1 <html devsite> 2 <head> 3 <title>Android 2016 11 </title> 4 <meta name="project_path" value="/_project.yaml" /> 5 <meta name="book_path" value="/_book.yaml" /> 6 </head> 7 <body> 8 <!-- 9 Copyright 2017 The Android Open Source Project 10 11 Licensed under the Apache License, Version 2.0 (the "License"); 12 you may not use this file except in compliance with the License. 13 You may obtain a copy of the License at 14 15 http://www.apache.org/licenses/LICENSE-2.0 16 17 Unless required by applicable law or agreed to in writing, software 18 distributed under the License is distributed on an "AS IS" BASIS, 19 WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 20 See the License for the specific language governing permissions and 21 limitations under the License. 22 --> 23 24 25 26 <p><em>2016 11 7 | 2016 11 8 </em></p> 27 <p>Android Android Google OTA Google Google <a href="https://developers.google.com/android/nexus/images">Google Developers </a>2016 11 6 <a href="https://support.google.com/pixelphone/answer/4457705#pixel_phones&nexus_devices">Pixel Nexus </a></p> 28 <p> 29 2016 10 20 () Android (AOSP) AOSP 30 </p> 31 <p></p> 32 <p> <a href="/security/enhancements/index.html">Android </a> ( <a href="https://developer.android.com/training/safetynet/index.html">SafetyNet</a>) Android <a href="#mitigations">Android Google </a></p> 33 <p></p> 34 <h2 id="announcements"></h2> 35 <ul> 36 <li> Pixel Pixel XL Google (Nexus ) <a href="#google-devices"> Google </a> 37 </li> 38 <li> Android Android <a href="#common-questions-and-answers"></a> 39 <ul> 40 <li><strong>2016-11-01</strong> 2016-11-01 () </li> 41 <li><strong>2016-11-05</strong> 2016-11-01 2016-11-05 () </li> 42 <li><strong></strong> 43 <p> 2016-12-01 44 </p> 45 <ul> 46 <li><strong>2016-11-06</strong> 2016-11-05 CVE-2016-5195 ( 2016 10 19 )</li> 47 </ul> 48 </li> 49 </ul> 50 </li> 51 <li> Google 2016 11 5 OTA </li> 52 </ul> 53 54 <h2 id="security-vulnerability-summary"></h2> 55 <p> 56 ID (CVE) Google <a href="/security/overview/updates-resources.html#severity"></a></p> 57 <h3 id="2016-11-01-summary">2016-11-01 </h3> 58 <p> 59 2016-11-01 </p> 60 <table> 61 <col width="55%"> 62 <col width="20%"> 63 <col width="13%"> 64 <col width="12%"> 65 <tr> 66 <th></th> 67 <th>CVE</th> 68 <th></th> 69 <th> Google </th> 70 </tr> 71 <tr> 72 <td></td> 73 <td>CVE-2016-6699</td> 74 <td></td> 75 <td></td> 76 </tr> 77 <tr> 78 <td>libzipfile </td> 79 <td>CVE-2016-6700</td> 80 <td></td> 81 <td>*</td> 82 </tr> 83 <tr> 84 <td>Skia </td> 85 <td>CVE-2016-6701</td> 86 <td></td> 87 <td></td> 88 </tr> 89 <tr> 90 <td>libjpeg </td> 91 <td>CVE-2016-6702</td> 92 <td></td> 93 <td>*</td> 94 </tr> 95 <tr> 96 <td>Android </td> 97 <td>CVE-2016-6703</td> 98 <td></td> 99 <td>*</td> 100 </tr> 101 <tr> 102 <td></td> 103 <td>CVE-2016-6704CVE-2016-6705CVE-2016-6706</td> 104 <td></td> 105 <td></td> 106 </tr> 107 <tr> 108 <td></td> 109 <td>CVE-2016-6707</td> 110 <td></td> 111 <td></td> 112 </tr> 113 <tr> 114 <td></td> 115 <td>CVE-2016-6708</td> 116 <td></td> 117 <td></td> 118 </tr> 119 <tr> 120 <td>Conscrypt </td> 121 <td>CVE-2016-6709</td> 122 <td></td> 123 <td></td> 124 </tr> 125 <tr> 126 <td></td> 127 <td>CVE-2016-6710</td> 128 <td></td> 129 <td></td> 130 </tr> 131 <tr> 132 <td></td> 133 <td>CVE-2014-9908</td> 134 <td></td> 135 <td>*</td> 136 </tr> 137 <tr> 138 <td>OpenJDK </td> 139 <td>CVE-2015-0410</td> 140 <td></td> 141 <td></td> 142 </tr> 143 <tr> 144 <td></td> 145 <td>CVE-2016-6711CVE-2016-6712CVE-2016-6713CVE-2016-6714</td> 146 <td></td> 147 <td></td> 148 </tr> 149 <tr> 150 <td>Framework API </td> 151 <td>CVE-2016-6715</td> 152 <td></td> 153 <td></td> 154 </tr> 155 <tr> 156 <td>AOSP </td> 157 <td>CVE-2016-6716</td> 158 <td></td> 159 <td></td> 160 </tr> 161 <tr> 162 <td></td> 163 <td>CVE-2016-6717</td> 164 <td></td> 165 <td></td> 166 </tr> 167 <tr> 168 <td></td> 169 <td>CVE-2016-6718</td> 170 <td></td> 171 <td></td> 172 </tr> 173 <tr> 174 <td></td> 175 <td>CVE-2016-6719</td> 176 <td></td> 177 <td></td> 178 </tr> 179 <tr> 180 <td></td> 181 <td>CVE-2016-6720CVE-2016-6721CVE-2016-6722</td> 182 <td></td> 183 <td></td> 184 </tr> 185 <tr> 186 <td>Proxy </td> 187 <td>CVE-2016-6723</td> 188 <td></td> 189 <td></td> 190 </tr> 191 <tr> 192 <td></td> 193 <td>CVE-2016-6724</td> 194 <td></td> 195 <td></td> 196 </tr> 197 </table> 198 <p> 199 * Android 7.0 Google ()</p> 200 <h3 id="2016-11-05-summary">2016-11-05 </h3> 201 <p> 202 2016-11-05 2016-11-01 </p> 203 <table> 204 <col width="55%"> 205 <col width="20%"> 206 <col width="13%"> 207 <col width="12%"> 208 <tr> 209 <th></th> 210 <th>CVE</th> 211 <th></th> 212 <th> Google </th> 213 </tr> 214 <tr> 215 <td>Qualcomm </td> 216 <td>CVE-2016-6725</td> 217 <td></td> 218 <td></td> 219 </tr> 220 <tr> 221 <td></td> 222 <td>CVE-2015-8961CVE-2016-7910CVE-2016-7911</td> 223 <td></td> 224 <td></td> 225 </tr> 226 <tr> 227 <td> SCSI </td> 228 <td>CVE-2015-8962</td> 229 <td></td> 230 <td></td> 231 </tr> 232 <tr> 233 <td></td> 234 <td>CVE-2016-7913</td> 235 <td></td> 236 <td></td> 237 </tr> 238 <tr> 239 <td> USB </td> 240 <td>CVE-2016-7912</td> 241 <td></td> 242 <td></td> 243 </tr> 244 <tr> 245 <td> ION </td> 246 <td>CVE-2016-6728</td> 247 <td></td> 248 <td></td> 249 </tr> 250 <tr> 251 <td>Qualcomm </td> 252 <td>CVE-2016-6729</td> 253 <td></td> 254 <td></td> 255 </tr> 256 <tr> 257 <td>NVIDIA GPU </td> 258 <td>CVE-2016-6730CVE-2016-6731CVE-2016-6732CVE-2016-6733CVE-2016-6734CVE-2016-6735CVE-2016-6736</td> 259 <td></td> 260 <td></td> 261 </tr> 262 <tr> 263 <td></td> 264 <td>CVE-2016-6828</td> 265 <td></td> 266 <td></td> 267 </tr> 268 <tr> 269 <td></td> 270 <td>CVE-2016-2184</td> 271 <td></td> 272 <td></td> 273 </tr> 274 <tr> 275 <td> ION </td> 276 <td>CVE-2016-6737</td> 277 <td></td> 278 <td></td> 279 </tr> 280 <tr> 281 <td>Qualcomm </td> 282 <td>CVE-2016-6726CVE-2016-6727</td> 283 <td></td> 284 <td></td> 285 </tr> 286 <tr> 287 <td>Expat </td> 288 <td>CVE-2016-0718CVE-2012-6702CVE-2016-5300CVE-2015-1283</td> 289 <td></td> 290 <td>*</td> 291 </tr> 292 <tr> 293 <td>Webview </td> 294 <td>CVE-2016-6754</td> 295 <td></td> 296 <td>*</td> 297 </tr> 298 <tr> 299 <td>Freetype </td> 300 <td>CVE-2014-9675</td> 301 <td></td> 302 <td>*</td> 303 </tr> 304 <tr> 305 <td></td> 306 <td>CVE-2015-8963</td> 307 <td></td> 308 <td></td> 309 </tr> 310 <tr> 311 <td></td> 312 <td>CVE-2016-6136</td> 313 <td></td> 314 <td></td> 315 </tr> 316 <tr> 317 <td>Qualcomm </td> 318 <td>CVE-2016-6738</td> 319 <td></td> 320 <td></td> 321 </tr> 322 <tr> 323 <td>Qualcomm </td> 324 <td>CVE-2016-6739CVE-2016-6740CVE-2016-6741</td> 325 <td></td> 326 <td></td> 327 </tr> 328 <tr> 329 <td>Qualcomm </td> 330 <td>CVE-2016-3904</td> 331 <td></td> 332 <td></td> 333 </tr> 334 <tr> 335 <td>Synaptics </td> 336 <td>CVE-2016-6742CVE-2016-6744CVE-2016-6745CVE-2016-6743</td> 337 <td></td> 338 <td></td> 339 </tr> 340 <tr> 341 <td></td> 342 <td>CVE-2015-8964CVE-2016-7914CVE-2016-7915CVE-2016-7916</td> 343 <td></td> 344 <td></td> 345 </tr> 346 <tr> 347 <td>NVIDIA GPU </td> 348 <td>CVE-2016-6746</td> 349 <td></td> 350 <td></td> 351 </tr> 352 <tr> 353 <td></td> 354 <td>CVE-2016-6747</td> 355 <td></td> 356 <td></td> 357 </tr> 358 <tr> 359 <td></td> 360 <td>CVE-2016-6753CVE-2016-7917</td> 361 <td></td> 362 <td></td> 363 </tr> 364 <tr> 365 <td>Qualcomm </td> 366 <td>CVE-2016-6748CVE-2016-6749CVE-2016-6750CVE-2016-3906CVE-2016-3907CVE-2016-6698CVE-2016-6751CVE-2016-6752</td> 367 <td></td> 368 <td></td> 369 </tr> 370 </table> 371 <p> 372 * Android 7.0 Google ()</p> 373 <h3 id="2016-11-06-summary">2016-11-06 </h3> 374 <p>2016-11-06 2016-11-05 2016-11-01 </p> 375 <table> 376 <col width="55%"> 377 <col width="20%"> 378 <col width="13%"> 379 <col width="12%"> 380 <tr> 381 <th></th> 382 <th>CVE</th> 383 <th></th> 384 <th> Google </th> 385 </tr> 386 <tr> 387 <td></td> 388 <td>CVE-2016-5195</td> 389 <td></td> 390 <td></td> 391 </tr> 392 </table> 393 394 <h2 id="mitigations">Android Google </h2> 395 <p> 396 <a href="/security/enhancements/index.html">Android </a> SafetyNet Android </p> 397 <ul> 398 <li> Android Android Android</li> 399 <li>Android <a href="http://static.googleusercontent.com/media/source.android.com/en//security/reports/Google_Android_Security_2015_Report_Final.pdf"> SafetyNet</a> <a href="http://static.googleusercontent.com/media/source.android.com/en//security/reports/Google_Android_Security_PHA_classifications.pdf"></a> <a href="http://www.android.com/gms">Google </a> Google Play Google Play Root Root () </li> 400 <li>Google Hangouts Messenger </li> 401 </ul> 402 <h2 id="acknowledgements"></h2> 403 <p> 404 </p> 405 <ul> 406 <li>Google Chrome Abhishek AryaOliver Chang Martin BarbellaCVE-2016-6722</li> 407 <li>Google Andrei Kapishnikov Miriam GershensonCVE-2016-6703</li> 408 <li>Silence Information Technology <a href="http://www.pkav.net">PKAV</a> Ao Wang (<a href="http://twitter.com/@r4y2_wa">@r4y2_wa</a>) <a href="http://weibo.com/ele7enxxh">Zinuo Han</a>CVE-2016-6700CVE-2016-6702</li> 409 <li> AskyshangCVE-2016-6713</li> 410 <li>Android Billy LauCVE-2016-6737</li> 411 <li> <a href="mailto:kpatsak (a] unipi.gr">Constantinos Patsakis</a> <a href="mailto:talepis (a] unipi.gr">Efthimios Alepis</a>CVE-2016-6715</li> 412 <li> dragonltxCVE-2016-6714</li> 413 <li>Google Project Zero Gal BeniaminiCVE-2016-6707CVE-2016-6717</li> 414 <li><a href="http://www.360.com"> 360</a> IceSword Gengjia Chen (<a href="http://twitter.com/chengjia4574">@chengjia4574</a>) <a href="http://weibo.com/jfpan ">pjf</a>CVE-2016-6725CVE-2016-6738CVE-2016-6740CVE-2016-6741CVE-2016-6742CVE-2016-6744CVE-2016-6745CVE-2016-3906</li> 415 <li><a href="http://www.360.com"> 360 </a> Alpha Guang Gong () (<a href="http://twitter.com/oldfresher">@oldfresher</a>)CVE-2016-6754</li> 416 <li><a href="http://www.360.com"> 360</a> IceSword Jianqiang Zhao (<a href="http://twitter.com/jianqiangzhao">@jianqiangzhao</a>) <a href="http://weibo.com/jfpan ">pjf</a>CVE-2016-6739CVE-2016-3904CVE-2016-3907CVE-2016-6698</li> 417 <li>Google Project Zero Mark BrandCVE-2016-6706</li> 418 <li>Google Mark RenoufCVE-2016-6724</li> 419 <li>Micha Bednarski (<a href="https://github.com/michalbednarski">github.com/michalbednarski</a>)CVE-2016-6710</li> 420 <li>Android Min ChongCVE-2016-6743</li> 421 <li> Peter Pi (<a href="http://twitter.com/heisecode">@heisecode</a>)CVE-2016-6721</li> 422 <li> KeenLab Qidan He () (<a href="http://twitter.com/flanker_hqd">@flanker_hqd</a>) Gengming Liu () (<a href="http://twitter.com/dmxcsnsbh">@dmxcsnsbh</a>)CVE-2016-6705</li> 423 <li>Google Robin LeeCVE-2016-6708</li> 424 <li><a href="mailto:sbauer (a] plzdonthack.me">Scott Bauer</a> (<a href="http://twitter.com/ScottyBauer1">@ScottyBauer1</a>)CVE-2016-6751</li> 425 <li> Sergey Bobrov (<a href="http://twitter.com/Black2Fan">@Black2Fan</a>)CVE-2016-6716</li> 426 <li> Seven Shen (<a href="http://twitter.com/lingtongshen">@lingtongshen</a>)CVE-2016-6748CVE-2016-6749CVE-2016-6750CVE-2016-6753</li> 427 <li> Victor van der VeenHerbert BosKaveh Razavi Cristiano Giuffrida Yanick FratantonioMartina Lindorfer Giovanni VignaCVE-2016-6728</li> 428 <li> Weichao Sun (<a href="https://twitter.com/sunblate">@sunblate</a>)CVE-2016-6712CVE-2016-6699CVE-2016-6711</li> 429 <li><a href="http://c0reteam.org">C0RE </a> Wenke Dou (<a href="mailto:vancouverdou (a] gmail.com">vancouverdou (a] gmail.com</a>)Chiachih Wu (<a href="https://twitter.com/chiachih_wu">@chiachih_wu</a>) Xuxian JiangCVE-2016-6720</li> 430 <li> Wish Wu () (<a href="http://twitter.com/wish_wu">@wish_wu</a>)CVE-2016-6704</li> 431 <li><a href="https://wwws.nightwatchcybersecurity.com">Nightwatch Cybersecurity</a> Yakov ShafranovichCVE-2016-6723</li> 432 <li><a href="http://c0reteam.org">C0RE </a> <a href="mailto:computernik (a] gmail.com">Yuan-Tsung Lo</a><a href="mailto:yaojun8558363 (a] gmail.com">Yao Jun</a><a href="mailto:segfault5514 (a] gmail.com">Tong Lin</a>Chiachih Wu (<a href="https://twitter.com/chiachih_wu">@chiachih_wu</a>) Xuxian JiangCVE-2016-6730CVE-2016-6732CVE-2016-6734CVE-2016-6736</li> 433 <li><a href="http://c0reteam.org">C0RE </a> <a href="mailto:computernik (a] gmail.com">Yuan-Tsung Lo</a><a href="mailto:yaojun8558363 (a] gmail.com">Yao Jun</a><a href="mailto:wisedd (a] gmail.com">Xiaodong Wang</a>Chiachih Wu (<a href="https://twitter.com/chiachih_wu">@chiachih_wu</a>) Xuxian JiangCVE-2016-6731CVE-2016-6733CVE-2016-6735CVE-2016-6746</li> 434 </ul> 435 <p> 436 Android Zach Riggle </p> 437 438 <h2 id="2016-11-01-details">2016-11-01 </h2> 439 <p> 440 <a href="#2016-11-01-summary">2016-11-01 </a> CVE Google AOSP () ID ( AOSP ) ID </p> 441 442 <h3 id="rce-in-mediaserver"></h3> 443 <p> 444 </p> 445 <table> 446 <col width="18%"> 447 <col width="18%"> 448 <col width="10%"> 449 <col width="19%"> 450 <col width="17%"> 451 <col width="17%"> 452 <tr> 453 <th>CVE</th> 454 <th></th> 455 <th></th> 456 <th> Google </th> 457 <th> AOSP </th> 458 <th></th> 459 </tr> 460 <tr> 461 <td>CVE-2016-6699</td> 462 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/3b1c9f692c4d4b7a683c2b358fc89e831a641b88"> 463 A-31373622</a></td> 464 <td></td> 465 <td></td> 466 <td>7.0</td> 467 <td>2016 7 27 </td> 468 </tr> 469 </table> 470 <h3 id="eop-in-libzipfile">libzipfile </h3> 471 <p> 472 libzipfile (Re-flash) 473 </p> 474 <table> 475 <col width="18%"> 476 <col width="18%"> 477 <col width="10%"> 478 <col width="19%"> 479 <col width="17%"> 480 <col width="17%"> 481 <tr> 482 <th>CVE</th> 483 <th></th> 484 <th></th> 485 <th> Google </th> 486 <th> AOSP </th> 487 <th></th> 488 </tr> 489 <tr> 490 <td>CVE-2016-6700</td> 491 <td>A-30916186</td> 492 <td></td> 493 <td>*</td> 494 <td>4.4.45.0.25.1.1</td> 495 <td>2016 8 17 </td> 496 </tr> 497 </table> 498 <p> 499 * Android 7.0 Google () 500 </p> 501 <h3 id="rce-in-skia">Skia </h3> 502 <p> 503 libskia 504 </p> 505 <table> 506 <col width="18%"> 507 <col width="18%"> 508 <col width="10%"> 509 <col width="19%"> 510 <col width="17%"> 511 <col width="17%"> 512 <tr> 513 <th>CVE</th> 514 <th></th> 515 <th></th> 516 <th> Google </th> 517 <th> AOSP </th> 518 <th></th> 519 </tr> 520 <tr> 521 <td>CVE-2016-6701</td> 522 <td><a href="https://android.googlesource.com/platform/external/skia/+/aca73722873e908633ff27375f6f93a08cbb7dd3"> 523 A-30190637</a></td> 524 <td></td> 525 <td></td> 526 <td>7.0</td> 527 <td>Google </td> 528 </tr> 529 </table> 530 <h3 id="rce-in-libjpeg">libjpeg </h3> 531 <p> 532 libjpeg libjpeg 533 </p> 534 <table> 535 <col width="18%"> 536 <col width="18%"> 537 <col width="10%"> 538 <col width="19%"> 539 <col width="17%"> 540 <col width="17%"> 541 <tr> 542 <th>CVE</th> 543 <th></th> 544 <th></th> 545 <th> Google </th> 546 <th> AOSP </th> 547 <th></th> 548 </tr> 549 <tr> 550 <td>CVE-2016-6702</td> 551 <td>A-30259087</td> 552 <td></td> 553 <td>*</td> 554 <td>4.4.45.0.25.1.1</td> 555 <td>2016 7 19 </td> 556 </tr> 557 </table> 558 <p> 559 * Android 7.0 Google () 560 </p> 561 <h3 id="rce-in-android-runtime">Android </h3> 562 <p> 563 Android Android 564 </p> 565 <table> 566 <col width="18%"> 567 <col width="18%"> 568 <col width="10%"> 569 <col width="19%"> 570 <col width="17%"> 571 <col width="17%"> 572 <tr> 573 <th>CVE</th> 574 <th></th> 575 <th></th> 576 <th> Google </th> 577 <th> AOSP </th> 578 <th></th> 579 </tr> 580 <tr> 581 <td>CVE-2016-6703</td> 582 <td>A-30765246</td> 583 <td></td> 584 <td>*</td> 585 <td>4.4.45.0.25.1.16.06.0.1</td> 586 <td>Google </td> 587 </tr> 588 </table> 589 <p> 590 * Android 7.0 Google () 591 </p> 592 <h3 id="eop-in-mediaserver"></h3> 593 <p> 594 </p> 595 <table> 596 <col width="18%"> 597 <col width="18%"> 598 <col width="10%"> 599 <col width="19%"> 600 <col width="17%"> 601 <col width="17%"> 602 <tr> 603 <th>CVE</th> 604 <th></th> 605 <th></th> 606 <th> Google </th> 607 <th> AOSP </th> 608 <th></th> 609 </tr> 610 <tr> 611 <td>CVE-2016-6704</td> 612 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/c6c446f9e022adf20064e65a17574804f8af8e7d"> 613 A-30229821</a> 614 [<a href="https://android.googlesource.com/platform/hardware/qcom/audio/+/9cb9810ecb63c8ff55ecf4bc77431dc5b0688b5f">2</a>] 615 [<a href="https://android.googlesource.com/platform/system/media/+/a6274f03b4dfe1c3a22af51e3a17ea56a314e747">3</a>] 616 </td> 617 <td></td> 618 <td></td> 619 <td>4.4.45.0.25.1.16.06.0.17.0</td> 620 <td>2016 7 19 </td> 621 </tr> 622 <tr> 623 <td>CVE-2016-6705</td> 624 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/3a03fa24d21f97e84e796ac5ef14b3f434c0e8f1"> 625 A-30907212</a> 626 [<a href="https://android.googlesource.com/platform/frameworks/av/+/bd04b47d38a89f1dada1c6da2ef4a3d235c166b8">2</a>] 627 </td> 628 <td></td> 629 <td></td> 630 <td>5.0.25.1.16.06.0.17.0</td> 631 <td>2016 8 16 </td> 632 </tr> 633 <tr> 634 <td>CVE-2016-6706</td> 635 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/1d4feebdb85db46e138530f360d9ff2490e14353"> 636 A-31385713</a> 637 </td> 638 <td></td> 639 <td></td> 640 <td>7.0</td> 641 <td>2016 9 8 </td> 642 </tr> 643 </table> 644 <h3 id="eop-in-system-server"></h3> 645 <p> 646 </p> 647 <table> 648 <col width="18%"> 649 <col width="18%"> 650 <col width="10%"> 651 <col width="19%"> 652 <col width="17%"> 653 <col width="17%"> 654 <tr> 655 <th>CVE</th> 656 <th></th> 657 <th></th> 658 <th> Google </th> 659 <th> AOSP </th> 660 <th></th> 661 </tr> 662 <tr> 663 <td>CVE-2016-6707</td> 664 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/16024ea7c4bae08c972cf6b3734029aad33e8870"> 665 A-31350622</a> 666 </td> 667 <td></td> 668 <td></td> 669 <td>6.06.0.17.0</td> 670 <td>2016 9 7 </td> 671 </tr> 672 </table> 673 <h3 id="eop-in-system-ui"></h3> 674 <p> 675 Work 676 </p> 677 <table> 678 <col width="18%"> 679 <col width="18%"> 680 <col width="10%"> 681 <col width="19%"> 682 <col width="17%"> 683 <col width="17%"> 684 <tr> 685 <th>CVE</th> 686 <th></th> 687 <th></th> 688 <th> Google </th> 689 <th> AOSP </th> 690 <th></th> 691 </tr> 692 <tr> 693 <td>CVE-2016-6708</td> 694 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/c9c73fde339b4db496f2c1ff8c18df1e9db5a7c1"> 695 A-30693465</a> 696 </td> 697 <td></td> 698 <td></td> 699 <td>7.0</td> 700 <td>Google </td> 701 </tr> 702 </table> 703 <h3 id="id-in-conscrypt">Conscrypt </h3> 704 <p> 705 Conscrypt API 706 </p> 707 <table> 708 <col width="18%"> 709 <col width="18%"> 710 <col width="10%"> 711 <col width="19%"> 712 <col width="17%"> 713 <col width="17%"> 714 <tr> 715 <th>CVE</th> 716 <th></th> 717 <th></th> 718 <th> Google </th> 719 <th> AOSP </th> 720 <th></th> 721 </tr> 722 <tr> 723 <td>CVE-2016-6709</td> 724 <td><a href="https://android.googlesource.com/platform/external/conscrypt/+/44ef9535b9afb123d150d8e0362e4bb50794dd41"> 725 A-31081987</a> 726 </td> 727 <td></td> 728 <td></td> 729 <td>6.06.0.17.0</td> 730 <td>2015 10 9 </td> 731 </tr> 732 </table> 733 <h3 id="id-in-download-manager"></h3> 734 <p> 735 736 </p> 737 <table> 738 <col width="18%"> 739 <col width="18%"> 740 <col width="10%"> 741 <col width="19%"> 742 <col width="17%"> 743 <col width="17%"> 744 <tr> 745 <th>CVE</th> 746 <th></th> 747 <th></th> 748 <th> Google </th> 749 <th> AOSP </th> 750 <th></th> 751 </tr> 752 <tr> 753 <td>CVE-2016-6710</td> 754 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/9fab683c9598d234dd8461335c276ed3e37c91e8"> 755 A-30537115</a> 756 [<a href="https://android.googlesource.com/platform/packages/providers/DownloadProvider/+/243e62949f7208d3b82eda3ee4ec22d3dbc1fb19">2</a>] 757 </td> 758 <td></td> 759 <td></td> 760 <td>5.0.25.1.16.06.0.17.0</td> 761 <td>2016 7 30 </td> 762 </tr> 763 </table> 764 <h3 id="dos-in-bluetooth"></h3> 765 <p> 766 767 </p> 768 <table> 769 <col width="18%"> 770 <col width="18%"> 771 <col width="10%"> 772 <col width="19%"> 773 <col width="17%"> 774 <col width="17%"> 775 <tr> 776 <th>CVE</th> 777 <th></th> 778 <th></th> 779 <th> Google </th> 780 <th> AOSP </th> 781 <th></th> 782 </tr> 783 <tr> 784 <td>CVE-2014-9908</td> 785 <td>A-28672558</td> 786 <td></td> 787 <td>*</td> 788 <td>4.4.45.0.25.1.1</td> 789 <td>2014 5 5 </td> 790 </tr> 791 </table> 792 <p> 793 * Android 7.0 Google () 794 </p> 795 <h3 id="dos-in-openjdk">OpenJDK </h3> 796 <p>OpenJDK 797 </p> 798 <table> 799 <col width="18%"> 800 <col width="18%"> 801 <col width="10%"> 802 <col width="19%"> 803 <col width="17%"> 804 <col width="17%"> 805 <tr> 806 <th>CVE</th> 807 <th></th> 808 <th></th> 809 <th> Google </th> 810 <th> AOSP </th> 811 <th></th> 812 </tr> 813 <tr> 814 <td>CVE-2015-0410</td> 815 <td><a href="https://android.googlesource.com/platform/libcore/+/21098574528bdf99dd50a74a60e161573e999108"> 816 A-30703445</a> 817 </td> 818 <td></td> 819 <td></td> 820 <td>7.0</td> 821 <td>2015 1 16 </td> 822 </tr> 823 </table> 824 <h3 id="dos-in-mediaserver"></h3> 825 <p> 826 827 </p> 828 <table> 829 <col width="18%"> 830 <col width="18%"> 831 <col width="10%"> 832 <col width="19%"> 833 <col width="17%"> 834 <col width="17%"> 835 <tr> 836 <th>CVE</th> 837 <th></th> 838 <th></th> 839 <th> Google </th> 840 <th> AOSP </th> 841 <th></th> 842 </tr> 843 <tr> 844 <td>CVE-2016-6711</td> 845 <td><a href="https://android.googlesource.com/platform/external/libvpx/+/063be1485e0099bc81ace3a08b0ec9186dcad693"> 846 A-30593765</a> 847 </td> 848 <td></td> 849 <td>*</td> 850 <td>4.4.45.0.25.1.16.06.0.1</td> 851 <td>2016 8 1 </td> 852 </tr> 853 <tr> 854 <td>CVE-2016-6712</td> 855 <td><a href="https://android.googlesource.com/platform/external/libvpx/+/fdb1b40e7bb147c07bda988c9501ad223795d12d"> 856 A-30593752</a> 857 </td> 858 <td></td> 859 <td>*</td> 860 <td>4.4.45.0.25.1.16.06.0.1</td> 861 <td>2016 8 1 </td> 862 </tr> 863 <tr> 864 <td>CVE-2016-6713</td> 865 <td><a href="https://android.googlesource.com/platform/external/libavc/+/8cafca0e8b1ed8125918e203118c5a4e612fd56c"> 866 A-30822755</a></td> 867 <td></td> 868 <td></td> 869 <td>6.06.0.17.0</td> 870 <td>2016 8 11 </td> 871 </tr> 872 <tr> 873 <td>CVE-2016-6714</td> 874 <td><a href="https://android.googlesource.com/platform/external/libavc/+/5bdb0a6b72782e505671a387bb5f83222d891d6a"> 875 A-31092462</a> 876 </td> 877 <td></td> 878 <td></td> 879 <td>6.06.0.17.0</td> 880 <td>2016 8 22 </td> 881 </tr> 882 </table> 883 <p> 884 * Android 7.0 Google () 885 </p> 886 <h3 id="eop-in-framework-apis">Framework API </h3> 887 <p> 888 Framework API () 889 </p> 890 <table> 891 <col width="18%"> 892 <col width="18%"> 893 <col width="10%"> 894 <col width="19%"> 895 <col width="17%"> 896 <col width="17%"> 897 <tr> 898 <th>CVE</th> 899 <th></th> 900 <th></th> 901 <th> Google </th> 902 <th> AOSP </th> 903 <th></th> 904 </tr> 905 <tr> 906 <td>CVE-2016-6715</td> 907 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/3de09838fb0996bb4b420630800ad34e828fd1b6"> 908 A-29833954</a> 909 </td> 910 <td></td> 911 <td></td> 912 <td>4.4.45.0.25.1.16.06.0.17.0</td> 913 <td>2016 6 28 </td> 914 </tr> 915 </table> 916 <h3 id="eop-in-aosp-launcher">AOSP </h3> 917 <p> 918 AOSP () 919 </p> 920 <table> 921 <col width="18%"> 922 <col width="18%"> 923 <col width="10%"> 924 <col width="19%"> 925 <col width="17%"> 926 <col width="17%"> 927 <tr> 928 <th>CVE</th> 929 <th></th> 930 <th></th> 931 <th> Google </th> 932 <th> AOSP </th> 933 <th></th> 934 </tr> 935 <tr> 936 <td>CVE-2016-6716</td> 937 <td><a href="https://android.googlesource.com/platform/packages/apps/Launcher3/+/e83fc11c982e67dd0181966f5f3a239ea6b14924"> 938 A-30778130</a> 939 </td> 940 <td></td> 941 <td></td> 942 <td>7.0</td> 943 <td>2016 8 5 </td> 944 </tr> 945 </table> 946 <h3 id="eop-in-mediaserver-1"></h3> 947 <p> 948 </p> 949 <table> 950 <col width="18%"> 951 <col width="18%"> 952 <col width="10%"> 953 <col width="19%"> 954 <col width="17%"> 955 <col width="17%"> 956 <tr> 957 <th>CVE</th> 958 <th></th> 959 <th></th> 960 <th> Google </th> 961 <th> AOSP </th> 962 <th></th> 963 </tr> 964 <tr> 965 <td>CVE-2016-6717</td> 966 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/45d9bbabbe7920bf4e0a68074b97d8260aef2e07"> 967 A-31350239</a> 968 </td> 969 <td></td> 970 <td></td> 971 <td>4.4.45.0.25.1.16.06.0.17.0</td> 972 <td>2016 9 7 </td> 973 </tr> 974 </table> 975 <h3 id="eop-in-account-manager-service"></h3> 976 <p> 977 () 978 </p> 979 <table> 980 <col width="18%"> 981 <col width="18%"> 982 <col width="10%"> 983 <col width="19%"> 984 <col width="17%"> 985 <col width="17%"> 986 <tr> 987 <th>CVE</th> 988 <th></th> 989 <th></th> 990 <th> Google </th> 991 <th> AOSP </th> 992 <th></th> 993 </tr> 994 <tr> 995 <td>CVE-2016-6718</td> 996 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/fecfd550edeca422c0d9f32a9c0abe73398a1ff1"> 997 A-30455516</a> 998 </td> 999 <td></td> 1000 <td></td> 1001 <td>7.0</td> 1002 <td>Google </td> 1003 </tr> 1004 </table> 1005 <h3 id="eop-in-bluetooth"></h3> 1006 <p> 1007 () 1008 </p> 1009 <table> 1010 <col width="18%"> 1011 <col width="18%"> 1012 <col width="10%"> 1013 <col width="19%"> 1014 <col width="17%"> 1015 <col width="17%"> 1016 <tr> 1017 <th>CVE</th> 1018 <th></th> 1019 <th></th> 1020 <th> Google </th> 1021 <th> AOSP </th> 1022 <th></th> 1023 </tr> 1024 <tr> 1025 <td>CVE-2016-6719</td> 1026 <td><a href="https://android.googlesource.com/platform/packages/apps/Bluetooth/+/e1b6db10e913c09d0b695368336137f6aabee462"> 1027 A-29043989</a> 1028 [<a href="https://android.googlesource.com/platform/frameworks/base/+/b1dc1757071ba46ee653d68f331486e86778b8e4">2</a>] 1029 </td> 1030 <td></td> 1031 <td></td> 1032 <td>4.4.45.0.25.1.16.06.0.17.0</td> 1033 <td>Google </td> 1034 </tr> 1035 </table> 1036 <h3 id="id-in-mediaserver"></h3> 1037 <p> 1038 1039 </p> 1040 <table> 1041 <col width="18%"> 1042 <col width="18%"> 1043 <col width="10%"> 1044 <col width="19%"> 1045 <col width="17%"> 1046 <col width="17%"> 1047 <tr> 1048 <th>CVE</th> 1049 <th></th> 1050 <th></th> 1051 <th> Google </th> 1052 <th> AOSP </th> 1053 <th></th> 1054 </tr> 1055 <tr> 1056 <td>CVE-2016-6720</td> 1057 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/0f177948ae2640bfe4d70f8e4248e106406b3b0a"> 1058 A-29422020</a> 1059 [<a href="https://android.googlesource.com/platform/frameworks/av/+/2c75e1c3b98e4e94f50c63e2b7694be5f948477c">2</a>] 1060 [<a href="https://android.googlesource.com/platform/frameworks/av/+/7c88b498fda1c2b608a9dd73960a2fd4d7b7e3f7">3</a>] 1061 [<a href="https://android.googlesource.com/platform/frameworks/av/+/640b04121d7cd2cac90e2f7c82b97fce05f074a5">4</a>]</td> 1062 <td></td> 1063 <td></td> 1064 <td>4.4.45.0.25.1.16.06.0.17.0</td> 1065 <td>2016 6 15 </td> 1066 </tr> 1067 <tr> 1068 <td>CVE-2016-6721</td> 1069 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/f6bf0102bdc1adff973e08d8ce9c869c4e2efade"> 1070 A-30875060</a></td> 1071 <td></td> 1072 <td></td> 1073 <td>6.06.0.17.0</td> 1074 <td>2016 8 13 </td> 1075 </tr> 1076 <tr> 1077 <td>CVE-2016-6722</td> 1078 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/89c03b3b9ff74a507a8b8334c50b08b334483556"> 1079 A-31091777</a></td> 1080 <td></td> 1081 <td></td> 1082 <td>4.4.45.0.25.1.16.06.0.17.0</td> 1083 <td>2016 8 23 </td> 1084 </tr> 1085 </table> 1086 <h3 id="dos-in-proxy-auto-config">Proxy </h3> 1087 <p> 1088 Proxy 1089 </p> 1090 <table> 1091 <col width="18%"> 1092 <col width="18%"> 1093 <col width="10%"> 1094 <col width="19%"> 1095 <col width="17%"> 1096 <col width="17%"> 1097 <tr> 1098 <th>CVE</th> 1099 <th></th> 1100 <th></th> 1101 <th> Google </th> 1102 <th> AOSP </th> 1103 <th></th> 1104 </tr> 1105 <tr> 1106 <td>CVE-2016-6723</td> 1107 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/d5b0d0b1df2e1a7943a4bb2034fd21487edd0264"> 1108 A-30100884</a> 1109 [<a href="https://android.googlesource.com/platform/frameworks/base/+/31f351160cdfd9dbe9919682ebe41bde3bcf91c6">2</a>] 1110 </td> 1111 <td></td> 1112 <td></td> 1113 <td>4.4.45.0.25.1.16.06.0.17.0</td> 1114 <td>2016 7 11 </td> 1115 </tr> 1116 </table> 1117 <h3 id="dos-in-input-manager-service"></h3> 1118 <p> 1119 1120 </p> 1121 <table> 1122 <col width="18%"> 1123 <col width="18%"> 1124 <col width="10%"> 1125 <col width="19%"> 1126 <col width="17%"> 1127 <col width="17%"> 1128 <tr> 1129 <th>CVE</th> 1130 <th></th> 1131 <th></th> 1132 <th> Google </th> 1133 <th> AOSP </th> 1134 <th></th> 1135 </tr> 1136 <tr> 1137 <td>CVE-2016-6724</td> 1138 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/7625010a2d22f8c3f1aeae2ef88dde37cbebd0bf"> 1139 A-30568284</a> 1140 </td> 1141 <td></td> 1142 <td></td> 1143 <td>4.4.45.0.25.1.16.06.0.17.0</td> 1144 <td>Google </td> 1145 </tr> 1146 </table> 1147 <h2 id="2016-11-05-details">2016-11-05 </h2> 1148 <p> 1149 <a href="#2016-11-05-summary">2016-11-05 </a> CVE Google AOSP () ID ( AOSP ) ID </p> 1150 <h3 id="rce-in-qualcomm-crypto-driver">Qualcomm </h3> 1151 <p> 1152 Qualcomm 1153 </p> 1154 <table> 1155 <col width="19%"> 1156 <col width="20%"> 1157 <col width="10%"> 1158 <col width="23%"> 1159 <col width="17%"> 1160 <tr> 1161 <th>CVE</th> 1162 <th></th> 1163 <th></th> 1164 <th> Google </th> 1165 <th></th> 1166 </tr> 1167 <tr> 1168 <td>CVE-2016-6725</td> 1169 <td>A-30515053<br> 1170 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.10/commit/?id=cc95d644ee8a043f2883d65dda20e16f95041de3">QC-CR#1050970</a></td> 1171 <td></td> 1172 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixelPixel XL</td> 1173 <td>2016 7 25 </td> 1174 </tr> 1175 </table> 1176 <h3 id="eop-in-kernel-file-system"></h3> 1177 <p> (Re-flash) 1178 </p> 1179 <table> 1180 <col width="19%"> 1181 <col width="20%"> 1182 <col width="10%"> 1183 <col width="23%"> 1184 <col width="17%"> 1185 <tr> 1186 <th>CVE</th> 1187 <th></th> 1188 <th></th> 1189 <th> Google </th> 1190 <th></th> 1191 </tr> 1192 <tr> 1193 <td>CVE-2015-8961</td> 1194 <td>A-30952474 1195 <br> 1196 <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=6934da9238da947628be83635e365df41064b09b"></a></td> 1197 <td></td> 1198 <td>PixelPixel XL</td> 1199 <td>2015 10 18 </td> 1200 </tr> 1201 <tr> 1202 <td>CVE-2016-7911</td> 1203 <td>A-30946378 1204 <br> 1205 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=8ba8682107ee2ca3347354e018865d8e1967c5f4"></a></td> 1206 <td></td> 1207 <td>Nexus 5XNexus 6Nexus 6PNexus 9Android OnePixel CNexus PlayerPixelPixel XL</td> 1208 <td>2016 7 1 </td> 1209 </tr> 1210 <tr> 1211 <td>CVE-2016-7910</td> 1212 <td>A-30942273 1213 <br> 1214 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=77da160530dd1dc94f6ae15a981f24e5f0021e84"></a></td> 1215 <td></td> 1216 <td>Nexus 5XNexus 6Nexus 6PNexus 9Android OnePixel CNexus PlayerPixelPixel XL</td> 1217 <td>2016 7 29 </td> 1218 </tr> 1219 </table> 1220 <h3 id="eop-in-kernel-scsi-driver"> SCSI </h3> 1221 <p> 1222 SCSI (Re-flash) 1223 </p> 1224 <table> 1225 <col width="19%"> 1226 <col width="20%"> 1227 <col width="10%"> 1228 <col width="23%"> 1229 <col width="17%"> 1230 <tr> 1231 <th>CVE</th> 1232 <th></th> 1233 <th></th> 1234 <th> Google </th> 1235 <th></th> 1236 </tr> 1237 <tr> 1238 <td>CVE-2015-8962</td> 1239 <td>A-30951599 1240 <br> 1241 <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=f3951a3709ff50990bf3e188c27d346792103432"></a></td> 1242 <td></td> 1243 <td>PixelPixel XL</td> 1244 <td>2015 10 30 </td> 1245 </tr> 1246 </table> 1247 <h3 id="eop-in-kernel-media-driver"></h3> 1248 <p> 1249 (Re-flash) 1250 </p> 1251 <table> 1252 <col width="19%"> 1253 <col width="20%"> 1254 <col width="10%"> 1255 <col width="23%"> 1256 <col width="17%"> 1257 <tr> 1258 <th>CVE</th> 1259 <th></th> 1260 <th></th> 1261 <th> Google </th> 1262 <th></th> 1263 </tr> 1264 <tr> 1265 <td>CVE-2016-7913</td> 1266 <td>A-30946097 1267 <br> 1268 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=8dfbcc4351a0b6d2f2d77f367552f48ffefafe18"></a></td> 1269 <td></td> 1270 <td>Nexus 6PAndroid OneNexus PlayerPixelPixel XL</td> 1271 <td>2016 1 28 </td> 1272 </tr> 1273 </table> 1274 <h3 id="eop-in-kernel-usb-driver"> USB </h3> 1275 <p> 1276 USB (Re-flash) 1277 </p> 1278 <table> 1279 <col width="19%"> 1280 <col width="20%"> 1281 <col width="10%"> 1282 <col width="23%"> 1283 <col width="17%"> 1284 <tr> 1285 <th>CVE</th> 1286 <th></th> 1287 <th></th> 1288 <th> Google </th> 1289 <th></th> 1290 </tr> 1291 <tr> 1292 <td>CVE-2016-7912</td> 1293 <td>A-30950866 1294 <br> 1295 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=38740a5b87d53ceb89eb2c970150f6e94e00373a"></a></td> 1296 <td></td> 1297 <td>Pixel CPixelPixel XL</td> 1298 <td>2016 4 14 </td> 1299 </tr> 1300 </table> 1301 <h3 id="eop-in-kernel-ion-subsystem"> ION </h3> 1302 <p> 1303 ION (Re-flash) 1304 </p> 1305 <table> 1306 <col width="19%"> 1307 <col width="20%"> 1308 <col width="10%"> 1309 <col width="23%"> 1310 <col width="17%"> 1311 <tr> 1312 <th>CVE</th> 1313 <th></th> 1314 <th></th> 1315 <th> Google </th> 1316 <th></th> 1317 </tr> 1318 <tr> 1319 <td>CVE-2016-6728</td> 1320 <td>A-30400942*</td> 1321 <td></td> 1322 <td>Nexus 5Nexus 5XNexus 6Nexus 6PNexus 9Nexus PlayerPixel CAndroid One</td> 1323 <td>2016 7 25 </td> 1324 </tr> 1325 </table> 1326 <p>* Google <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> 1327 </p> 1328 <h3 id="eop-in-qualcomm-bootloader">Qualcomm </h3> 1329 <p>Qualcomm (Re-flash) 1330 </p> 1331 <table> 1332 <col width="19%"> 1333 <col width="20%"> 1334 <col width="10%"> 1335 <col width="23%"> 1336 <col width="17%"> 1337 <tr> 1338 <th>CVE</th> 1339 <th></th> 1340 <th></th> 1341 <th> Google </th> 1342 <th></th> 1343 </tr> 1344 <tr> 1345 <td>CVE-2016-6729</td> 1346 <td>A-30977990* 1347 <br> 1348 QC-CR#977684</td> 1349 <td></td> 1350 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixelPixel XL</td> 1351 <td>2016 7 25 </td> 1352 </tr> 1353 </table> 1354 <p>* Google <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> 1355 </p> 1356 <h3 id="eop-in-nvidia-gpu-driver">NVIDIA GPU </h3> 1357 <p> 1358 NVIDIA GPU (Re-flash) 1359 </p> 1360 <table> 1361 <col width="19%"> 1362 <col width="20%"> 1363 <col width="10%"> 1364 <col width="23%"> 1365 <col width="17%"> 1366 <tr> 1367 <th>CVE</th> 1368 <th></th> 1369 <th></th> 1370 <th> Google </th> 1371 <th></th> 1372 </tr> 1373 <tr> 1374 <td>CVE-2016-6730</td> 1375 <td>A-30904789*<br> 1376 N-CVE-2016-6730</td> 1377 <td></td> 1378 <td>Pixel C</td> 1379 <td>2016 8 16 </td> 1380 </tr> 1381 <tr> 1382 <td>CVE-2016-6731</td> 1383 <td>A-30906023*<br> 1384 N-CVE-2016-6731</td> 1385 <td></td> 1386 <td>Pixel C</td> 1387 <td>2016 8 16 </td> 1388 </tr> 1389 <tr> 1390 <td>CVE-2016-6732</td> 1391 <td>A-30906599*<br> 1392 N-CVE-2016-6732</td> 1393 <td></td> 1394 <td>Pixel C</td> 1395 <td>2016 8 16 </td> 1396 </tr> 1397 <tr> 1398 <td>CVE-2016-6733</td> 1399 <td>A-30906694*<br> 1400 N-CVE-2016-6733</td> 1401 <td></td> 1402 <td>Pixel C</td> 1403 <td>2016 8 16 </td> 1404 </tr> 1405 <tr> 1406 <td>CVE-2016-6734</td> 1407 <td>A-30907120*<br> 1408 N-CVE-2016-6734</td> 1409 <td></td> 1410 <td>Pixel C</td> 1411 <td>2016 8 16 </td> 1412 </tr> 1413 <tr> 1414 <td>CVE-2016-6735</td> 1415 <td>A-30907701*<br> 1416 N-CVE-2016-6735</td> 1417 <td></td> 1418 <td>Pixel C</td> 1419 <td>2016 8 16 </td> 1420 </tr> 1421 <tr> 1422 <td>CVE-2016-6736</td> 1423 <td>A-30953284*<br> 1424 N-CVE-2016-6736</td> 1425 <td></td> 1426 <td>Pixel C</td> 1427 <td>2016 8 18 </td> 1428 </tr> 1429 </table> 1430 <p>* Google <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> 1431 </p> 1432 <h3 id="eop-in-kernel-networking-subsystem"></h3> 1433 <p> 1434 (Re-flash) 1435 </p> 1436 <table> 1437 <col width="19%"> 1438 <col width="20%"> 1439 <col width="10%"> 1440 <col width="23%"> 1441 <col width="17%"> 1442 <tr> 1443 <th>CVE</th> 1444 <th></th> 1445 <th></th> 1446 <th> Google </th> 1447 <th></th> 1448 </tr> 1449 <tr> 1450 <td>CVE-2016-6828</td> 1451 <td>A-31183296 1452 <br> 1453 <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/include/net/tcp.h?id=bb1fceca22492109be12640d49f5ea5a544c6bb4"></a></td> 1454 <td></td> 1455 <td>Nexus 5XNexus 6Nexus 6PNexus 9Android OnePixel CNexus PlayerPixelPixel XL</td> 1456 <td>2016 8 18 </td> 1457 </tr> 1458 </table> 1459 <h3 id="eop-in-kernel-sound-subsystem"></h3> 1460 <p> 1461 (Re-flash) 1462 </p> 1463 <table> 1464 <col width="19%"> 1465 <col width="20%"> 1466 <col width="10%"> 1467 <col width="23%"> 1468 <col width="17%"> 1469 <tr> 1470 <th>CVE</th> 1471 <th></th> 1472 <th></th> 1473 <th> Google </th> 1474 <th></th> 1475 </tr> 1476 <tr> 1477 <td>CVE-2016-2184</td> 1478 <td>A-30952477 1479 <br> 1480 <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=836b34a935abc91e13e63053d0a83b24dfb5ea78"></a></td> 1481 <td></td> 1482 <td>Nexus 5XNexus 6Nexus 6PNexus 9Android OnePixel CNexus PlayerPixelPixel XL</td> 1483 <td>2016 3 31 </td> 1484 </tr> 1485 </table> 1486 <h3 id="eop-in-kernel-ion-subsystem-1"> ION </h3> 1487 <p> 1488 ION (Re-flash) 1489 </p> 1490 <table> 1491 <col width="19%"> 1492 <col width="20%"> 1493 <col width="10%"> 1494 <col width="23%"> 1495 <col width="17%"> 1496 <tr> 1497 <th>CVE</th> 1498 <th></th> 1499 <th></th> 1500 <th> Google </th> 1501 <th></th> 1502 </tr> 1503 <tr> 1504 <td>CVE-2016-6737</td> 1505 <td>A-30928456*</td> 1506 <td></td> 1507 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixel CNexus PlayerPixelPixel XL</td> 1508 <td>Google </td> 1509 </tr> 1510 </table> 1511 <p>* Google <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> 1512 </p> 1513 <h3 id="vulnerabilities-in-qualcomm-components">Qualcomm </h3> 1514 <p> 1515 Qualcomm 2016 6 Qualcomm AMSS 80-NV606-17 1516 </p> 1517 <table> 1518 <col width="19%"> 1519 <col width="20%"> 1520 <col width="10%"> 1521 <col width="23%"> 1522 <col width="17%"> 1523 <tr> 1524 <th>CVE</th> 1525 <th></th> 1526 <th>*</th> 1527 <th> Google </th> 1528 <th></th> 1529 </tr> 1530 <tr> 1531 <td>CVE-2016-6727</td> 1532 <td>A-31092400**</td> 1533 <td></td> 1534 <td>Android One</td> 1535 <td>Qualcomm </td> 1536 </tr> 1537 <tr> 1538 <td>CVE-2016-6726</td> 1539 <td>A-30775830**</td> 1540 <td></td> 1541 <td>Nexus 6Android One</td> 1542 <td>Qualcomm </td> 1543 </tr> 1544 </table> 1545 <p>* </p> 1546 <p> 1547 ** Google <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> 1548 </p> 1549 <h3 id="rce-in-expat">Expat </h3> 1550 <p> Expat 1551 Expat XML Expat 1552 </p> 1553 <table> 1554 <col width="18%"> 1555 <col width="18%"> 1556 <col width="10%"> 1557 <col width="19%"> 1558 <col width="17%"> 1559 <col width="17%"> 1560 <tr> 1561 <th>CVE</th> 1562 <th></th> 1563 <th></th> 1564 <th> Google </th> 1565 <th> AOSP </th> 1566 <th></th> 1567 </tr> 1568 1569 <tr> 1570 <td>CVE-2016-0718</td> 1571 <td><a href="https://android.googlesource.com/platform/external/expat/+/52ac633b73856ded34b33bd4adb4ab793bbbe963"> 1572 A-28698301</a></td> 1573 <td></td> 1574 <td>*</td> 1575 <td>4.4.45.0.25.1.16.06.0.1</td> 1576 <td>2016 5 10 </td> 1577 </tr> 1578 <tr> 1579 <td>CVE-2012-6702</td> 1580 <td><a href="https://android.googlesource.com/platform/external/expat/+/a11ff32280a863bff93df13ad643912ad9bf1302"> 1581 A-29149404</a></td> 1582 <td></td> 1583 <td>*</td> 1584 <td>4.4.45.0.25.1.16.06.0.1</td> 1585 <td>2016 3 6 </td> 1586 </tr> 1587 <tr> 1588 <td>CVE-2016-5300</td> 1589 <td><a href="https://android.googlesource.com/platform/external/expat/+/a11ff32280a863bff93df13ad643912ad9bf1302"> 1590 A-29149404</a></td> 1591 <td></td> 1592 <td>*</td> 1593 <td>4.4.45.0.25.1.16.06.0.1</td> 1594 <td>2016 6 4 </td> 1595 </tr> 1596 <tr> 1597 <td>CVE-2015-1283</td> 1598 <td><a href="https://android.googlesource.com/platform/external/expat/+/13b40c2040a17038b63a61e2b112c634da203d3b"> 1599 A-27818751</a></td> 1600 <td></td> 1601 <td>*</td> 1602 <td>4.4.45.0.25.1.16.06.0.1</td> 1603 <td>2015 7 24 </td> 1604 </tr> 1605 </table> 1606 1607 <p> 1608 * Android 7.0 Google () 1609 </p> 1610 <h3 id="rce-in-webview">Webview </h3> 1611 <p>Webview 1612 </p> 1613 <table> 1614 <col width="18%"> 1615 <col width="18%"> 1616 <col width="10%"> 1617 <col width="19%"> 1618 <col width="17%"> 1619 <col width="17%"> 1620 <tr> 1621 <th>CVE</th> 1622 <th></th> 1623 <th></th> 1624 <th> Google </th> 1625 <th> AOSP </th> 1626 <th></th> 1627 </tr> 1628 <tr> 1629 <td>CVE-2016-6754</td> 1630 <td>A-31217937</td> 1631 <td></td> 1632 <td>*</td> 1633 <td>5.0.25.1.16.06.0.1</td> 1634 <td>2016 8 23 </td> 1635 </tr> 1636 </table> 1637 <p> 1638 * Android 7.0 Google () 1639 </p> 1640 <h3 id="rce-in-freetype">Freetype </h3> 1641 <p> 1642 Freetype Freetype 1643 </p> 1644 <table> 1645 <col width="18%"> 1646 <col width="18%"> 1647 <col width="10%"> 1648 <col width="19%"> 1649 <col width="17%"> 1650 <col width="17%"> 1651 <tr> 1652 <th>CVE</th> 1653 <th></th> 1654 <th></th> 1655 <th> Google </th> 1656 <th> AOSP </th> 1657 <th></th> 1658 </tr> 1659 <tr> 1660 <td>CVE-2014-9675</td> 1661 <td><a href="https://android.googlesource.com/platform/external/freetype/+/f720f0dbcf012d6c984dbbefa0875ef9840458c6"> 1662 A-24296662</a> 1663 [<a href="https://android.googlesource.com/platform/external/pdfium/+/96f965ff7411f1edba72140fd70740e63cabec71">2</a>] 1664 </td> 1665 <td></td> 1666 <td>*</td> 1667 <td>4.4.45.0.25.1.16.06.0.1</td> 1668 <td>Google </td> 1669 </tr> 1670 </table> 1671 <p> 1672 * Android 7.0 Google () 1673 </p> 1674 <h3 id="eop-in-kernel-performance-subsystem"></h3> 1675 <p> 1676 1677 </p> 1678 <table> 1679 <col width="19%"> 1680 <col width="20%"> 1681 <col width="10%"> 1682 <col width="23%"> 1683 <col width="17%"> 1684 <tr> 1685 <th>CVE</th> 1686 <th></th> 1687 <th></th> 1688 <th> Google </th> 1689 <th></th> 1690 </tr> 1691 <tr> 1692 <td>CVE-2015-8963</td> 1693 <td>A-30952077 1694 <br> 1695 <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=12ca6ad2e3a896256f086497a7c7406a547ee373"></a></td> 1696 <td></td> 1697 <td>Nexus 5XNexus 6Nexus 6PNexus 9Android OnePixel CNexus PlayerPixelPixel XL</td> 1698 <td>2015 12 15 </td> 1699 </tr> 1700 </table> 1701 <h3 id="eop-in-kernel-system-call-auditing-subsystem"></h3> 1702 <p> 1703 </p> 1704 <table> 1705 <col width="19%"> 1706 <col width="20%"> 1707 <col width="10%"> 1708 <col width="23%"> 1709 <col width="17%"> 1710 <tr> 1711 <th>CVE</th> 1712 <th></th> 1713 <th></th> 1714 <th> Google </th> 1715 <th></th> 1716 </tr> 1717 <tr> 1718 <td>CVE-2016-6136</td> 1719 <td>A-30956807 1720 <br> 1721 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=43761473c254b45883a64441dd0bc85a42f3645c"></a></td> 1722 <td></td> 1723 <td>Android OnePixel CNexus Player</td> 1724 <td>2016 7 1 </td> 1725 </tr> 1726 </table> 1727 <h3 id="eop-in-qualcomm-crypto-engine-driver">Qualcomm </h3> 1728 <p> 1729 Qualcomm 1730 </p> 1731 <table> 1732 <col width="19%"> 1733 <col width="20%"> 1734 <col width="10%"> 1735 <col width="23%"> 1736 <col width="17%"> 1737 <tr> 1738 <th>CVE</th> 1739 <th></th> 1740 <th></th> 1741 <th> Google </th> 1742 <th></th> 1743 </tr> 1744 <tr> 1745 <td>CVE-2016-6738</td> 1746 <td>A-30034511 1747 <br> 1748 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=a829c54236b455885c3e9c7c77ac528b62045e79">QC-CR#1050538</a></td> 1749 <td></td> 1750 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixelPixel XL</td> 1751 <td>2016 7 7 </td> 1752 </tr> 1753 </table> 1754 <h3 id="eop-in-qualcomm-camera-driver">Qualcomm </h3> 1755 <p> 1756 Qualcomm 1757 </p> 1758 <table> 1759 <col width="19%"> 1760 <col width="20%"> 1761 <col width="10%"> 1762 <col width="23%"> 1763 <col width="17%"> 1764 <tr> 1765 <th>CVE</th> 1766 <th></th> 1767 <th></th> 1768 <th> Google </th> 1769 <th></th> 1770 </tr> 1771 <tr> 1772 <td>CVE-2016-6739</td> 1773 <td>A-30074605*<br> 1774 QC-CR#1049826</td> 1775 <td></td> 1776 <td>Nexus 5XNexus 6PPixelPixel XL</td> 1777 <td>2016 7 11 </td> 1778 </tr> 1779 <tr> 1780 <td>CVE-2016-6740</td> 1781 <td>A-30143904 1782 <br> 1783 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.10/commit/?id=ef78bd62f0c064ae4c827e158d828b2c110ebcdc">QC-CR#1056307</a></td> 1784 <td></td> 1785 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixelPixel XL</td> 1786 <td>2016 7 12 </td> 1787 </tr> 1788 <tr> 1789 <td>CVE-2016-6741</td> 1790 <td>A-30559423 1791 <br> 1792 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=d291eebd8e43bba3229ae7ef9146a132894dc293">QC-CR#1060554</a></td> 1793 <td></td> 1794 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixelPixel XL</td> 1795 <td>2016 7 28 </td> 1796 </tr> 1797 </table> 1798 <p>* Google <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> 1799 </p> 1800 <h3 id="eop-in-qualcomm-bus-driver">Qualcomm </h3> 1801 <p> 1802 Qualcomm 1803 </p> 1804 <table> 1805 <col width="19%"> 1806 <col width="20%"> 1807 <col width="10%"> 1808 <col width="23%"> 1809 <col width="17%"> 1810 <tr> 1811 <th>CVE</th> 1812 <th></th> 1813 <th></th> 1814 <th> Google </th> 1815 <th></th> 1816 </tr> 1817 <tr> 1818 <td>CVE-2016-3904</td> 1819 <td>A-30311977 1820 <br> 1821 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=069683407ca9a820d05c914b57c587bcd3f16a3a">QC-CR#1050455</a></td> 1822 <td></td> 1823 <td>Nexus 5XNexus 6PPixelPixel XL</td> 1824 <td>2016 7 22 </td> 1825 </tr> 1826 </table> 1827 <h3 id="eop-in-synaptics-touchscreen-driver">Synaptics </h3> 1828 <p>Synaptics 1829 </p> 1830 <table> 1831 <col width="19%"> 1832 <col width="20%"> 1833 <col width="10%"> 1834 <col width="23%"> 1835 <col width="17%"> 1836 <tr> 1837 <th>CVE</th> 1838 <th></th> 1839 <th></th> 1840 <th> Google </th> 1841 <th></th> 1842 </tr> 1843 <tr> 1844 <td>CVE-2016-6742</td> 1845 <td>A-30799828*</td> 1846 <td></td> 1847 <td>Nexus 5XAndroid One</td> 1848 <td>2016 8 9 </td> 1849 </tr> 1850 <tr> 1851 <td>CVE-2016-6744</td> 1852 <td>A-30970485*</td> 1853 <td></td> 1854 <td>Nexus 5X</td> 1855 <td>2016 8 19 </td> 1856 </tr> 1857 <tr> 1858 <td>CVE-2016-6745</td> 1859 <td>A-31252388*</td> 1860 <td></td> 1861 <td>Nexus 5XNexus 6PNexus 9Android OnePixelPixel XL</td> 1862 <td>2016 9 1 </td> 1863 </tr> 1864 <tr> 1865 <td>CVE-2016-6743</td> 1866 <td>A-30937462*</td> 1867 <td></td> 1868 <td>Nexus 9Android One</td> 1869 <td>Google </td> 1870 </tr> 1871 </table> 1872 <p>* Google <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> 1873 </p> 1874 <h3 id="id-in-kernel-components"></h3> 1875 <p> 1876 () 1877 </p> 1878 <table> 1879 <col width="19%"> 1880 <col width="20%"> 1881 <col width="10%"> 1882 <col width="23%"> 1883 <col width="17%"> 1884 <tr> 1885 <th>CVE</th> 1886 <th></th> 1887 <th></th> 1888 <th> Google </th> 1889 <th></th> 1890 </tr> 1891 <tr> 1892 <td>CVE-2015-8964</td> 1893 <td>A-30951112 1894 <br> 1895 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=dd42bf1197144ede075a9d4793123f7689e164bc"></a></td> 1896 <td></td> 1897 <td>Nexus 5XNexus 6Nexus 6PNexus 9Android OnePixel CNexus PlayerPixelPixel XL</td> 1898 <td>2015 11 27 </td> 1899 </tr> 1900 <tr> 1901 <td>CVE-2016-7915</td> 1902 <td>A-30951261 1903 <br> 1904 <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=50220dead1650609206efe91f0cc116132d59b3f"></a></td> 1905 <td></td> 1906 <td>Nexus 5XNexus 6Nexus 6PNexus 9Android OnePixel CNexus PlayerPixelPixel XL</td> 1907 <td>2016 1 19 </td> 1908 </tr> 1909 <tr> 1910 <td>CVE-2016-7914</td> 1911 <td>A-30513364 1912 <br> 1913 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=8d4a2ec1e0b41b0cf9a0c5cd4511da7f8e4f3de2"></a></td> 1914 <td></td> 1915 <td>Pixel CPixelPixel XL</td> 1916 <td>2016 4 6 </td> 1917 </tr> 1918 <tr> 1919 <td>CVE-2016-7916</td> 1920 <td>A-30951939 1921 <br> 1922 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=8148a73c9901a8794a50f950083c00ccf97d43b3"></a></td> 1923 <td></td> 1924 <td>Nexus 5XNexus 6Nexus 6PNexus 9Android OnePixel CNexus PlayerPixelPixel XL</td> 1925 <td>2016 5 5 </td> 1926 </tr> 1927 </table> 1928 <h3 id="id-in-nvidia-gpu-driver">NVIDIA GPU </h3> 1929 <p> 1930 NVIDIA GPU 1931 </p> 1932 <table> 1933 <col width="19%"> 1934 <col width="20%"> 1935 <col width="10%"> 1936 <col width="23%"> 1937 <col width="17%"> 1938 <tr> 1939 <th>CVE</th> 1940 <th></th> 1941 <th></th> 1942 <th> Google </th> 1943 <th></th> 1944 </tr> 1945 <tr> 1946 <td>CVE-2016-6746</td> 1947 <td>A-30955105*<br> 1948 N-CVE-2016-6746</td> 1949 <td></td> 1950 <td>Pixel C</td> 1951 <td>2016 8 18 </td> 1952 </tr> 1953 </table> 1954 <p>* Google <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> 1955 </p> 1956 <h3 id="dos-in-mediaserver-1"></h3> 1957 <p> 1958 1959 </p> 1960 <table> 1961 <col width="19%"> 1962 <col width="20%"> 1963 <col width="10%"> 1964 <col width="23%"> 1965 <col width="17%"> 1966 <tr> 1967 <th>CVE</th> 1968 <th></th> 1969 <th></th> 1970 <th> Google </th> 1971 <th></th> 1972 </tr> 1973 <tr> 1974 <td>CVE-2016-6747</td> 1975 <td>A-31244612*<br> 1976 N-CVE-2016-6747</td> 1977 <td></td> 1978 <td>Nexus 9</td> 1979 <td>Google </td> 1980 </tr> 1981 </table> 1982 <p>* Google <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> 1983 </p> 1984 <h3 id="id-in-kernel-components-1"></h3> 1985 <p> 1986 () 1987 </p> 1988 <table> 1989 <col width="19%"> 1990 <col width="20%"> 1991 <col width="10%"> 1992 <col width="23%"> 1993 <col width="17%"> 1994 <tr> 1995 <th>CVE</th> 1996 <th></th> 1997 <th></th> 1998 <th> Google </th> 1999 <th></th> 2000 </tr> 2001 <tr> 2002 <td>CVE-2016-7917</td> 2003 <td>A-30947055 2004 <br> 2005 <a href="https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=c58d6c93680f28ac58984af61d0a7ebf4319c241"></a></td> 2006 <td></td> 2007 <td>Pixel CPixelPixel XL</td> 2008 <td>2016 2 2 </td> 2009 </tr> 2010 <tr> 2011 <td>CVE-2016-6753</td> 2012 <td>A-30149174*</td> 2013 <td></td> 2014 <td>Nexus 5XNexus 6Nexus 6PNexus 9Pixel CNexus PlayerPixelPixel XL</td> 2015 <td>2016 7 13 </td> 2016 </tr> 2017 </table> 2018 <p>* Google <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> 2019 </p> 2020 <h3 id="id-in-qualcomm-components">Qualcomm </h3> 2021 <p> 2022 Qualcomm ( GPU SMSM ) 2023 </p> 2024 <table> 2025 <col width="19%"> 2026 <col width="20%"> 2027 <col width="10%"> 2028 <col width="23%"> 2029 <col width="17%"> 2030 <tr> 2031 <th>CVE</th> 2032 <th></th> 2033 <th></th> 2034 <th> Google </th> 2035 <th></th> 2036 </tr> 2037 <tr> 2038 <td>CVE-2016-6748</td> 2039 <td>A-30076504 2040 <br> 2041 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.10/commit/?id=be651d020b122a1ba9410d23ca4ebbe9f5598df6">QC-CR#987018</a></td> 2042 <td></td> 2043 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixelPixel XL</td> 2044 <td>2016 7 12 </td> 2045 </tr> 2046 <tr> 2047 <td>CVE-2016-6749</td> 2048 <td>A-30228438 2049 <br> 2050 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.10/commit/?id=f9185dc83b92e7d1ee341e32e8cf5ed00a7253a7">QC-CR#1052818</a></td> 2051 <td></td> 2052 <td>Nexus 5XNexus 6PPixelPixel XL</td> 2053 <td>2016 7 12 </td> 2054 </tr> 2055 <tr> 2056 <td>CVE-2016-6750</td> 2057 <td>A-30312054 2058 <br> 2059 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=34bda711a1c7bc7f9fd7bea3a5be439ed00577e5">QC-CR#1052825</a></td> 2060 <td></td> 2061 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixelPixel XL</td> 2062 <td>2016 7 21 </td> 2063 </tr> 2064 <tr> 2065 <td>CVE-2016-3906</td> 2066 <td>A-30445973 2067 <br> 2068 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=b333d32745fec4fb1098ee1a03d4425f3c1b4c2e">QC-CR#1054344</a></td> 2069 <td></td> 2070 <td>Nexus 5XNexus 6P</td> 2071 <td>2016 7 27 </td> 2072 </tr> 2073 <tr> 2074 <td>CVE-2016-3907</td> 2075 <td>A-30593266 2076 <br> 2077 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.10/commit/?id=744330f4e5d70dce71c4c9e03c5b6a8b59bb0cda">QC-CR#1054352</a></td> 2078 <td></td> 2079 <td>Nexus 5XNexus 6PPixelPixel XL</td> 2080 <td>2016 8 2 </td> 2081 </tr> 2082 <tr> 2083 <td>CVE-2016-6698</td> 2084 <td>A-30741851 2085 <br> 2086 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.10/commit/?id=de90beb76ad0b80da821c3b857dd30cd36319e61">QC-CR#1058826</a></td> 2087 <td></td> 2088 <td>Nexus 5XNexus 6PAndroid OnePixelPixel XL</td> 2089 <td>2016 8 2 </td> 2090 </tr> 2091 <tr> 2092 <td>CVE-2016-6751</td> 2093 <td>A-30902162*<br> 2094 QC-CR#1062271</td> 2095 <td></td> 2096 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixelPixel XL</td> 2097 <td>2016 8 15 </td> 2098 </tr> 2099 <tr> 2100 <td>CVE-2016-6752</td> 2101 <td>A-31498159 2102 <br> 2103 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?h=0de2c7600c8f1f0152a2f421c6593f931186400a">QC-CR#987051</a></td> 2104 <td></td> 2105 <td>Nexus 5XNexus 6Nexus 6PAndroid OnePixelPixel XL</td> 2106 <td>Google </td> 2107 </tr> 2108 </table> 2109 <p>* Google <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a> 2110 </p> 2111 2112 <h2 id="2016-11-06-details">2016-11-06 </h2> 2113 <p> 2114 <a href="#2016-11-06-summary">2016-11-06 </a> CVE Google AOSP () ID ( AOSP ) ID </p> 2115 <h3 id="eop-in-kernel-memory-subsystem"></h3> 2116 <p> 2117 (Re-flash) 2118 </p> 2119 <p> 2120 <strong></strong>2016 11 6 2016-11-01 2016-11-05 2121 </p> 2122 <table> 2123 <tr> 2124 <th>CVE</th> 2125 <th></th> 2126 <th></th> 2127 <th></th> 2128 <th></th> 2129 </tr> 2130 <tr> 2131 <td>CVE-2016-5195</td> 2132 <td>A-32141528<br> 2133 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=9691eac5593ff1e2f82391ad327f21d90322aec1"></a> 2134 [<a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=e45a502bdeae5a075257c4f061d1ff4ff0821354">2</a>]</td> 2135 <td></td> 2136 <td>3.103.18</td> 2137 <td>2016 10 12 </td> 2138 </tr> 2139 </table> 2140 <h2 id="common-questions-and-answers"></h2> 2141 <p> 2142 </p> 2143 <p> 2144 <strong>1. </strong> 2145 </p> 2146 <p> 2147 <a href="https://support.google.com/pixelphone/answer/4457705#pixel_phones&nexus_devices">Pixel 2148 Nexus </a> 2149 </p> 2150 <ul> 2151 <li>2016 11 1 2016-11-01 </li> 2152 <li>2016 11 5 2016-11-05 </li> 2153 <li>2016 11 6 2016-11-06 </li> 2154 </ul> 2155 <p> 2156 2157 </p> 2158 <ul> 2159 <li>[ro.build.version.security_patch]:[2016-11-01]</li> 2160 <li>[ro.build.version.security_patch]:[2016-11-05]</li> 2161 <li>[ro.build.version.security_patch]:[2016-11-06]</li> 2162 </ul> 2163 <p> 2164 <strong>2. </strong> 2165 </p> 2166 <p> 2167 Android Android Android 2168 </p> 2169 <ul> 2170 <li> 2016 11 1 </li> 2171 <li> 2016 11 5 () </li> 2172 <li> 2016 11 6 () </li> 2173 </ul> 2174 <p> 2175 2176 </p> 2177 <p id="google-devices"> 2178 <strong>3. Google </strong> 2179 </p> 2180 <p> <a href="#2016-11-01-details">2016-11-01</a><a href="#2016-11-05-details">2016-11-05</a> <a href="#2016-11-06-details">2016-11-06</a> Google <em></em> Google </p> 2181 <ul> 2182 <li><strong> Google </strong> Nexus Pixel Google <em></em><a href="https://support.google.com/pixelphone/answer/4457705#pixel_phones&nexus_devices"></a>Nexus 5Nexus 5XNexus 6Nexus 6PNexus 7 (2013)Nexus 9Android OneNexus PlayerPixel CPixel Pixel XL</li> 2183 <li><strong> Google </strong> Google Google <em></em> Google </li> 2184 <li><strong> Google </strong> Android 7.0 Google Google <em></em></li> 2185 </ul> 2186 <p> 2187 <strong>4. </strong> 2188 </p> 2189 <p><em></em> 2190 </p> 2191 <table> 2192 <tr> 2193 <th></th> 2194 <th></th> 2195 </tr> 2196 <tr> 2197 <td>A-</td> 2198 <td>Android ID</td> 2199 </tr> 2200 <tr> 2201 <td>QC-</td> 2202 <td>Qualcomm </td> 2203 </tr> 2204 <tr> 2205 <td>M-</td> 2206 <td>MediaTek </td> 2207 </tr> 2208 <tr> 2209 <td>N-</td> 2210 <td>NVIDIA </td> 2211 </tr> 2212 <tr> 2213 <td>B-</td> 2214 <td>Broadcom </td> 2215 </tr> 2216 </table> 2217 2218 <h2 id="revisions"></h2> 2219 <ul> 2220 <li>2016 11 7 </li> 2221 <li>11 8 AOSP CVE-2016-6709 </li> 2222 </ul> 2223 2224 </body> 2225 </html> 2226
