1 <html devsite><head> 2 <title>Android - 2017 4 </title> 3 <meta name="project_path" value="/_project.yaml"/> 4 <meta name="book_path" value="/_book.yaml"/> 5 </head> 6 <body> 7 <!-- 8 Copyright 2017 The Android Open Source Project 9 10 Licensed under the Apache License, Version 2.0 (the "License"); 11 you may not use this file except in compliance with the License. 12 You may obtain a copy of the License at 13 14 http://www.apache.org/licenses/LICENSE-2.0 15 16 Unless required by applicable law or agreed to in writing, software 17 distributed under the License is distributed on an "AS IS" BASIS, 18 WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 19 See the License for the specific language governing permissions and 20 limitations under the License. 21 --> 22 <p><em>2017 4 3 | 2017 4 5 </em></p> 23 <p>Android Android Google OTA Google Google <a href="https://developers.google.com/android/nexus/images">Google Developers </a>2017 4 5 <a href="https://support.google.com/pixelphone/answer/4457705#pixel_phones&nexus_devices">Pixel Nexus </a></p> 24 <p> 2017 3 6 Android (AOSP) AOSP </p> 25 <p><a href="/security/overview/updates-resources.html#severity"></a></p> 26 <p> <a href="/security/enhancements/index.html">Android </a> ( <a href="https://developer.android.com/training/safetynet/index.html">SafetyNet</a>) Android <a href="#mitigations">Android Google </a></p> 27 <p></p> 28 29 <h2 id="announcements"></h2> 30 <ul> 31 <li> Android Android <a href="#common-questions-and-answers"></a><ul> 32 <li><strong>2017-04-01</strong> 2017-04-01 () </li> 33 <li><strong>2017-04-05</strong> 2017-04-01 2017-04-05 () </li> 34 </ul> 35 </li> 36 <li> Google OTA 2017 4 5 </li> 37 </ul> 38 39 <h2 id="mitigations">Android Google </h2> 40 <p> <a href="/security/enhancements/index.html">Android </a> SafetyNet Android </p> 41 <ul> 42 <li>Android Android Android</li> 43 <li>Android <a href="http://static.googleusercontent.com/media/source.android.com/en//security/reports/Google_Android_Security_2016_Report_Final.pdf"> SafetyNet</a> <a href="http://static.googleusercontent.com/media/source.android.com/en//security/reports/Google_Android_Security_PHA_classifications.pdf"></a> <a href="http://www.android.com/gms">Google </a> Google Play Google Play Root Root () </li> 44 <li>Google Hangouts Messenger </li> 45 </ul> 46 47 <h2 id="acknowledgements"></h2> 48 <p></p> 49 <ul> 50 <li>Shellphish Grill Aravind Machiry (donfos)CVE-2016-5349</li> 51 <li> Daxing Guo (<a href="https://twitter.com/freener0">@freener0</a>)CVE-2017-0585CVE-2017-0553</li> 52 <li><a href="mailto:derrek.haxx (a] gmail.com">Derrek</a> (<a href="https://twitter.com/derrekr6">@derrekr6</a>) Scott BauerCVE-2017-0576</li> 53 <li>Project Zero Gal BeniaminiCVE-2017-0571CVE-2017-0570CVE-2017-0572CVE-2017-0569CVE-2017-0561</li> 54 <li> 360 IceSword Gengjia Chen (<a href="https://twitter.com/chengjia4574">@chengjia4574</a>) <a href="http://weibo.com/jfpan">pjf</a>CVE-2017-6426CVE-2017-0581CVE-2017-0329CVE-2017-0332CVE-2017-0566</li> 55 <li> 360 Alpha Guang Gong () (<a href="https://twitter.com/oldfresher">@oldfresher</a>)CVE-2017-0547</li> 56 <li> 360 Alpha Hao Chen Guang GongCVE-2017-6424CVE-2017-0584CVE-2017-0454CVE-2017-0575CVE-2017-0567</li> 57 <li>Ian Foster (<a href="https://twitter.com/lanrat">@lanrat</a>)CVE-2017-0554</li> 58 <li> Jack TangCVE-2017-0579</li> 59 <li><a href="https://skyeye.360safe.com"> 360 Skyeye </a> Jianjun Dai (<a href="https://twitter.com/Jioun_dai">@Jioun_dai</a>)CVE-2017-0559CVE-2017-0541</li> 60 <li> 360 IceSword Jianqiang Zhao (<a href="https://twitter.com/jianqiangzhao">@jianqiangzhao</a>) <a href="http://weibo.com/jfpan">pjf</a>CVE-2017-6425CVE-2016-5346</li> 61 <li> 360 <a href="http://c0reteam.org">C0RE </a> Lubo Zhang (<a href="mailto:zlbzlb815 (a] 163.com">zlbzlb815 (a] 163.com</a>) IceSword Yonggang Guo (<a href="https://twitter.com/guoygang">@guoygang</a>)CVE-2017-0564</li> 62 <li>Google <a href="mailto:salyzyn (a] android.com">Mark Salyzyn</a>CVE-2017-0558</li> 63 <li> Mike Anderson (<a href="https://twitter.com/manderbot">@manderbot</a>) Nathan Crandall (<a href="https://twitter.com/natecray">@natecray</a>)CVE-2017-0327CVE-2017-0328</li> 64 <li> Peng XiaoChengming YangNing YouChao Yang Yang SongCVE-2017-0565</li> 65 <li>Baidu X-Lab () Pengfei Ding ()Chenfu Bao () Lenx Wei ()CVE-2016-10236</li> 66 <li> Qidan He ( - <a href="https://twitter.com/flanker_hqd">@flanker_hqd</a>)CVE-2017-0544CVE-2016-10231CVE-2017-0325</li> 67 <li>HCL Aleph Roee Hay (<a href="https://twitter.com/roeehay">@roeehay</a>)CVE-2017-0582CVE-2017-0563</li> 68 <li><a href="mailto:sbauer (a] plzdonthack.me">Scott Bauer</a> (<a href="https://twitter.com/ScottyBauer1">@ScottyBauer1</a>)CVE-2017-0562CVE-2017-0339</li> 69 <li> Seven Shen (<a href="https://twitter.com/lingtongshen">@lingtongshen</a>)CVE-2017-0578</li> 70 <li>Tim BeckerCVE-2017-0546</li> 71 <li>Uma Sankar Pradhan (<a href="https://twitter.com/umasankar_iitd">@umasankar_iitd</a>)CVE-2017-0560</li> 72 <li><a href="http://www.trendmicro.com"></a><a href="http://blog.trendmicro.com/trendlabs-security-intelligence/category/mobile"></a> V.E.O (<a href="https://twitter.com/vysea">@VYSEa</a>)CVE-2017-0555CVE-2017-0538CVE-2017-0539CVE-2017-0540CVE-2017-0557CVE-2017-0556</li> 73 <li> Weichao Sun (<a href="https://twitter.com/sunblate">@sunblate</a>)CVE-2017-0549</li> 74 <li> 360 Alpha Wenlin Yang (<a href="https://twitter.com/wenlin_yang">@wenlin_yang</a>)Guang Gong (<a href="https://twitter.com/oldfresher">@oldfresher</a>) Hao ChenCVE-2017-0580CVE-2017-0577</li> 75 <li> 360 IceSword Yonggang Guo (<a href="https://twitter.com/guoygang">@guoygang</a>)CVE-2017-0586</li> 76 <li> 360 <a href="http://weibo.com/ele7enxxh">Zinuo Han</a>CVE-2017-0548</li> 77 <li>Google Zubin MithraCVE-2017-0462</li> 78 </ul> 79 80 <h2 id="2017-04-01-details">2017-04-01 - </h2> 81 <p> 2017-04-01 CVE Google AOSP () ID ( AOSP ) ID </p> 82 83 <h3 id="rce-in-mediaserver"></h3> 84 <p></p> 85 86 <table> 87 <colgroup><col width="18%" /> 88 <col width="17%" /> 89 <col width="10%" /> 90 <col width="19%" /> 91 <col width="18%" /> 92 <col width="17%" /> 93 </colgroup><tbody><tr> 94 <th>CVE</th> 95 <th></th> 96 <th></th> 97 <th> Google </th> 98 <th> AOSP </th> 99 <th></th> 100 </tr> 101 <tr> 102 <td>CVE-2017-0538</td> 103 <td><a href="https://android.googlesource.com/platform/external/libavc/+/494561291a503840f385fbcd11d9bc5f4dc502b8">A-33641588</a></td> 104 <td></td> 105 <td></td> 106 <td>6.06.0.17.07.1.1</td> 107 <td>2016 12 13 </td> 108 </tr> 109 <tr> 110 <td>CVE-2017-0539</td> 111 <td><a href="https://android.googlesource.com/platform/external/libhevc/+/1ab5ce7e42feccd49e49752e6f58f9097ac5d254">A-33864300</a></td> 112 <td></td> 113 <td></td> 114 <td>5.0.25.1.16.06.0.17.07.1.1</td> 115 <td>2016 12 23 </td> 116 </tr> 117 <tr> 118 <td>CVE-2017-0540</td> 119 <td><a href="https://android.googlesource.com/platform/external/libhevc/+/01ca88bb6c5bdd44e071f8effebe12f1d7da9853">A-33966031</a></td> 120 <td></td> 121 <td></td> 122 <td>5.0.25.1.16.06.0.17.07.1.1</td> 123 <td>2016 12 29 </td> 124 </tr> 125 <tr> 126 <td>CVE-2017-0541</td> 127 <td><a href="https://android.googlesource.com/platform/external/sonivox/+/56d153259cc3e16a6a0014199a2317dde333c978">A-34031018</a></td> 128 <td></td> 129 <td></td> 130 <td>4.4.45.0.25.1.16.06.0.17.07.1.1</td> 131 <td>2017 1 1 </td> 132 </tr> 133 <tr> 134 <td>CVE-2017-0542</td> 135 <td><a href="https://android.googlesource.com/platform/external/libavc/+/33ef7de9ddc8ea7eb9cbc440d1cf89957a0c267b">A-33934721</a></td> 136 <td></td> 137 <td></td> 138 <td>6.06.0.17.07.1.1</td> 139 <td>Google </td> 140 </tr> 141 <tr> 142 <td>CVE-2017-0543</td> 143 <td><a href="https://android.googlesource.com/platform/external/libavc/+/f634481e940421020e52f511c1fb34aac1db4b2f">A-34097866</a></td> 144 <td></td> 145 <td></td> 146 <td>6.06.0.17.07.1.1</td> 147 <td>Google </td> 148 </tr> 149 </tbody></table> 150 151 <h3 id="eop-in-camerabase">CameraBase </h3> 152 <p>CameraBase </p> 153 154 <table> 155 <colgroup><col width="18%" /> 156 <col width="17%" /> 157 <col width="10%" /> 158 <col width="19%" /> 159 <col width="18%" /> 160 <col width="17%" /> 161 </colgroup><tbody><tr> 162 <th>CVE</th> 163 <th></th> 164 <th></th> 165 <th> Google </th> 166 <th> AOSP </th> 167 <th></th> 168 </tr> 169 <tr> 170 <td>CVE-2017-0544</td> 171 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/4b49489c12e6862e9a320ebcb53872e809ed20ec">A-31992879</a></td> 172 <td></td> 173 <td></td> 174 <td>4.4.45.0.25.1.16.06.0.17.07.1.1</td> 175 <td>2016 10 6 </td> 176 </tr> 177 </tbody></table> 178 179 <h3 id="eop-in-audioserver"></h3> 180 <p></p> 181 182 <table> 183 <colgroup><col width="18%" /> 184 <col width="17%" /> 185 <col width="10%" /> 186 <col width="19%" /> 187 <col width="18%" /> 188 <col width="17%" /> 189 </colgroup><tbody><tr> 190 <th>CVE</th> 191 <th></th> 192 <th></th> 193 <th> Google </th> 194 <th> AOSP </th> 195 <th></th> 196 </tr> 197 <tr> 198 <td>CVE-2017-0545</td> 199 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/e5a54485e08400a976092cd5b1c6d909d0e1a4ab">A-32591350</a></td> 200 <td></td> 201 <td></td> 202 <td>5.0.25.1.16.06.0.17.07.1.1</td> 203 <td>2016 10 31 </td> 204 </tr> 205 </tbody></table> 206 207 <h3 id="eop-in-surfaceflinger">SurfaceFlinger </h3> 208 <p>SurfaceFlinger </p> 209 210 <table> 211 <colgroup><col width="18%" /> 212 <col width="17%" /> 213 <col width="10%" /> 214 <col width="19%" /> 215 <col width="18%" /> 216 <col width="17%" /> 217 </colgroup><tbody><tr> 218 <th>CVE</th> 219 <th></th> 220 <th></th> 221 <th> Google </th> 222 <th> AOSP </th> 223 <th></th> 224 </tr> 225 <tr> 226 <td>CVE-2017-0546</td> 227 <td><a href="https://android.googlesource.com/platform/frameworks/native/+/45b202513ba7440beaefbf9928f73fb6683dcfbd">A-32628763</a></td> 228 <td></td> 229 <td></td> 230 <td>4.4.45.0.25.1.16.06.0.17.07.1.1</td> 231 <td>2016 11 2 </td> 232 </tr> 233 </tbody></table> 234 235 <h3 id="id-in-mediaserver"></h3> 236 <p></p> 237 238 <table> 239 <colgroup><col width="18%" /> 240 <col width="17%" /> 241 <col width="10%" /> 242 <col width="19%" /> 243 <col width="18%" /> 244 <col width="17%" /> 245 </colgroup><tbody><tr> 246 <th>CVE</th> 247 <th></th> 248 <th></th> 249 <th> Google </th> 250 <th> AOSP </th> 251 <th></th> 252 </tr> 253 <tr> 254 <td>CVE-2017-0547</td> 255 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/9667e3eff2d34c3797c3b529370de47b2c1f1bf6">A-33861560</a></td> 256 <td></td> 257 <td></td> 258 <td>4.4.45.0.25.1.16.06.0.17.07.1.1</td> 259 <td>2016 12 22 </td> 260 </tr> 261 </tbody></table> 262 263 <h3 id="dos-in-libskia">libskia </h3> 264 <p>libskia </p> 265 266 <table> 267 <colgroup><col width="18%" /> 268 <col width="17%" /> 269 <col width="10%" /> 270 <col width="19%" /> 271 <col width="18%" /> 272 <col width="17%" /> 273 </colgroup><tbody><tr> 274 <th>CVE</th> 275 <th></th> 276 <th></th> 277 <th> Google </th> 278 <th> AOSP </th> 279 <th></th> 280 </tr> 281 <tr> 282 <td>CVE-2017-0548</td> 283 <td><a href="https://android.googlesource.com/platform/external/skia/+/318e3505ac2436c62ec19fd27ebe9f8e7d174544">A-33251605</a></td> 284 <td></td> 285 <td></td> 286 <td>7.07.1.1</td> 287 <td>2016 11 29 </td> 288 </tr> 289 </tbody></table> 290 291 <h3 id="dos-in-mediaserver"></h3> 292 <p></p> 293 294 <table> 295 <colgroup><col width="18%" /> 296 <col width="17%" /> 297 <col width="10%" /> 298 <col width="19%" /> 299 <col width="18%" /> 300 <col width="17%" /> 301 </colgroup><tbody><tr> 302 <th>CVE</th> 303 <th></th> 304 <th></th> 305 <th> Google </th> 306 <th> AOSP </th> 307 <th></th> 308 </tr> 309 <tr> 310 <td>CVE-2017-0549</td> 311 <td><a href="https://android.googlesource.com/platform/external/libavc/+/37345554fea84afd446d6d8fbb87feea5a0dde3f">A-33818508</a></td> 312 <td></td> 313 <td></td> 314 <td>6.06.0.17.07.1.1</td> 315 <td>2016 12 20 </td> 316 </tr> 317 <tr> 318 <td>CVE-2017-0550</td> 319 <td><a href="https://android.googlesource.com/platform/external/libavc/+/7950bf47b6944546a0aff11a7184947de9591b51">A-33933140</a></td> 320 <td></td> 321 <td></td> 322 <td>6.06.0.17.07.1.1</td> 323 <td>Google </td> 324 </tr> 325 <tr> 326 <td>CVE-2017-0551</td> 327 <td><a href="https://android.googlesource.com/platform/external/libavc/+/8b5fd8f24eba5dd19ab2f80ea11a9125aa882ae2">A-34097231</a> 328 [<a href="https://android.googlesource.com/platform/external/libavc/+/494561291a503840f385fbcd11d9bc5f4dc502b8">2</a>]</td> 329 <td></td> 330 <td></td> 331 <td>6.06.0.17.07.1.1</td> 332 <td>Google </td> 333 </tr> 334 <tr> 335 <td>CVE-2017-0552</td> 336 <td><a href="https://android.googlesource.com/platform/external/libavc/+/9a00f562a612d56e7b2b989d168647db900ba6cf">A-34097915</a></td> 337 <td></td> 338 <td></td> 339 <td>6.06.0.17.07.1.1</td> 340 <td>Google </td> 341 </tr> 342 </tbody></table> 343 344 <h3 id="eop-in-libnl">libnl </h3> 345 <p>libnl Wi-Fi </p> 346 347 <table> 348 <colgroup><col width="18%" /> 349 <col width="17%" /> 350 <col width="10%" /> 351 <col width="19%" /> 352 <col width="18%" /> 353 <col width="17%" /> 354 </colgroup><tbody><tr> 355 <th>CVE</th> 356 <th></th> 357 <th></th> 358 <th> Google </th> 359 <th> AOSP </th> 360 <th></th> 361 </tr> 362 <tr> 363 <td>CVE-2017-0553</td> 364 <td><a href="https://android.googlesource.com/platform/external/libnl/+/f83d9c1c67b6be69a96995e384f50b572b667df0">A-32342065</a></td> 365 <td></td> 366 <td></td> 367 <td>5.0.25.1.16.06.0.17.07.1.1</td> 368 <td>2016 10 21 </td> 369 </tr> 370 </tbody></table> 371 372 <h3 id="eop-in-telephony"></h3> 373 <p></p> 374 375 <table> 376 <colgroup><col width="18%" /> 377 <col width="17%" /> 378 <col width="10%" /> 379 <col width="19%" /> 380 <col width="18%" /> 381 <col width="17%" /> 382 </colgroup><tbody><tr> 383 <th>CVE</th> 384 <th></th> 385 <th></th> 386 <th> Google </th> 387 <th> AOSP </th> 388 <th></th> 389 </tr> 390 <tr> 391 <td>CVE-2017-0554</td> 392 <td><a href="https://android.googlesource.com/platform/packages/services/Telephony/+/aeb795ef2290af1a0e4b14909363bc574e6b3ee7">A-33815946</a> 393 [<a href="https://android.googlesource.com/platform/frameworks/base/+/3294256ba5b9e2ba2d8619d617e3d900e5386564">2</a>]</td> 394 <td></td> 395 <td></td> 396 <td>4.4.45.0.25.1.16.06.0.17.07.1.1</td> 397 <td>2016 12 20 </td> 398 </tr> 399 </tbody></table> 400 401 <h3 id="id-in-mediaserver-2"></h3> 402 <p></p> 403 404 <table> 405 <colgroup><col width="18%" /> 406 <col width="17%" /> 407 <col width="10%" /> 408 <col width="19%" /> 409 <col width="18%" /> 410 <col width="17%" /> 411 </colgroup><tbody><tr> 412 <th>CVE</th> 413 <th></th> 414 <th></th> 415 <th> Google </th> 416 <th> AOSP </th> 417 <th></th> 418 </tr> 419 <tr> 420 <td>CVE-2017-0555</td> 421 <td><a href="https://android.googlesource.com/platform/external/libavc/+/0b23c81c3dd9ec38f7e6806a3955fed1925541a0">A-33551775</a></td> 422 <td></td> 423 <td></td> 424 <td>6.06.0.17.07.1.1</td> 425 <td>2016 12 12 </td> 426 </tr> 427 <tr> 428 <td>CVE-2017-0556</td> 429 <td><a href="https://android.googlesource.com/platform/external/libmpeg2/+/f301cff2c1ddd880d9a2c77b22602a137519867b">A-34093952</a></td> 430 <td></td> 431 <td></td> 432 <td>6.06.0.17.07.1.1</td> 433 <td>2017 1 4 </td> 434 </tr> 435 <tr> 436 <td>CVE-2017-0557</td> 437 <td><a href="https://android.googlesource.com/platform/external/libmpeg2/+/227c1f829127405e21dab1664393050c652ef71e">A-34093073</a></td> 438 <td></td> 439 <td></td> 440 <td>6.06.0.17.07.1.1</td> 441 <td>2017 1 4 </td> 442 </tr> 443 <tr> 444 <td>CVE-2017-0558</td> 445 <td><a href="https://android.googlesource.com/platform/frameworks/av/+/50358a80b1724f6cf1bcdf003e1abf9cc141b122">A-34056274</a></td> 446 <td></td> 447 <td></td> 448 <td>4.4.45.0.25.1.16.06.0.17.07.1.1</td> 449 <td>Google </td> 450 </tr> 451 </tbody></table> 452 453 <h3 id="id-in-libskia">libskia </h3> 454 <p>libskia </p> 455 456 <table> 457 <colgroup><col width="18%" /> 458 <col width="17%" /> 459 <col width="10%" /> 460 <col width="19%" /> 461 <col width="18%" /> 462 <col width="17%" /> 463 </colgroup><tbody><tr> 464 <th>CVE</th> 465 <th></th> 466 <th></th> 467 <th> Google </th> 468 <th> AOSP </th> 469 <th></th> 470 </tr> 471 <tr> 472 <td>CVE-2017-0559</td> 473 <td><a href="https://android.googlesource.com/platform/external/skia/+/16882f721279a82a1c860ac689ce570b16fe26a0">A-33897722</a></td> 474 <td></td> 475 <td></td> 476 <td>4.4.45.0.25.1.16.06.0.17.07.1.1</td> 477 <td>2016 12 25 </td> 478 </tr> 479 </tbody></table> 480 481 <h3 id="id-in-factory-reset"></h3> 482 <p></p> 483 484 <table> 485 <colgroup><col width="18%" /> 486 <col width="17%" /> 487 <col width="10%" /> 488 <col width="19%" /> 489 <col width="18%" /> 490 <col width="17%" /> 491 </colgroup><tbody><tr> 492 <th>CVE</th> 493 <th></th> 494 <th></th> 495 <th> Google </th> 496 <th> AOSP </th> 497 <th></th> 498 </tr> 499 <tr> 500 <td>CVE-2017-0560</td> 501 <td><a href="https://android.googlesource.com/platform/frameworks/base/+/efdec8f5688ce6b0a287eddb6d5dad93ffa0e1ee">A-30681079</a></td> 502 <td></td> 503 <td></td> 504 <td>4.4.45.0.25.1.16.06.0.17.07.1.1</td> 505 <td>Google </td> 506 </tr> 507 </tbody></table> 508 509 <h2 id="2017-04-05-details">2017-04-05 - </h2> 510 <p> 2017-04-05 CVE Google AOSP () ID ( AOSP ) ID </p> 511 512 <h3 id="rce-in-broadcom-wi-fi-firmware">Broadcom Wi-Fi </h3> 513 <p>Broadcom Wi-Fi Wi-Fi SoC Wi-Fi SoC </p> 514 515 <table> 516 <colgroup><col width="19%" /> 517 <col width="20%" /> 518 <col width="10%" /> 519 <col width="23%" /> 520 <col width="17%" /> 521 </colgroup><tbody><tr> 522 <th>CVE</th> 523 <th></th> 524 <th></th> 525 <th> Google </th> 526 <th></th> 527 </tr> 528 <tr> 529 <td>CVE-2017-0561</td> 530 <td>A-34199105*<br /> 531 B-RB#110814</td> 532 <td></td> 533 <td>Nexus 6Nexus 6PNexus 9Pixel CNexus Player</td> 534 <td>2017 1 9 </td> 535 </tr> 536 </tbody></table> 537 <p>* Nexus <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p> 538 539 <h3 id="rce-in-qualcomm-crypto-engine-driver">Qualcomm </h3> 540 <p>Qualcomm </p> 541 542 <table> 543 <colgroup><col width="19%" /> 544 <col width="20%" /> 545 <col width="10%" /> 546 <col width="23%" /> 547 <col width="17%" /> 548 </colgroup><tbody><tr> 549 <th>CVE</th> 550 <th></th> 551 <th></th> 552 <th> Google </th> 553 <th></th> 554 </tr> 555 <tr> 556 <td>CVE-2016-10230</td> 557 <td>A-34389927<br /> 558 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=bd9a8fc6d7f6bd1a0b936994630006de450df657"> 559 QC-CR#1091408</a></td> 560 <td></td> 561 <td>Nexus 5XNexus 6Nexus 6PPixelPixel XLAndroid One</td> 562 <td>2017 1 10 </td> 563 </tr> 564 </tbody></table> 565 566 <h3 id="rce-in-kernel-networking-subsystem"></h3> 567 <p></p> 568 569 <table> 570 <colgroup><col width="19%" /> 571 <col width="20%" /> 572 <col width="10%" /> 573 <col width="23%" /> 574 <col width="17%" /> 575 </colgroup><tbody><tr> 576 <th>CVE</th> 577 <th></th> 578 <th></th> 579 <th> Google </th> 580 <th></th> 581 </tr> 582 <tr> 583 <td>CVE-2016-10229</td> 584 <td>A-32813456<br /> 585 <a href="http://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=197c949e7798fbf28cfadc69d9ca0c2abbf93191"> 586 </a></td> 587 <td></td> 588 <td>Nexus 5XNexus 6Nexus 6PPixelPixel XLPixel CAndroid OneNexus Player</td> 589 <td>Google </td> 590 </tr> 591 </tbody></table> 592 593 <h3 id="eop-in-mediatek-touchscreen-driver">MediaTek </h3> 594 <p>MediaTek (Re-flash) </p> 595 596 <table> 597 <colgroup><col width="19%" /> 598 <col width="20%" /> 599 <col width="10%" /> 600 <col width="23%" /> 601 <col width="17%" /> 602 </colgroup><tbody><tr> 603 <th>CVE</th> 604 <th></th> 605 <th></th> 606 <th> Google </th> 607 <th></th> 608 </tr> 609 <tr> 610 <td>CVE-2017-0562</td> 611 <td>A-30202425*<br /> 612 M-ALPS02898189</td> 613 <td>*</td> 614 <td>**</td> 615 <td>2016 7 16 </td> 616 </tr> 617 </tbody></table> 618 <p>* Nexus <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p> 619 <p>** Android 7.0 Google ()</p> 620 621 <h3 id="eop-in-htc-touchscreen-driver">HTC </h3> 622 <p>HTC (Re-flash) </p> 623 624 <table> 625 <colgroup><col width="19%" /> 626 <col width="20%" /> 627 <col width="10%" /> 628 <col width="23%" /> 629 <col width="17%" /> 630 </colgroup><tbody><tr> 631 <th>CVE</th> 632 <th></th> 633 <th></th> 634 <th> Google </th> 635 <th></th> 636 </tr> 637 <tr> 638 <td>CVE-2017-0563</td> 639 <td>A-32089409*<br /> 640 </td> 641 <td></td> 642 <td>Nexus 9</td> 643 <td>2016 10 9 </td> 644 </tr> 645 </tbody></table> 646 <p>* Nexus <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p> 647 648 <h3 id="eop-in-kernel-ion-subsystem"> ION </h3> 649 <p> ION (Re-flash) </p> 650 651 <table> 652 <colgroup><col width="19%" /> 653 <col width="20%" /> 654 <col width="10%" /> 655 <col width="23%" /> 656 <col width="17%" /> 657 </colgroup><tbody><tr> 658 <th>CVE</th> 659 <th></th> 660 <th></th> 661 <th> Google </th> 662 <th></th> 663 </tr> 664 <tr> 665 <td>CVE-2017-0564</td> 666 <td>A-34276203*<br /> 667 </td> 668 <td></td> 669 <td>Nexus 5XNexus 6Nexus 6PPixelPixel XLPixel CAndroid OneNexus Player</td> 670 <td>2017 1 12 </td> 671 </tr> 672 </tbody></table> 673 <p>* Nexus <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p> 674 675 <h3 id="vulnerabilities-in-qualcomm-components">Qualcomm </h3> 676 <p> Qualcomm 2016 10 Qualcomm AMSS </p> 677 678 <table> 679 <colgroup><col width="19%" /> 680 <col width="20%" /> 681 <col width="10%" /> 682 <col width="23%" /> 683 <col width="17%" /> 684 </colgroup><tbody><tr> 685 <th>CVE</th> 686 <th></th> 687 <th></th> 688 <th> Google </th> 689 <th></th> 690 </tr> 691 <tr> 692 <td>CVE-2016-10237</td> 693 <td>A-31628601**<br /> 694 QC-CR#1046751</td> 695 <td></td> 696 <td>**</td> 697 <td>Qualcomm </td> 698 </tr> 699 <tr> 700 <td>CVE-2016-10238</td> 701 <td>A-35358527**<br /> 702 QC-CR#1042558</td> 703 <td></td> 704 <td>***</td> 705 <td>Qualcomm </td> 706 </tr> 707 <tr> 708 <td>CVE-2016-10239</td> 709 <td>A-31624618**<br /> 710 QC-CR#1032929</td> 711 <td></td> 712 <td>PixelPixel XL</td> 713 <td>Qualcomm </td> 714 </tr> 715 </tbody></table> 716 <p>* </p> 717 <p>* Nexus <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p> 718 <p>*** Android 7.0 Google ()</p> 719 720 <h3 id="rce-in-v8">v8 </h3> 721 <p>v8 </p> 722 723 <table> 724 <colgroup><col width="18%" /> 725 <col width="17%" /> 726 <col width="10%" /> 727 <col width="19%" /> 728 <col width="18%" /> 729 <col width="17%" /> 730 </colgroup><tbody><tr> 731 <th>CVE</th> 732 <th></th> 733 <th></th> 734 <th> Google </th> 735 <th> AOSP </th> 736 <th></th> 737 </tr> 738 <tr> 739 <td>CVE-2016-5129</td> 740 <td>A-29178923</td> 741 <td></td> 742 <td>*</td> 743 <td>6.06.0.17.0</td> 744 <td>2016 7 20 </td> 745 </tr> 746 </tbody></table> 747 <p>* Android 7.0 Google ()</p> 748 749 <h3 id="rce-in-freetype">Freetype </h3> 750 <p>Freetype </p> 751 752 <table> 753 <colgroup><col width="18%" /> 754 <col width="17%" /> 755 <col width="10%" /> 756 <col width="19%" /> 757 <col width="18%" /> 758 <col width="17%" /> 759 </colgroup><tbody><tr> 760 <th>CVE</th> 761 <th></th> 762 <th></th> 763 <th> Google </th> 764 <th> AOSP </th> 765 <th></th> 766 </tr> 767 <tr> 768 <td>CVE-2016-10244</td> 769 <td>A-31470908</td> 770 <td></td> 771 <td>*</td> 772 <td>4.4.45.0.25.1.16.06.0.17.0</td> 773 <td>2016 9 13 </td> 774 </tr> 775 </tbody></table> 776 <p>* Android 7.0 Google ()</p> 777 778 <h3 id="eop-in-kernel-sound-subsystem"></h3> 779 <p></p> 780 781 <table> 782 <colgroup><col width="19%" /> 783 <col width="20%" /> 784 <col width="10%" /> 785 <col width="23%" /> 786 <col width="17%" /> 787 </colgroup><tbody><tr> 788 <th>CVE</th> 789 <th></th> 790 <th></th> 791 <th> Google </th> 792 <th></th> 793 </tr> 794 <tr> 795 <td>CVE-2014-4656</td> 796 <td>A-34464977<br /> 797 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=883a1d49f0d77d30012f114b2e19fc141beb3e8e"> 798 </a></td> 799 <td></td> 800 <td>Nexus 6Nexus Player</td> 801 <td>2014 6 26 </td> 802 </tr> 803 </tbody></table> 804 805 <h3 id="eop-in-nvidia-crypto-driver">NVIDIA </h3> 806 <p>NVIDIA </p> 807 808 <table> 809 <colgroup><col width="19%" /> 810 <col width="20%" /> 811 <col width="10%" /> 812 <col width="23%" /> 813 <col width="17%" /> 814 </colgroup><tbody><tr> 815 <th>CVE</th> 816 <th></th> 817 <th></th> 818 <th> Google </th> 819 <th></th> 820 </tr> 821 <tr> 822 <td>CVE-2017-0339</td> 823 <td>A-27930566*<br /> 824 N-CVE-2017-0339</td> 825 <td></td> 826 <td>Nexus 9</td> 827 <td>2016 3 29 </td> 828 </tr> 829 <tr> 830 <td>CVE-2017-0332</td> 831 <td>A-33812508*<br /> 832 N-CVE-2017-0332</td> 833 <td></td> 834 <td>Nexus 9</td> 835 <td>2016 12 21 </td> 836 </tr> 837 <tr> 838 <td>CVE-2017-0327</td> 839 <td>A-33893669*<br /> 840 N-CVE-2017-0327</td> 841 <td></td> 842 <td>Nexus 9</td> 843 <td>2016 12 24 </td> 844 </tr> 845 </tbody></table> 846 <p>* Nexus <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p> 847 848 <h3 id="eop-in-mediatek-thermal-driver">MediaTek </h3> 849 <p>MediaTek </p> 850 851 <table> 852 <colgroup><col width="19%" /> 853 <col width="20%" /> 854 <col width="10%" /> 855 <col width="23%" /> 856 <col width="17%" /> 857 </colgroup><tbody><tr> 858 <th>CVE</th> 859 <th></th> 860 <th></th> 861 <th> Google </th> 862 <th></th> 863 </tr> 864 <tr> 865 <td>CVE-2017-0565</td> 866 <td>A-28175904*<br /> 867 M-ALPS02696516</td> 868 <td></td> 869 <td>**</td> 870 <td>2016 4 11 </td> 871 </tr> 872 </tbody></table> 873 <p>* Nexus <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p> 874 <p>** Android 7.0 Google ()</p> 875 876 <h3 id="eop-in-mediatek-camera-driver">MediaTek </h3> 877 <p>MediaTek </p> 878 879 <table> 880 <colgroup><col width="19%" /> 881 <col width="20%" /> 882 <col width="10%" /> 883 <col width="23%" /> 884 <col width="17%" /> 885 </colgroup><tbody><tr> 886 <th>CVE</th> 887 <th></th> 888 <th></th> 889 <th> Google </th> 890 <th></th> 891 </tr> 892 <tr> 893 <td>CVE-2017-0566</td> 894 <td>A-28470975*<br /> 895 M-ALPS02696367</td> 896 <td></td> 897 <td>**</td> 898 <td>2016 4 29 </td> 899 </tr> 900 </tbody></table> 901 <p>* Nexus <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p> 902 <p>** Android 7.0 Google ()</p> 903 904 <h3 id="eop-in-broadcom-wi-fi-driver">Broadcom Wi-Fi </h3> 905 <p>Broadcom Wi-Fi </p> 906 907 <table> 908 <colgroup><col width="19%" /> 909 <col width="20%" /> 910 <col width="10%" /> 911 <col width="23%" /> 912 <col width="17%" /> 913 </colgroup><tbody><tr> 914 <th>CVE</th> 915 <th></th> 916 <th></th> 917 <th> Google </th> 918 <th></th> 919 </tr> 920 <tr> 921 <td>CVE-2017-0567</td> 922 <td>A-32125310*<br /> 923 B-RB#112575</td> 924 <td></td> 925 <td>Nexus 6Nexus 6PNexus 9Pixel CNexus Player</td> 926 <td>2016 10 12 </td> 927 </tr> 928 <tr> 929 <td>CVE-2017-0568</td> 930 <td>A-34197514*<br /> 931 B-RB#112600</td> 932 <td></td> 933 <td>Nexus 6Nexus 6PNexus 9Pixel CNexus Player</td> 934 <td>2017 1 9 </td> 935 </tr> 936 <tr> 937 <td>CVE-2017-0569</td> 938 <td>A-34198729*<br /> 939 B-RB#110666</td> 940 <td></td> 941 <td>Nexus 6Nexus 6PNexus 9Pixel CNexus Player</td> 942 <td>2017 1 9 </td> 943 </tr> 944 <tr> 945 <td>CVE-2017-0570</td> 946 <td>A-34199963*<br /> 947 B-RB#110688</td> 948 <td></td> 949 <td>Nexus 6Nexus 6PNexus 9Pixel CNexus Player</td> 950 <td>2017 1 9 </td> 951 </tr> 952 <tr> 953 <td>CVE-2017-0571</td> 954 <td>A-34203305*<br /> 955 B-RB#111541</td> 956 <td></td> 957 <td>Nexus 6Nexus 6PPixel CNexus Player</td> 958 <td>2017 1 9 </td> 959 </tr> 960 <tr> 961 <td>CVE-2017-0572</td> 962 <td>A-34198931*<br /> 963 B-RB#112597</td> 964 <td></td> 965 <td>**</td> 966 <td>2017 1 9 </td> 967 </tr> 968 <tr> 969 <td>CVE-2017-0573</td> 970 <td>A-34469904*<br /> 971 B-RB#91539</td> 972 <td></td> 973 <td>Nexus 6Nexus 6PNexus 9Pixel CNexus Player</td> 974 <td>2017 1 18 </td> 975 </tr> 976 <tr> 977 <td>CVE-2017-0574</td> 978 <td>A-34624457*<br /> 979 B-RB#113189</td> 980 <td></td> 981 <td>Nexus 6Nexus 6PNexus 9Pixel C</td> 982 <td>2017 1 22 </td> 983 </tr> 984 </tbody></table> 985 <p>* Nexus <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p> 986 <p>** Android 7.0 Google ()</p> 987 988 <h3 id="eop-in-qualcomm-wi-fi-driver">Qualcomm Wi-Fi </h3> 989 <p>Qualcomm Wi-Fi </p> 990 991 <table> 992 <colgroup><col width="19%" /> 993 <col width="20%" /> 994 <col width="10%" /> 995 <col width="23%" /> 996 <col width="17%" /> 997 </colgroup><tbody><tr> 998 <th>CVE</th> 999 <th></th> 1000 <th></th> 1001 <th> Google </th> 1002 <th></th> 1003 </tr> 1004 <tr> 1005 <td>CVE-2017-0575</td> 1006 <td>A-32658595*<br /> 1007 QC-CR#1103099</td> 1008 <td></td> 1009 <td>Nexus 5XPixelPixel XL</td> 1010 <td>2016 11 3 </td> 1011 </tr> 1012 </tbody></table> 1013 <p>* Nexus <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p> 1014 1015 <h3 id="eop-in-nvidia-i2c-hid-driver">NVIDIA I2C HID </h3> 1016 <p>NVIDIA I2C HID </p> 1017 1018 <table> 1019 <colgroup><col width="19%" /> 1020 <col width="20%" /> 1021 <col width="10%" /> 1022 <col width="23%" /> 1023 <col width="17%" /> 1024 </colgroup><tbody><tr> 1025 <th>CVE</th> 1026 <th></th> 1027 <th></th> 1028 <th> Google </th> 1029 <th></th> 1030 </tr> 1031 <tr> 1032 <td>CVE-2017-0325</td> 1033 <td>A-33040280*<br /> 1034 N-CVE-2017-0325</td> 1035 <td></td> 1036 <td>Nexus 9Pixel C</td> 1037 <td>2016 11 20 </td> 1038 </tr> 1039 </tbody></table> 1040 <p>* Nexus <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p> 1041 1042 <h3 id="eop-in-qualcomm-audio-driver">Qualcomm </h3> 1043 <p>Qualcomm </p> 1044 1045 <table> 1046 <colgroup><col width="19%" /> 1047 <col width="20%" /> 1048 <col width="10%" /> 1049 <col width="23%" /> 1050 <col width="17%" /> 1051 </colgroup><tbody><tr> 1052 <th>CVE</th> 1053 <th></th> 1054 <th></th> 1055 <th> Google </th> 1056 <th></th> 1057 </tr> 1058 <tr> 1059 <td>CVE-2017-0454</td> 1060 <td>A-33353700<br /> 1061 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=cb0701a2f99fa19f01fbd4249bda9a8eadb0241f"> 1062 QC-CR#1104067</a></td> 1063 <td></td> 1064 <td>Nexus 5XNexus 6PPixelPixel XL</td> 1065 <td>2016 12 5 </td> 1066 </tr> 1067 </tbody></table> 1068 1069 <h3 id="eop-in-qualcomm-crypto-engine-driver">Qualcomm </h3> 1070 <p>Qualcomm </p> 1071 1072 <table> 1073 <colgroup><col width="19%" /> 1074 <col width="20%" /> 1075 <col width="10%" /> 1076 <col width="23%" /> 1077 <col width="17%" /> 1078 </colgroup><tbody><tr> 1079 <th>CVE</th> 1080 <th></th> 1081 <th></th> 1082 <th> Google </th> 1083 <th></th> 1084 </tr> 1085 <tr> 1086 <td>CVE-2017-0576</td> 1087 <td>A-33544431<br /> 1088 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=2b09507d78b25637df6879cd2ee2031b208b3532"> 1089 QC-CR#1103089</a></td> 1090 <td></td> 1091 <td>Nexus 5XNexus 6Nexus 6PPixelPixel XLAndroid One</td> 1092 <td>2016 12 9 </td> 1093 </tr> 1094 </tbody></table> 1095 1096 <h3 id="eop-in-htc-touchscreen-driver-2">HTC </h3> 1097 <p>HTC </p> 1098 1099 <table> 1100 <colgroup><col width="19%" /> 1101 <col width="20%" /> 1102 <col width="10%" /> 1103 <col width="23%" /> 1104 <col width="17%" /> 1105 </colgroup><tbody><tr> 1106 <th>CVE</th> 1107 <th></th> 1108 <th></th> 1109 <th> Google </th> 1110 <th></th> 1111 </tr> 1112 <tr> 1113 <td>CVE-2017-0577</td> 1114 <td>A-33842951*<br /> 1115 </td> 1116 <td></td> 1117 <td>**</td> 1118 <td>2016 12 21 </td> 1119 </tr> 1120 </tbody></table> 1121 <p>* Nexus <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p> 1122 <p>** Android 7.0 Google ()</p> 1123 1124 <h3 id="eop-in-dts-sound-driver">DTS </h3> 1125 <p>DTS </p> 1126 1127 <table> 1128 <colgroup><col width="19%" /> 1129 <col width="20%" /> 1130 <col width="10%" /> 1131 <col width="23%" /> 1132 <col width="17%" /> 1133 </colgroup><tbody><tr> 1134 <th>CVE</th> 1135 <th></th> 1136 <th></th> 1137 <th> Google </th> 1138 <th></th> 1139 </tr> 1140 <tr> 1141 <td>CVE-2017-0578</td> 1142 <td>A-33964406*<br /> 1143 </td> 1144 <td></td> 1145 <td>**</td> 1146 <td>2016 12 28 </td> 1147 </tr> 1148 </tbody></table> 1149 <p>* Nexus <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p> 1150 <p>** Android 7.0 Google ()</p> 1151 1152 <h3 id="eop-in-qualcomm-sound-codec-driver">Qualcomm </h3> 1153 <p>Qualcomm </p> 1154 1155 <table> 1156 <colgroup><col width="19%" /> 1157 <col width="20%" /> 1158 <col width="10%" /> 1159 <col width="23%" /> 1160 <col width="17%" /> 1161 </colgroup><tbody><tr> 1162 <th>CVE</th> 1163 <th></th> 1164 <th></th> 1165 <th> Google </th> 1166 <th></th> 1167 </tr> 1168 <tr> 1169 <td>CVE-2016-10231</td> 1170 <td>A-33966912<br /> 1171 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=3bfe5a89916f7d29492e9f6d941d108b688cb804"> 1172 QC-CR#1096799</a></td> 1173 <td></td> 1174 <td>PixelPixel XL</td> 1175 <td>2016 12 29 </td> 1176 </tr> 1177 </tbody></table> 1178 1179 <h3 id="eop-in-qualcomm-video-driver">Qualcomm </h3> 1180 <p>Qualcomm </p> 1181 1182 <table> 1183 <colgroup><col width="19%" /> 1184 <col width="20%" /> 1185 <col width="10%" /> 1186 <col width="23%" /> 1187 <col width="17%" /> 1188 </colgroup><tbody><tr> 1189 <th>CVE</th> 1190 <th></th> 1191 <th></th> 1192 <th> Google </th> 1193 <th></th> 1194 </tr> 1195 <tr> 1196 <td>CVE-2017-0579</td> 1197 <td>A-34125463*<br /> 1198 QC-CR#1115406</td> 1199 <td></td> 1200 <td>Nexus 5XNexus 6PPixelPixel XL</td> 1201 <td>2017 1 5 </td> 1202 </tr> 1203 <tr> 1204 <td>CVE-2016-10232</td> 1205 <td>A-34386696<br /> 1206 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.10/commit/?id=21e0ead58e47798567d846b84f16f89cf69a57ae"> 1207 QC-CR#1024872</a> <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=27f7b3b3059f6181e2786f886f4cd92f413bc30c"> 1208 [2]</a></td> 1209 <td></td> 1210 <td>Nexus 5XNexus 6PPixelPixel XLAndroid One</td> 1211 <td>2017 1 10 </td> 1212 </tr> 1213 <tr> 1214 <td>CVE-2016-10233</td> 1215 <td>A-34389926<br /> 1216 <a href="https://source.codeaurora.org/quic/la/kernel/msm/commit/?id=d793c6d91ecba2a1fd206ad47a4fd408d290addf"> 1217 QC-CR#897452</a></td> 1218 <td></td> 1219 <td>**</td> 1220 <td>2017 1 10 </td> 1221 </tr> 1222 </tbody></table> 1223 <p>* Nexus <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p> 1224 <p>** Android 7.0 Google ()</p> 1225 1226 <h3 id="eop-in-nvidia-boot-and-power-management-processor-driver">NVIDIA </h3> 1227 <p>NVIDIA </p> 1228 1229 <table> 1230 <colgroup><col width="19%" /> 1231 <col width="20%" /> 1232 <col width="10%" /> 1233 <col width="23%" /> 1234 <col width="17%" /> 1235 </colgroup><tbody><tr> 1236 <th>CVE</th> 1237 <th></th> 1238 <th></th> 1239 <th> Google </th> 1240 <th></th> 1241 </tr> 1242 <tr> 1243 <td>CVE-2017-0329</td> 1244 <td>A-34115304*<br /> 1245 N-CVE-2017-0329</td> 1246 <td></td> 1247 <td>Pixel C</td> 1248 <td>2017 1 5 </td> 1249 </tr> 1250 </tbody></table> 1251 <p>* Nexus <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p> 1252 1253 <h3 id="eop-in-synaptics-touchscreen-driver">Synaptics </h3> 1254 <p>Synaptics </p> 1255 1256 <table> 1257 <colgroup><col width="19%" /> 1258 <col width="20%" /> 1259 <col width="10%" /> 1260 <col width="23%" /> 1261 <col width="17%" /> 1262 </colgroup><tbody><tr> 1263 <th>CVE</th> 1264 <th></th> 1265 <th></th> 1266 <th> Google </th> 1267 <th></th> 1268 </tr> 1269 <tr> 1270 <td>CVE-2017-0580</td> 1271 <td>A-34325986*<br /> 1272 </td> 1273 <td></td> 1274 <td>**</td> 1275 <td>2017 1 16 </td> 1276 </tr> 1277 <tr> 1278 <td>CVE-2017-0581</td> 1279 <td>A-34614485*<br /> 1280 </td> 1281 <td></td> 1282 <td>**</td> 1283 <td>2017 1 22 </td> 1284 </tr> 1285 </tbody></table> 1286 <p>* Nexus <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p> 1287 <p>** Android 7.0 Google ()</p> 1288 1289 <h3 id="eop-in-qualcomm-seemp-driver">Qualcomm Seemp </h3> 1290 <p>Qualcomm Seemp </p> 1291 1292 <table> 1293 <colgroup><col width="19%" /> 1294 <col width="20%" /> 1295 <col width="10%" /> 1296 <col width="23%" /> 1297 <col width="17%" /> 1298 </colgroup><tbody><tr> 1299 <th>CVE</th> 1300 <th></th> 1301 <th></th> 1302 <th> Google </th> 1303 <th></th> 1304 </tr> 1305 <tr> 1306 <td>CVE-2017-0462</td> 1307 <td>A-33353601<br /> 1308 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=eb7b1426279e751b1fc3e86f434dc349945c1ae7"> 1309 QC-CR#1102288</a></td> 1310 <td></td> 1311 <td>PixelPixel XL</td> 1312 <td>Google </td> 1313 </tr> 1314 </tbody></table> 1315 1316 <h3 id="eop-in-qualcomm-kyro-l2-driver">Qualcomm Kyro L2 </h3> 1317 <p>Qualcomm Kyro L2 </p> 1318 1319 <table> 1320 <colgroup><col width="19%" /> 1321 <col width="20%" /> 1322 <col width="10%" /> 1323 <col width="23%" /> 1324 <col width="17%" /> 1325 </colgroup><tbody><tr> 1326 <th>CVE</th> 1327 <th></th> 1328 <th></th> 1329 <th> Google </th> 1330 <th></th> 1331 </tr> 1332 <tr> 1333 <td>CVE-2017-6423</td> 1334 <td>A-32831370<br /> 1335 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=0f264f812b61884390b432fdad081a3e995ba768"> 1336 QC-CR#1103158</a></td> 1337 <td></td> 1338 <td>PixelPixel XL</td> 1339 <td>Google </td> 1340 </tr> 1341 </tbody></table> 1342 1343 <h3 id="eop-in-kernel-file-system"></h3> 1344 <p></p> 1345 1346 <table> 1347 <colgroup><col width="19%" /> 1348 <col width="20%" /> 1349 <col width="10%" /> 1350 <col width="23%" /> 1351 <col width="17%" /> 1352 </colgroup><tbody><tr> 1353 <th>CVE</th> 1354 <th></th> 1355 <th></th> 1356 <th> Google </th> 1357 <th></th> 1358 </tr> 1359 <tr> 1360 <td>CVE-2014-9922</td> 1361 <td>A-32761463<br /> 1362 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=69c433ed2ecd2d3264efd7afec4439524b319121"> 1363 </a></td> 1364 <td></td> 1365 <td>Nexus 5XNexus 6Nexus 6PNexus 9PixelPixel XLPixel CAndroid OneNexus Player</td> 1366 <td>Google </td> 1367 </tr> 1368 </tbody></table> 1369 1370 <h3 id="id-in-kernel-memory-subsystem"></h3> 1371 <p></p> 1372 1373 <table> 1374 <colgroup><col width="19%" /> 1375 <col width="20%" /> 1376 <col width="10%" /> 1377 <col width="23%" /> 1378 <col width="17%" /> 1379 </colgroup><tbody><tr> 1380 <th>CVE</th> 1381 <th></th> 1382 <th></th> 1383 <th> Google </th> 1384 <th></th> 1385 </tr> 1386 <tr> 1387 <td>CVE-2014-0206</td> 1388 <td>A-34465735<br /> 1389 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=d36db46c2cba973557eb6138d22210c4e0cf17d6"> 1390 </a></td> 1391 <td></td> 1392 <td>Nexus 6Nexus Player</td> 1393 <td>2014 5 6 </td> 1394 </tr> 1395 </tbody></table> 1396 1397 <h3 id="id-in-kernel-networking-subsystem"></h3> 1398 <p></p> 1399 1400 <table> 1401 <colgroup><col width="19%" /> 1402 <col width="20%" /> 1403 <col width="10%" /> 1404 <col width="23%" /> 1405 <col width="17%" /> 1406 </colgroup><tbody><tr> 1407 <th>CVE</th> 1408 <th></th> 1409 <th></th> 1410 <th> Google </th> 1411 <th></th> 1412 </tr> 1413 <tr> 1414 <td>CVE-2014-3145</td> 1415 <td>A-34469585<br /> 1416 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=314760e66c35c8ffa51b4c4ca6948d207e783079"> 1417 </a> <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=05ab8f2647e4221cbdb3856dd7d32bd5407316b3"> 1418 [2]</a></td> 1419 <td></td> 1420 <td>Nexus 6Nexus Player</td> 1421 <td>2014 5 9 </td> 1422 </tr> 1423 </tbody></table> 1424 1425 <h3 id="id-in-qualcomm-trustzone">Qualcomm TrustZone </h3> 1426 <p>Qualcomm TrustZone </p> 1427 1428 <table> 1429 <colgroup><col width="19%" /> 1430 <col width="20%" /> 1431 <col width="10%" /> 1432 <col width="23%" /> 1433 <col width="17%" /> 1434 </colgroup><tbody><tr> 1435 <th>CVE</th> 1436 <th></th> 1437 <th></th> 1438 <th> Google </th> 1439 <th></th> 1440 </tr> 1441 <tr> 1442 <td>CVE-2016-5349</td> 1443 <td>A-29083830<br /> 1444 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=7c3bf6557c62d904b15507eb451fda8fd7ef750c"> 1445 QC-CR#1021945</a> <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=03853a58952834ac3e1e3007c9c680dd4c001a2f"> 1446 [2]</a> <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=e3d969000fb60ecb9bc01667fa89957f67763514"> 1447 [3]</a> <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=9bd398661cae758ffc557adc7de74ba32654e1f9"> 1448 [4]</a></td> 1449 <td></td> 1450 <td>Nexus 5XNexus 6Nexus 6PPixelPixel XLAndroid One</td> 1451 <td>2016 6 1 </td> 1452 </tr> 1453 </tbody></table> 1454 1455 <h3 id="id-in-qualcomm-ipa-driver">Qualcomm IPA </h3> 1456 <p>Qualcomm IPA </p> 1457 1458 <table> 1459 <colgroup><col width="19%" /> 1460 <col width="20%" /> 1461 <col width="10%" /> 1462 <col width="23%" /> 1463 <col width="17%" /> 1464 </colgroup><tbody><tr> 1465 <th>CVE</th> 1466 <th></th> 1467 <th></th> 1468 <th> Google </th> 1469 <th></th> 1470 </tr> 1471 <tr> 1472 <td>CVE-2016-10234</td> 1473 <td>A-34390017<br /> 1474 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?id=c7d7492c1e329fdeb28a7901c4cd634d41a996b1"> 1475 QC-CR#1069060</a> <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=d12370c7f3ecded1867fbd6b70ded35db55cab1d"> 1476 [2]</a></td> 1477 <td></td> 1478 <td>Nexus 5XNexus 6PPixelPixel XL</td> 1479 <td>2017 1 10 </td> 1480 </tr> 1481 </tbody></table> 1482 1483 <h3 id="dos-in-kernel-networking-subsystem"></h3> 1484 <p></p> 1485 1486 <table> 1487 <colgroup><col width="19%" /> 1488 <col width="20%" /> 1489 <col width="10%" /> 1490 <col width="23%" /> 1491 <col width="17%" /> 1492 </colgroup><tbody><tr> 1493 <th>CVE</th> 1494 <th></th> 1495 <th></th> 1496 <th> Google </th> 1497 <th></th> 1498 </tr> 1499 <tr> 1500 <td>CVE-2014-2706</td> 1501 <td>A-34160553<br /> 1502 <a href="https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=1d147bfa64293b2723c4fec50922168658e613ba"> 1503 </a></td> 1504 <td></td> 1505 <td>Nexus Player</td> 1506 <td>2014 4 1 </td> 1507 </tr> 1508 </tbody></table> 1509 1510 <h3 id="dos-in-qualcomm-wi-fi-driver">Qualcomm Wi-Fi </h3> 1511 <p>Qualcomm Wi-Fi Wi-Fi </p> 1512 1513 <table> 1514 <colgroup><col width="19%" /> 1515 <col width="20%" /> 1516 <col width="10%" /> 1517 <col width="23%" /> 1518 <col width="17%" /> 1519 </colgroup><tbody><tr> 1520 <th>CVE</th> 1521 <th></th> 1522 <th></th> 1523 <th> Google </th> 1524 <th></th> 1525 </tr> 1526 <tr> 1527 <td>CVE-2016-10235</td> 1528 <td>A-34390620<br /> 1529 <a href="https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-2.0/commit/?id=5bb0059243515ecdac138cfdb4cee7259bbd0bbc"> 1530 QC-CR#1046409</a></td> 1531 <td></td> 1532 <td>**</td> 1533 <td>2017 1 10 </td> 1534 </tr> 1535 </tbody></table> 1536 <p>** Android 7.0 Google ()</p> 1537 1538 <h3 id="eop-in-kernel-file-system-2"></h3> 1539 <p></p> 1540 1541 <table> 1542 <colgroup><col width="19%" /> 1543 <col width="20%" /> 1544 <col width="10%" /> 1545 <col width="23%" /> 1546 <col width="17%" /> 1547 </colgroup><tbody><tr> 1548 <th>CVE</th> 1549 <th></th> 1550 <th></th> 1551 <th> Google </th> 1552 <th></th> 1553 </tr> 1554 <tr> 1555 <td>CVE-2016-7097</td> 1556 <td>A-32458736<br /> 1557 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=073931017b49d9458aa351605b43a7e34598caef"> 1558 </a></td> 1559 <td></td> 1560 <td>Nexus 5XNexus 6Nexus 6PNexus 9PixelPixel XLPixel CNexus Player</td> 1561 <td>2016 8 28 </td> 1562 </tr> 1563 </tbody></table> 1564 1565 <h3 id="eop-in-qualcomm-wi-fi-driver-2">Qualcomm Wi-Fi </h3> 1566 <p>Qualcomm Wi-Fi </p> 1567 1568 <table> 1569 <colgroup><col width="19%" /> 1570 <col width="20%" /> 1571 <col width="10%" /> 1572 <col width="23%" /> 1573 <col width="17%" /> 1574 </colgroup><tbody><tr> 1575 <th>CVE</th> 1576 <th></th> 1577 <th></th> 1578 <th> Google </th> 1579 <th></th> 1580 </tr> 1581 <tr> 1582 <td>CVE-2017-6424</td> 1583 <td>A-32086742<br /> 1584 <a href="https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-2.0/commit/?id=5cc2ac840e36a3342c5194c20b314f0bb95ef7e1"> 1585 QC-CR#1102648</a></td> 1586 <td></td> 1587 <td>Nexus 5XPixelPixel XLAndroid One</td> 1588 <td>2016 10 9 </td> 1589 </tr> 1590 </tbody></table> 1591 1592 <h3 id="eop-in-broadcom-wi-fi-driver-2">Broadcom Wi-Fi </h3> 1593 <p>Broadcom Wi-Fi </p> 1594 1595 <table> 1596 <colgroup><col width="19%" /> 1597 <col width="20%" /> 1598 <col width="10%" /> 1599 <col width="23%" /> 1600 <col width="17%" /> 1601 </colgroup><tbody><tr> 1602 <th>CVE</th> 1603 <th></th> 1604 <th></th> 1605 <th> Google </th> 1606 <th></th> 1607 </tr> 1608 <tr> 1609 <td>CVE-2016-8465</td> 1610 <td>A-32474971*<br /> 1611 B-RB#106053</td> 1612 <td></td> 1613 <td>Nexus 6Nexus 6PNexus 9Pixel CNexus Player</td> 1614 <td>2016 10 27 </td> 1615 </tr> 1616 </tbody></table> 1617 <p>* Nexus <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p> 1618 1619 <h3 id="eop-in-htc-oem-fastboot-command">HTC OEM </h3> 1620 <p>HTC OEM </p> 1621 1622 <table> 1623 <colgroup><col width="19%" /> 1624 <col width="20%" /> 1625 <col width="10%" /> 1626 <col width="23%" /> 1627 <col width="17%" /> 1628 </colgroup><tbody><tr> 1629 <th>CVE</th> 1630 <th></th> 1631 <th></th> 1632 <th> Google </th> 1633 <th></th> 1634 </tr> 1635 <tr> 1636 <td>CVE-2017-0582</td> 1637 <td>A-33178836*<br /> 1638 </td> 1639 <td></td> 1640 <td>Nexus 9</td> 1641 <td>2016 11 28 </td> 1642 </tr> 1643 </tbody></table> 1644 <p>* Nexus <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p> 1645 1646 <h3 id="eop-in-qualcomm-cp-access-driver">Qualcomm CP </h3> 1647 <p>Qualcomm CP </p> 1648 1649 <table> 1650 <colgroup><col width="19%" /> 1651 <col width="20%" /> 1652 <col width="10%" /> 1653 <col width="23%" /> 1654 <col width="17%" /> 1655 </colgroup><tbody><tr> 1656 <th>CVE</th> 1657 <th></th> 1658 <th></th> 1659 <th> Google </th> 1660 <th></th> 1661 </tr> 1662 <tr> 1663 <td>CVE-2017-0583</td> 1664 <td>A-32068683<br /> 1665 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=452d2ad331d20b19e8a0768c4b6e7fe1b65abe8f"> 1666 QC-CR#1103788</a></td> 1667 <td></td> 1668 <td>Nexus 5XNexus 6PPixelPixel XLAndroid One</td> 1669 <td>Google </td> 1670 </tr> 1671 </tbody></table> 1672 1673 <h3 id="id-in-kernel-media-driver"></h3> 1674 <p></p> 1675 1676 <table> 1677 <colgroup><col width="19%" /> 1678 <col width="20%" /> 1679 <col width="10%" /> 1680 <col width="23%" /> 1681 <col width="17%" /> 1682 </colgroup><tbody><tr> 1683 <th>CVE</th> 1684 <th></th> 1685 <th></th> 1686 <th> Google </th> 1687 <th></th> 1688 </tr> 1689 <tr> 1690 <td>CVE-2014-1739</td> 1691 <td>A-34460642<br /> 1692 <a href="http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=e6a623460e5fc960ac3ee9f946d3106233fd28d8"> 1693 </a></td> 1694 <td></td> 1695 <td>Nexus 6Nexus 9Nexus Player</td> 1696 <td>2014 6 15 </td> 1697 </tr> 1698 </tbody></table> 1699 1700 <h3 id="id-in-qualcomm-wi-fi-driver">Qualcomm Wi-Fi </h3> 1701 <p>Qualcomm Wi-Fi </p> 1702 1703 <table> 1704 <colgroup><col width="19%" /> 1705 <col width="20%" /> 1706 <col width="10%" /> 1707 <col width="23%" /> 1708 <col width="17%" /> 1709 </colgroup><tbody><tr> 1710 <th>CVE</th> 1711 <th></th> 1712 <th></th> 1713 <th> Google </th> 1714 <th></th> 1715 </tr> 1716 <tr> 1717 <td>CVE-2017-0584</td> 1718 <td>A-32074353*<br /> 1719 QC-CR#1104731</td> 1720 <td></td> 1721 <td>Nexus 5XPixelPixel XL</td> 1722 <td>2016 10 9 </td> 1723 </tr> 1724 </tbody></table> 1725 <p>* Nexus <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p> 1726 1727 <h3 id="id-in-broadcom-wi-fi-driver">Broadcom Wi-Fi </h3> 1728 <p>Broadcom Wi-Fi </p> 1729 1730 <table> 1731 <colgroup><col width="19%" /> 1732 <col width="20%" /> 1733 <col width="10%" /> 1734 <col width="23%" /> 1735 <col width="17%" /> 1736 </colgroup><tbody><tr> 1737 <th>CVE</th> 1738 <th></th> 1739 <th></th> 1740 <th> Google </th> 1741 <th></th> 1742 </tr> 1743 <tr> 1744 <td>CVE-2017-0585</td> 1745 <td>A-32475556*<br /> 1746 B-RB#112953</td> 1747 <td></td> 1748 <td>Nexus 6Nexus 6PNexus 9Pixel CNexus Player</td> 1749 <td>2016 10 27 </td> 1750 </tr> 1751 </tbody></table> 1752 <p>* Nexus <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p> 1753 1754 <h3 id="id-in-qualcomm-avtimer-driver">Qualcomm Avtimer </h3> 1755 <p>Qualcomm Avtimer </p> 1756 1757 <table> 1758 <colgroup><col width="19%" /> 1759 <col width="20%" /> 1760 <col width="10%" /> 1761 <col width="23%" /> 1762 <col width="17%" /> 1763 </colgroup><tbody><tr> 1764 <th>CVE</th> 1765 <th></th> 1766 <th></th> 1767 <th> Google </th> 1768 <th></th> 1769 </tr> 1770 <tr> 1771 <td>CVE-2016-5346</td> 1772 <td>A-32551280<br /> 1773 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=6298a474322fb2182f795a622b2faa64abfd8474"> 1774 QC-CR#1097878</a></td> 1775 <td></td> 1776 <td>PixelPixel XL</td> 1777 <td>2016 10 29 </td> 1778 </tr> 1779 </tbody></table> 1780 1781 <h3 id="id-in-qualcomm-video-driver">Qualcomm </h3> 1782 <p>Qualcomm </p> 1783 1784 <table> 1785 <colgroup><col width="19%" /> 1786 <col width="20%" /> 1787 <col width="10%" /> 1788 <col width="23%" /> 1789 <col width="17%" /> 1790 </colgroup><tbody><tr> 1791 <th>CVE</th> 1792 <th></th> 1793 <th></th> 1794 <th> Google </th> 1795 <th></th> 1796 </tr> 1797 <tr> 1798 <td>CVE-2017-6425</td> 1799 <td>A-32577085<br /> 1800 <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=ef86560a21fe1f256f6ba772a195201ff202c657"> 1801 QC-CR#1103689</a></td> 1802 <td></td> 1803 <td>PixelPixel XL</td> 1804 <td>2016 10 29 </td> 1805 </tr> 1806 </tbody></table> 1807 1808 <h3 id="id-in-qualcomm-usb-driver">Qualcomm USB </h3> 1809 <p>Qualcomm USB </p> 1810 1811 <table> 1812 <colgroup><col width="19%" /> 1813 <col width="20%" /> 1814 <col width="10%" /> 1815 <col width="23%" /> 1816 <col width="17%" /> 1817 </colgroup><tbody><tr> 1818 <th>CVE</th> 1819 <th></th> 1820 <th></th> 1821 <th> Google </th> 1822 <th></th> 1823 </tr> 1824 <tr> 1825 <td>CVE-2016-10236</td> 1826 <td>A-33280689<br /> 1827 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=b8199c2b852f1e23c988e10b8fbb8d34c98b4a1c"> 1828 QC-CR#1102418</a></td> 1829 <td></td> 1830 <td>PixelPixel XL</td> 1831 <td>2016 11 30 </td> 1832 </tr> 1833 </tbody></table> 1834 1835 <h3 id="id-in-qualcomm-sound-driver">Qualcomm </h3> 1836 <p>Qualcomm </p> 1837 1838 <table> 1839 <colgroup><col width="19%" /> 1840 <col width="20%" /> 1841 <col width="10%" /> 1842 <col width="23%" /> 1843 <col width="17%" /> 1844 </colgroup><tbody><tr> 1845 <th>CVE</th> 1846 <th></th> 1847 <th></th> 1848 <th> Google </th> 1849 <th></th> 1850 </tr> 1851 <tr> 1852 <td>CVE-2017-0586</td> 1853 <td>A-33649808<br /> 1854 QC-CR#1097569</td> 1855 <td></td> 1856 <td>Nexus 5XNexus 6Nexus 6PPixelPixel XLAndroid One</td> 1857 <td>2016 12 13 </td> 1858 </tr> 1859 </tbody></table> 1860 1861 <h3 id="id-in-qualcomm-spmi-driver">Qualcomm SPMI </h3> 1862 <p>Qualcomm SPMI </p> 1863 1864 <table> 1865 <colgroup><col width="19%" /> 1866 <col width="20%" /> 1867 <col width="10%" /> 1868 <col width="23%" /> 1869 <col width="17%" /> 1870 </colgroup><tbody><tr> 1871 <th>CVE</th> 1872 <th></th> 1873 <th></th> 1874 <th> Google </th> 1875 <th></th> 1876 </tr> 1877 <tr> 1878 <td>CVE-2017-6426</td> 1879 <td>A-33644474<br /> 1880 <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=80decd6365deec08c35ecb902a58f9210599b39a"> 1881 QC-CR#1106842</a></td> 1882 <td></td> 1883 <td>PixelPixel XL</td> 1884 <td>2016 12 14 </td> 1885 </tr> 1886 </tbody></table> 1887 1888 <h3 id="id-in-nvidia-crypto-driver">NVIDIA </h3> 1889 <p>NVIDIA </p> 1890 1891 <table> 1892 <colgroup><col width="19%" /> 1893 <col width="20%" /> 1894 <col width="10%" /> 1895 <col width="23%" /> 1896 <col width="17%" /> 1897 </colgroup><tbody><tr> 1898 <th>CVE</th> 1899 <th></th> 1900 <th></th> 1901 <th> Google </th> 1902 <th></th> 1903 </tr> 1904 <tr> 1905 <td>CVE-2017-0328</td> 1906 <td>A-33898322*<br /> 1907 N-CVE-2017-0328</td> 1908 <td></td> 1909 <td>**</td> 1910 <td>2016 12 24 </td> 1911 </tr> 1912 <tr> 1913 <td>CVE-2017-0330</td> 1914 <td>A-33899858*<br /> 1915 N-CVE-2017-0330</td> 1916 <td></td> 1917 <td>**</td> 1918 <td>2016 12 24 </td> 1919 </tr> 1920 </tbody></table> 1921 <p>* Nexus <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p> 1922 <p>** Android 7.0 Google ()</p> 1923 1924 <h3 id="vulnerabilities-in-qualcomm-components-2">Qualcomm </h3> 1925 <p> Qualcomm 2014 2016 Qualcomm AMSS Android Android </p> 1926 1927 <table> 1928 <colgroup><col width="19%" /> 1929 <col width="20%" /> 1930 <col width="10%" /> 1931 <col width="23%" /> 1932 <col width="17%" /> 1933 </colgroup><tbody><tr> 1934 <th>CVE</th> 1935 <th></th> 1936 <th></th> 1937 <th> Google </th> 1938 <th></th> 1939 </tr> 1940 <tr> 1941 <td>CVE-2014-9931</td> 1942 <td>A-35445101**<br /> 1943 QC-CR#612410</td> 1944 <td></td> 1945 <td>**</td> 1946 <td>Qualcomm </td> 1947 </tr> 1948 <tr> 1949 <td>CVE-2014-9932</td> 1950 <td>A-35434683**<br /> 1951 QC-CR#626734</td> 1952 <td></td> 1953 <td>PixelPixel XL</td> 1954 <td>Qualcomm </td> 1955 </tr> 1956 <tr> 1957 <td>CVE-2014-9933</td> 1958 <td>A-35442512<br /> 1959 QC-CR#675463</td> 1960 <td></td> 1961 <td>**</td> 1962 <td>Qualcomm </td> 1963 </tr> 1964 <tr> 1965 <td>CVE-2014-9934</td> 1966 <td>A-35439275**<br /> 1967 QC-CR#658249</td> 1968 <td></td> 1969 <td>**</td> 1970 <td>Qualcomm </td> 1971 </tr> 1972 <tr> 1973 <td>CVE-2014-9935</td> 1974 <td>A-35444951**<br /> 1975 QC-CR#717626</td> 1976 <td></td> 1977 <td>**</td> 1978 <td>Qualcomm </td> 1979 </tr> 1980 <tr> 1981 <td>CVE-2014-9936</td> 1982 <td>A-35442420**<br /> 1983 QC-CR#727389</td> 1984 <td></td> 1985 <td>**</td> 1986 <td>Qualcomm </td> 1987 </tr> 1988 <tr> 1989 <td>CVE-2014-9937</td> 1990 <td>A-35445102**<br /> 1991 QC-CR#734095</td> 1992 <td></td> 1993 <td>**</td> 1994 <td>Qualcomm </td> 1995 </tr> 1996 <tr> 1997 <td>CVE-2015-8995</td> 1998 <td>A-35445002**<br /> 1999 QC-CR#733690</td> 2000 <td></td> 2001 <td>**</td> 2002 <td>Qualcomm </td> 2003 </tr> 2004 <tr> 2005 <td>CVE-2015-8996</td> 2006 <td>A-35444658**<br /> 2007 QC-CR#734698</td> 2008 <td></td> 2009 <td>**</td> 2010 <td>Qualcomm </td> 2011 </tr> 2012 <tr> 2013 <td>CVE-2015-8997</td> 2014 <td>A-35432947**<br /> 2015 QC-CR#734707</td> 2016 <td></td> 2017 <td>**</td> 2018 <td>Qualcomm </td> 2019 </tr> 2020 <tr> 2021 <td>CVE-2015-8998</td> 2022 <td>A-35441175**<br /> 2023 QC-CR#735337</td> 2024 <td></td> 2025 <td>**</td> 2026 <td>Qualcomm </td> 2027 </tr> 2028 <tr> 2029 <td>CVE-2015-8999</td> 2030 <td>A-35445401**<br /> 2031 QC-CR#736119</td> 2032 <td></td> 2033 <td>**</td> 2034 <td>Qualcomm </td> 2035 </tr> 2036 <tr> 2037 <td>CVE-2015-9000</td> 2038 <td>A-35441076**<br /> 2039 QC-CR#740632</td> 2040 <td></td> 2041 <td>**</td> 2042 <td>Qualcomm </td> 2043 </tr> 2044 <tr> 2045 <td>CVE-2015-9001</td> 2046 <td>A-35445400**<br /> 2047 QC-CR#736083</td> 2048 <td></td> 2049 <td>**</td> 2050 <td>Qualcomm </td> 2051 </tr> 2052 <tr> 2053 <td>CVE-2015-9002</td> 2054 <td>A-35442421**<br /> 2055 QC-CR#748428</td> 2056 <td></td> 2057 <td>**</td> 2058 <td>Qualcomm </td> 2059 </tr> 2060 <tr> 2061 <td>CVE-2015-9003</td> 2062 <td>A-35440626**<br /> 2063 QC-CR#749215</td> 2064 <td></td> 2065 <td>**</td> 2066 <td>Qualcomm </td> 2067 </tr> 2068 <tr> 2069 <td>CVE-2016-10242</td> 2070 <td>A-35434643**<br /> 2071 QC-CR#985139</td> 2072 <td></td> 2073 <td>**</td> 2074 <td>Qualcomm </td> 2075 </tr> 2076 </tbody></table> 2077 <p>* </p> 2078 <p>* Nexus <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p> 2079 <p>*** Android 7.0 Google ()</p> 2080 2081 <h2 id="common-questions-and-answers"></h2> 2082 <p></p> 2083 <p><strong>1. </strong></p> 2084 <p> <a href="https://support.google.com/pixelphone/answer/4457705#pixel_phones&nexus_devices">Pixel Nexus </a></p> 2085 <ul> 2086 <li>2017 4 1 2017-04-01 </li> 2087 <li>2017 4 5 2017-04-05 </li> 2088 </ul> 2089 <p></p> 2090 <ul> 2091 <li>[ro.build.version.security_patch]:[2017-04-01]</li> 2092 <li>[ro.build.version.security_patch]:[2017-04-05]</li> 2093 </ul> 2094 2095 <p><strong>2. </strong></p> 2096 <p> Android Android Android </p> 2097 <ul> 2098 <li> 2017 4 1 </li> 2099 <li> 2017 4 5 () </li> 2100 </ul> 2101 <p></p> 2102 <p><strong>3. Google </strong></p> 2103 <p> <a href="#2017-04-01-details">2017-04-01</a> <a href="#2017-04-05-details">2017-04-05</a> Google <em></em> Google </p> 2104 <ul> 2105 <li><strong> Google </strong> Pixel Google <em></em><a href="https://support.google.com/pixelphone/answer/4457705#pixel_phones&nexus_devices"></a>Nexus 5XNexus 6Nexus 6PNexus 7 (2013)Nexus 9Android OneNexus PlayerPixel CPixel Pixel XL</li> 2106 <li><strong> Google </strong> Google Google <em></em> Google </li> 2107 <li><strong> Google </strong> Android 7.0 Google Google <em></em></li> 2108 </ul> 2109 <p><strong>4. </strong></p> 2110 <p><em></em></p> 2111 <table> 2112 <tbody><tr> 2113 <th></th> 2114 <th></th> 2115 </tr> 2116 <tr> 2117 <td>A-</td> 2118 <td>Android ID</td> 2119 </tr> 2120 <tr> 2121 <td>QC-</td> 2122 <td>Qualcomm </td> 2123 </tr> 2124 <tr> 2125 <td>M-</td> 2126 <td>MediaTek </td> 2127 </tr> 2128 <tr> 2129 <td>N-</td> 2130 <td>NVIDIA </td> 2131 </tr> 2132 <tr> 2133 <td>B-</td> 2134 <td>Broadcom </td> 2135 </tr> 2136 </tbody></table> 2137 2138 <h2 id="revisions"></h2> 2139 <ul> 2140 <li>2017 4 3 </li> 2141 <li>2017 4 5 AOSP </li> 2142 </ul> 2143 2144 </body></html>
