> 1830 <tr> 1831 <td>CVE-2015-2922</td> 1832 <td>A-29409847 1833 <p> 1834 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=6fd99094de2b83d1d4c8457f2c83483b2828e75a"></a></p></td> 1835 <td></td> 1836 <td>Nexus 5Nexus 5XNexus 6Nexus 6PNexus 9Nexus PlayerPixel CAndroid One</td> 1837 <td>2015 4 4 </td> 1838 </tr> 1839 </table> 1840 <h3>Qualcomm </h3> 1841 <p> Qualcomm 1842 </p> 1843 1844 <table> 1845 <col width="19%"> 1846 <col width="20%"> 1847 <col width="10%"> 1848 <col width="23%"> 1849 <col width="17%"> 1850 <tr> 1851 <th>CVE</th> 1852 <th></th> 1853 <th></th> 1854 <th> Nexus </th> 1855 <th></th> 1856 </tr> 1857 <tr> 1858 <td>CVE-2016-2469</td> 1859 <td><a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=7eb824e8e1ebbdbfad896b090a9f048ca6e63c9e">QC-CR#997025</a></td> 1860 <td></td> 1861 <td></td> 1862 <td>2016 6 </td> 1863 </tr> 1864 <tr> 1865 <td>CVE-2016-2469</td> 1866 <td><a href="https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?id=e7369163162e7773bc887f7a264d6aa46cfcc665">QC-CR#997015</a></td> 1867 <td></td> 1868 <td></td> 1869 <td>2016 6 </td> 1870 </tr> 1871 </table> 1872 <h2 id="2016-09-06-details">2016-09-06 </h2> 1873 <p> 1874 <a href="#2016-09-06-summary">2016-09-06 </a> CVE Nexus AOSP () ID ( AOSP ) ID </p> 1875 1876 <h3></h3> 1877 <p> 1878 (Re-flash) 1879 </p> 1880 1881 <table> 1882 <col width="19%"> 1883 <col width="20%"> 1884 <col width="10%"> 1885 <col width="23%"> 1886 <col width="17%"> 1887 <tr> 1888 <th>CVE</th> 1889 <th></th> 1890 <th></th> 1891 <th> Nexus </th> 1892 <th></th> 1893 </tr> 1894 <tr> 1895 <td>CVE-2016-5340</td> 1896 <td>A-30652312<br> 1897 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?id=06e51489061e5473b4e2035c79dcf7c27a6f75a6">QC-CR#1008948</a></td> 1898 <td></td> 1899 <td>Nexus 5Nexus 5XNexus 6Nexus 6PAndroid One</td> 1900 <td>2016 7 26 </td> 1901 </tr> 1902 </table> 1903 <h3>Qualcomm </h3> 1904 <p> 1905 Qualcomm 1906 </p> 1907 1908 <table> 1909 <col width="19%"> 1910 <col width="20%"> 1911 <col width="10%"> 1912 <col width="23%"> 1913 <col width="17%"> 1914 <tr> 1915 <th>CVE</th> 1916 <th></th> 1917 <th></th> 1918 <th> Nexus </th> 1919 <th></th> 1920 </tr> 1921 <tr> 1922 <td>CVE-2016-2059</td> 1923 <td>A-27045580<br> 1924 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=9e8bdd63f7011dff5523ea435433834b3702398d">QC-CR#974577</a></td> 1925 <td></td> 1926 <td>Nexus 5Nexus 5XNexus 6Nexus 6PAndroid One</td> 1927 <td>2016 2 4 </td> 1928 </tr> 1929 </table> 1930 <h2 id="common-questions-and-answers"></h2> 1931 <p> 1932 </p> 1933 1934 <p> 1935 <strong>1. 1936 </strong> 1937 </p> 1938 1939 <p>2016 9 1 2016-09-01 2016 9 5 2016-09-05 2016 9 6 2016-09-06 <a href="https://support.google.com/nexus/answer/4457705"></a> 1940 [ro.build.version.security_patch][2016-09-01][ro.build.version.security_patch][2016-09-05] 1941 [ro.build.version.security_patch][2016-09-06] 1942 </p> 1943 1944 <p> 1945 <strong>2. </strong> 1946 </p> 1947 1948 <p> 1949 Android Android Android 1950 </p> 1951 1952 <p> 1953 2016 9 6 () 1954 </p> 1955 1956 <p> 1957 2016 9 5 2016 9 1 2016 9 5 2016 9 6 1958 </p> 1959 1960 <p> 1961 2016 9 1 2016 9 1 2016 9 5 2016 9 6 1962 </p> 1963 1964 <p> 1965 3<strong>. Nexus </strong> 1966 </p> 1967 1968 <p> <a href="#2016-09-01-details">2016-09-01</a><a href="#2016-09-05-details">2016-09-05</a> <a href="#2016-09-06-details">2016-09-06</a> Nexus <em></em> Nexus </p> 1969 1970 <ul> 1971 <li><strong> Nexus </strong> Nexus Nexus <em></em> Nexus Nexus <a href="https://support.google.com/nexus/answer/4457705#nexus_devices"></a>Nexus 5Nexus 5XNexus 6Nexus 6PNexus 7 (2013)Nexus 9Android OneNexus Player Pixel C</li> 1972 <li><strong> Nexus </strong> Nexus Nexus <em></em> Nexus </li> 1973 <li><strong> Nexus </strong> Android 7.0 Nexus Nexus <em></em></li> 1974 </ul> 1975 <p> 1976 <strong>4. </strong> 1977 </p> 1978 1979 <p><em></em> 1980 </p> 1981 1982 <table> 1983 <tr> 1984 <th></th> 1985 <th></th> 1986 </tr> 1987 <tr> 1988 <td>A-</td> 1989 <td>Android ID</td> 1990 </tr> 1991 <tr> 1992 <td>QC-</td> 1993 <td>Qualcomm </td> 1994 </tr> 1995 <tr> 1996 <td>M-</td> 1997 <td>MediaTek </td> 1998 </tr> 1999 <tr> 2000 <td>N-</td> 2001 <td>NVIDIA </td> 2002 </tr> 2003 <tr> 2004 <td>B-</td> 2005 <td>Broadcom </td> 2006 </tr> 2007 </table> 2008 2009 <h2 id="revisions"></h2> 2010 <ul> 2011 <li>2016 9 6 </li> 2012 <li>2016 9 7 AOSP </li> 2013 <li>2016 9 12 CVE-2016-3861 CVE-2016-3877</li> 2014 </ul> 2015 2016 </body> 2017 </html> 2018