xref: /docs/source.android.com/zh-tw/security/bulletin/2017-05-01.html

<html devsite><head>
    <title>Android  - 2017  5 </title>
    <meta name="project_path" value="/_project.yaml"/>
    <meta name="book_path" value="/_book.yaml"/>
  </head>
  <body>
  <!--
      Copyright 2017 The Android Open Source Project

      Licensed under the Apache License, Version 2.0 (the "License");
      you may not use this file except in compliance with the License.
      You may obtain a copy of the License at

          http://www.apache.org/licenses/LICENSE-2.0

      Unless required by applicable law or agreed to in writing, software
      distributed under the License is distributed on an "AS IS" BASIS,
      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
      See the License for the specific language governing permissions and
      limitations under the License.
  -->

<p><em>2017  5  1  | 2017  5  2 </em></p>

<p>Android  Android Google  OTA  Google Google  <a href="https://developers.google.com/android/nexus/images">Google Developers </a>2017  5  5  <a href="https://support.google.com/pixelphone/answer/4457705#pixel_phones&nexus_devices">Pixel  Nexus </a></p>

<p> 2017  4  3  Android  (AOSP)  AOSP </p>

<p><a href="/security/overview/updates-resources.html#severity"></a></p>

<p> <a href="/security/enhancements/index.html">Android </a> ( <a href="https://developer.android.com/training/safetynet/index.html">SafetyNet</a>)  Android  <a href="#mitigations">Android  Google </a></p>

<p></p>
<h2 id="announcements"></h2>
<ul>
<li> Android  Android <a href="#common-questions-and-answers"></a><ul>
 <li><strong>2017-05-01</strong> 2017-05-01  () </li>
 <li><strong>2017-05-05</strong> 2017-05-01  2017-05-05  () </li>
</ul>
</li>
<li> Google  OTA  2017  5  5 </li>
</ul>

<h2 id="mitigations">Android  Google </h2>

<p> <a href="/security/enhancements/index.html">Android </a> SafetyNet  Android </p>

<ul>
<li>Android  Android  Android</li>
<li>Android <a href="/security/reports/Google_Android_Security_2016_Report_Final.pdf"> SafetyNet</a> <a href="/security/reports/Google_Android_Security_PHA_classifications.pdf"></a> <a href="http://www.android.com/gms">Google </a> Google Play Google Play  Root  Root  () </li>
<li>Google Hangouts  Messenger </li>
</ul>

<h2 id="acknowledgements"></h2>

<p></p>
<ul>
<li>ADlab of VenustechCVE-2017-0630</li>
<li> KeenLab (<a href="https://twitter.com/keen_lab">@keen_lab</a>)  Di Shen (<a href="https://twitter.com/returnsme">@returnsme</a>)CVE-2016-10287</li>
<li> Ecular Xu ()CVE-2017-0599CVE-2017-0635</li>
<li><a href="http://www.ms509.com">MS509Team</a>  En He (<a href="https://twitter.com/heeeeen4x">@heeeeen4x</a>)  Bo LiuCVE-2017-0601</li>
<li><a href="https://twrp.me/">Team Win Recovery Project</a>  Ethan YonkerCVE-2017-0493</li>
<li> 360  IceSword  Gengjia Chen (<a href="https://twitter.com/chengjia4574">@chengjia4574</a>)  <a href="http://weibo.com/jfpan">pjf</a>CVE-2016-10285CVE-2016-10288CVE-2016-10290CVE-2017-0624CVE-2017-0616CVE-2017-0617CVE-2016-10294CVE-2016-10295CVE-2016-10296</li>
<li>Tencent  godzheng ( <a href="https://twitter.com/virtualseekers">@VirtualSeekers</a>)CVE-2017-0602</li>
<li><a href="http://tuncay2.web.engr.illinois.edu">-</a> <a href="https://www.linkedin.com/in/g%C3%BCliz-seray-tuncay-952a1b9/">Gliz Seray Tuncay</a>CVE-2017-0593</li>
<li> 360  Alpha  Hao Chen  Guang GongCVE-2016-10283</li>
<li> Juhu NieYang ChengNan Li  Qiwu HuangCVE-2016-10276</li>
<li><a href="https://github.com/michalbednarski">Micha Bednarski</a>CVE-2017-0598</li>
<li> Nathan Crandall (<a href="https://twitter.com/natecray">@natecray</a>)CVE-2017-0331CVE-2017-0606</li>
<li><a href="mailto:jiych.guru (a] gmail.com">Niky1235</a> (<a href="https://twitter.com/jiych_guru">@jiych_guru</a>)CVE-2017-0603</li>
<li> Peng XiaoChengming YangNing YouChao Yang  Yang songCVE-2016-10281CVE-2016-10280</li>
<li><a href="https://alephsecurity.com/">Aleph </a> Roee Hay (<a href="https://twitter.com/roeehay">@roeehay</a>)CVE-2016-10277</li>
<li><a href="mailto:sbauer (a] plzdonthack.me">Scott Bauer</a> (<a href="https://twitter.com/ScottyBauer1">@ScottyBauer1</a>)CVE-2016-10274</li>
<li><a href="http://c0reteam.org">C0RE </a> <a href="mailto:segfault5514 (a] gmail.com">Tong Lin</a><a href="mailto:computernik (a] gmail.com">Yuan-Tsung Lo</a>  Xuxian JiangCVE-2016-10291</li>
<li>Vasily VasilievCVE-2017-0589</li>
<li><a href="http://www.trendmicro.com"></a><a href="http://blog.trendmicro.com/trendlabs-security-intelligence/category/mobile"></a> V.E.O (<a href="https://twitter.com/vysea">@VYSEa</a>)CVE-2017-0590CVE-2017-0587CVE-2017-0600</li>
<li> Xiling GongCVE-2017-0597</li>
<li>360 Marvel Team  Xingyuan LinCVE-2017-0627</li>
<li> Yong Wang () (<a href="https://twitter.com/ThomasKing2014">@ThomasKing2014</a>)CVE-2017-0588</li>
<li> 360  IceSword  Yonggang Guo (<a href="https://twitter.com/guoygang">@guoygang</a>)CVE-2016-10289CVE-2017-0465</li>
<li> 360  Vulpecker  Yu PanCVE-2016-10282CVE-2017-0615</li>
<li> 360  Vulpecker  Yu Pan  Peide ZhangCVE-2017-0618CVE-2017-0625</li>
</ul>

<h2 id="2017-05-01-details">2017-05-01  - </h2>

<p> 2017-05-01  CVE Google  AOSP  ()  ID  ( AOSP ) ID </p>

<h3 id="rce-in-mediaserver"></h3>

<p></p>

<table>
  <colgroup><col width="18%" />
  <col width="17%" />
  <col width="10%" />
  <col width="19%" />
  <col width="18%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th> AOSP </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0587</td>
    <td><a href="https://android.googlesource.com/platform/external/libmpeg2/+/a86eb798d077b9b25c8f8c77e3c02c2f287c1ce7">A-35219737</a></td>
    <td></td>
    <td></td>
    <td>6.06.0.17.07.1.17.1.2</td>
    <td>2017  1  4 </td>
  </tr>
  <tr>
    <td>CVE-2017-0588</td>
    <td><a href="https://android.googlesource.com/platform/frameworks/av/+/6f1d990ce0f116a205f467d9eb2082795e33872b">A-34618607</a></td>
    <td></td>
    <td></td>
    <td>4.4.45.0.25.1.16.06.0.17.07.1.17.1.2</td>
    <td>2017  1  21 </td>
  </tr>
  <tr>
    <td>CVE-2017-0589</td>
    <td><a href="https://android.googlesource.com/platform/external/libhevc/+/bcfc7124f6ef9f1ec128fb2e90de774a5b33d199">A-34897036</a></td>
    <td></td>
    <td></td>
    <td>5.0.25.1.16.06.0.17.07.1.17.1.2</td>
    <td>2017  2  1 </td>
  </tr>
  <tr>
    <td>CVE-2017-0590</td>
    <td><a href="https://android.googlesource.com/platform/external/libhevc/+/45c97f878bee15cd97262fe7f57ecea71990fed7">A-35039946</a></td>
    <td></td>
    <td></td>
    <td>5.0.25.1.16.06.0.17.07.1.17.1.2</td>
    <td>2017  2  6 </td>
  </tr>
  <tr>
    <td>CVE-2017-0591</td>
    <td><a href="https://android.googlesource.com/platform/external/libavc/+/5c3fd5d93a268abb20ff22f26009535b40db3c7d">A-34097672</a></td>
    <td></td>
    <td></td>
    <td>6.06.0.17.07.1.17.1.2</td>
    <td>Google </td>
  </tr>
  <tr>
    <td>CVE-2017-0592</td>
    <td><a href="https://android.googlesource.com/platform/frameworks/av/+/acc192347665943ca674acf117e4f74a88436922">A-34970788</a></td>
    <td></td>
    <td></td>
    <td>4.4.45.0.25.1.16.06.0.17.07.1.17.1.2</td>
    <td>Google </td>
  </tr>
</tbody></table>

<h3 id="eop-in-framework-apis">Framework API </h3>

<p>Framework API </p>

<table>
  <colgroup><col width="18%" />
  <col width="17%" />
  <col width="10%" />
  <col width="19%" />
  <col width="18%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th> AOSP </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0593</td>
    <td><a href="https://android.googlesource.com/platform/frameworks/base/+/78efbc95412b8efa9a44d573f5767ae927927d48">A-34114230</a></td>
    <td></td>
    <td></td>
    <td>6.06.0.17.07.1.17.1.2</td>
    <td>2017  1  5 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-mediaserver"></h3>

<p></p>

<table>
  <colgroup><col width="18%" />
  <col width="17%" />
  <col width="10%" />
  <col width="19%" />
  <col width="18%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th> AOSP </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0594</td>
    <td><a href="https://android.googlesource.com/platform/frameworks/av/+/594bf934384920618d2b6ce0bcda1f60144cb3eb">A-34617444</a></td>
    <td></td>
    <td></td>
    <td>4.4.45.0.25.1.16.06.0.17.07.1.17.1.2</td>
    <td>2017  1  22 </td>
  </tr>
  <tr>
    <td>CVE-2017-0595</td>
    <td><a href="https://android.googlesource.com/platform/frameworks/av/+/5443b57cc54f2e46b35246637be26a69e9f493e1">A-34705519</a></td>
    <td></td>
    <td></td>
    <td>4.4.45.0.25.1.16.06.0.17.07.1.1</td>
    <td>2017  1  24 </td>
  </tr>
  <tr>
    <td>CVE-2017-0596</td>
    <td><a href="https://android.googlesource.com/platform/frameworks/av/+/5443b57cc54f2e46b35246637be26a69e9f493e1">A-34749392</a></td>
    <td></td>
    <td></td>
    <td>4.4.45.0.25.1.16.06.0.17.07.1.1</td>
    <td>2017  1  24 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-audioserver"></h3>

<p></p>

<table>
  <colgroup><col width="18%" />
  <col width="17%" />
  <col width="10%" />
  <col width="19%" />
  <col width="18%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th> AOSP </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0597</td>
    <td><a href="https://android.googlesource.com/platform/frameworks/av/+/a9188f89179a7edd301abaf37d644adf5d647a04">A-34749571</a></td>
    <td></td>
    <td></td>
    <td>4.4.45.0.25.1.16.06.0.17.07.1.17.1.2</td>
    <td>2017  1  25 </td>
  </tr>
</tbody></table>

<h3 id="id-in-framework-apis">Framework API </h3>

<p>Framework API </p>

<table>
  <colgroup><col width="18%" />
  <col width="17%" />
  <col width="10%" />
  <col width="19%" />
  <col width="18%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th> AOSP </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0598</td>
    <td><a href="https://android.googlesource.com/platform/frameworks/base/+/4e110ab20bb91e945a17c6e166e14e2da9608f08">A-34128677</a>
    [<a href="https://android.googlesource.com/platform/frameworks/base/+/d42e1204d5dddb78ec9d20d125951b59a8344f40">2</a>]</td>
    <td></td>
    <td></td>
    <td>4.4.45.0.25.1.16.06.0.17.07.1.17.1.2</td>
    <td>2017  1  6 </td>
  </tr>
</tbody></table>

<h3 id="dos-in-mediaserver"></h3>

<p></p>

<table>
  <colgroup><col width="18%" />
  <col width="17%" />
  <col width="10%" />
  <col width="19%" />
  <col width="18%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th> AOSP </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0599</td>
    <td><a href="https://android.googlesource.com/platform/external/libhevc/+/a1424724a00d62ac5efa0e27953eed66850d662f">A-34672748</a></td>
    <td></td>
    <td></td>
    <td>6.06.0.17.07.1.17.1.2</td>
    <td>2017  1  23 </td>
  </tr>
  <tr>
    <td>CVE-2017-0600</td>
    <td><a href="https://android.googlesource.com/platform/frameworks/av/+/961e5ac5788b52304e64b9a509781beaf5201fb0">A-35269635</a></td>
    <td></td>
    <td></td>
    <td>4.4.45.0.25.1.16.06.0.17.07.1.17.1.2</td>
    <td>2017  2  10 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-bluetooth"></h3>

<p></p>

<table>
  <colgroup><col width="18%" />
  <col width="17%" />
  <col width="10%" />
  <col width="19%" />
  <col width="18%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th> AOSP </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0601</td>
    <td><a href="https://android.googlesource.com/platform/frameworks/base/+/667d2cbe3eb1450f273a4f6595ccef35e1f0fe4b">A-35258579</a></td>
    <td></td>
    <td></td>
    <td>7.07.1.17.1.2</td>
    <td>2017  2  9 </td>
  </tr>
</tbody></table>

<h3 id="id-in-file-based-encryption"></h3>

<p></p>

<table>
  <colgroup><col width="18%" />
  <col width="17%" />
  <col width="10%" />
  <col width="19%" />
  <col width="18%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th> AOSP </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0493</td>
    <td><a href="https://android.googlesource.com/platform/frameworks/base/+/e4cefbf4fce458489b5f1bebc79dfaf566bcc5d5">A-32793550</a>
    [<a href="https://android.googlesource.com/platform/frameworks/base/+/f806d65e615b942c268a5f68d44bde9d55634972">2</a>]</td>
    <td></td>
    <td></td>
    <td>7.07.1.1</td>
    <td>2016  11  9 </td>
  </tr>
</tbody></table>

<h3 id="id-in-bluetooth"></h3>

<p></p>

<table>
  <colgroup><col width="18%" />
  <col width="17%" />
  <col width="10%" />
  <col width="19%" />
  <col width="18%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th> AOSP </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0602</td>
    <td><a href="https://android.googlesource.com/platform/system/bt/+/a4875a49404c544134df37022ae587a4a3321647">A-34946955</a></td>
    <td></td>
    <td></td>
    <td>4.4.45.0.25.1.16.06.0.17.07.1.17.1.2</td>
    <td>2016  12  5 </td>
  </tr>
</tbody></table>

<h3 id="id-in-openssl-&-boringssl">OpenSSL  BoringSSL </h3>

<p>OpenSSL  BoringSSL </p>

<table>
  <colgroup><col width="18%" />
  <col width="17%" />
  <col width="10%" />
  <col width="19%" />
  <col width="18%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th> AOSP </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-7056</td>
    <td><a href="https://android.googlesource.com/platform/external/boringssl/+/13179a8e75fee98740b5ce728752aa7294b3e32d">A-33752052</a></td>
    <td></td>
    <td></td>
    <td>4.4.45.0.25.1.16.06.0.17.07.1.17.1.2</td>
    <td>2016  12  19 </td>
  </tr>
</tbody></table>

<h3 id="dos-in-mediaserver-2"></h3>

<p></p>

<table>
  <colgroup><col width="18%" />
  <col width="17%" />
  <col width="10%" />
  <col width="19%" />
  <col width="18%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th> AOSP </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0603</td>
    <td><a href="https://android.googlesource.com/platform/frameworks/av/+/36b04932bb93cc3269279282686b439a17a89920">A-35763994</a></td>
    <td></td>
    <td></td>
    <td>4.4.45.0.25.1.16.06.0.17.07.1.17.1.2</td>
    <td>2017  2  23 </td>
  </tr>
</tbody></table>

<h3 id="dos-in-mediaserver-3"></h3>

<p></p>

<table>
  <colgroup><col width="18%" />
  <col width="17%" />
  <col width="10%" />
  <col width="19%" />
  <col width="18%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th> AOSP </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0635</td>
    <td><a href="https://android.googlesource.com/platform/frameworks/av/+/523f6b49c1a2289161f40cf9fe80b92e592e9441">A-35467107</a></td>
    <td></td>
    <td></td>
    <td>7.07.1.17.1.2</td>
    <td>2017  2  16 </td>
  </tr>
</tbody></table>

<h2 id="2017-05-05-details">2017-05-05  - </h2>

<p> 2017-05-05  CVE Google  AOSP  ()  ID  ( AOSP ) ID </p>

<h3 id="rce-in-giflib">GIFLIB </h3>

<p>GIFLIB </p>

<table>
  <colgroup><col width="18%" />
  <col width="17%" />
  <col width="10%" />
  <col width="19%" />
  <col width="18%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th> AOSP </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2015-7555</td>
    <td><a href="https://android.googlesource.com/platform/external/giflib/+/dc07290edccc2c3fc4062da835306f809cea1fdc">A-34697653</a></td>
    <td></td>
    <td></td>
    <td>4.4.45.0.25.1.16.06.0.17.07.1.17.1.2</td>
    <td>2016  4  13 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-mediatek-touchscreen-driver">MediaTek </h3>

<p>MediaTek  (Re-flash) </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-10274</td>
    <td>A-30202412*<br />
        M-ALPS02897901</td>
    <td></td>
    <td>**</td>
    <td>2016  7  16 </td>
  </tr>
</tbody></table>

<p>*  Nexus  <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p>

<p>**  Android 7.1.1  Google  ()</p>

<h3 id="eop-in-qualcomm-bootloader">Qualcomm </h3>

<p>Qualcomm  (Re-flash) </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-10275</td>
    <td>A-34514954<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/lk/commit/?id=1a0a15c380e11fc46f8d8706ea5ae22b752bdd0b">
QC-CR#1009111</a></td>
    <td></td>
    <td>Nexus 5XNexus 6PixelPixel XLAndroid One</td>
    <td>2016  9  13 </td>
  </tr>
  <tr>
    <td>CVE-2016-10276</td>
    <td>A-32952839<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/lk/commit/?id=5dac431748027e8b50a5c4079967def4ea53ad64">
QC-CR#1094105</a></td>
    <td></td>
    <td>Nexus 5XNexus 6PPixelPixel XL</td>
    <td>2016  11  16 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-kernel-sound-subsystem"></h3>

<p> (Re-flash) </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-9794</td>
    <td>A-34068036<br />
        <a href="https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git/commit/?id=a27178e05b7c332522df40904f27674e36ee3757">
</a></td>
    <td></td>
    <td>Nexus 5XNexus 6Nexus 6PNexus 9PixelPixel XLPixel CAndroid OneNexus Player</td>
    <td>2016  12  3 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-motorola-bootloader">Motorola </h3>

<p>Motorola  (Re-flash) </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-10277</td>
    <td>A-33840490*<br />
        </td>
    <td></td>
    <td>Nexus 6</td>
    <td>2016  12  21 </td>
  </tr>
</tbody></table>

<p>*  Nexus  <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p>

<h3 id="eop-in-nvidia-video-driver">NVIDIA </h3>

<p>NVIDIA  (Re-flash) </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0331</td>
    <td>A-34113000*<br />
        N-CVE-2017-0331</td>
    <td></td>
    <td>Nexus 9</td>
    <td>2017  1  4 </td>
  </tr>
</tbody></table>

<p>*  Nexus  <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p>

<h3 id="eop-in-qualcomm-power-driver">Qualcomm </h3>

<p> Qualcomm  (Re-flash) </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0604</td>
    <td>A-35392981<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=6975e2dd5f37de965093ba3a8a08635a77a960f7">
QC-CR#826589</a></td>
    <td></td>
    <td>*</td>
    <td>2017  2  15 </td>
  </tr>
</tbody></table>

<p>*  Android 7.1.1  Google  ()</p>

<h3 id="eop-in-kernel-trace-subsystem"></h3>

<p> (Re-flash) </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0605</td>
    <td>A-35399704<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.10/commit/?id=2161ae9a70b12cf18ac8e5952a20161ffbccb477">
QC-CR#1048480</a></td>
    <td></td>
    <td>Nexus 5XNexus 6Nexus 6PNexus 9PixelPixel XLPixel CAndroid OneNexus Player</td>
    <td>2017  2  15 </td>
  </tr>
</tbody></table>

<h3 id="vulnerabilities-in-qualcomm-components">Qualcomm </h3>

<p> Qualcomm  2016  8 9 10  12  Qualcomm AMSS </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-10240</td>
    <td>A-32578446**<br />
        QC-CR#955710</td>
    <td></td>
    <td>Nexus 6P</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2016-10241</td>
    <td>A-35436149**<br />
        QC-CR#1068577</td>
    <td></td>
    <td>Nexus 5XNexus 6Nexus 6PPixelPixel XL</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2016-10278</td>
    <td>A-31624008**<br />
        QC-CR#1043004</td>
    <td></td>
    <td>PixelPixel XL</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2016-10279</td>
    <td>A-31624421**<br />
        QC-CR#1031821</td>
    <td></td>
    <td>PixelPixel XL</td>
    <td>Qualcomm </td>
  </tr>
</tbody></table>

<p>* </p>

<p>*  Nexus  <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p>

<p>***  Android 7.1.1  Google  ()</p>

<h3 id="rce-in-libxml2">libxml2 </h3>

<p>libxml2 </p>

<table>
  <colgroup><col width="18%" />
  <col width="17%" />
  <col width="10%" />
  <col width="19%" />
  <col width="18%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th> AOSP </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-5131</td>
    <td>A-32956747*</td>
    <td></td>
    <td>**</td>
    <td>4.4.45.0.25.1.16.06.0.17.0</td>
    <td>2016  7  23 </td>
  </tr>
</tbody></table>

<p>*  Nexus  <a href="https://developers.google.com/android/drivers">Google Developers </a></p>

<p>**  Android 7.1.1  Google  ()</p>

<h3 id="eop-in-mediatek-thermal-driver">MediaTek </h3>

<p>MediaTek </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-10280</td>
    <td>A-28175767*<br />
        M-ALPS02696445</td>
    <td></td>
    <td>**</td>
    <td>2016  4  11 </td>
  </tr>
  <tr>
    <td>CVE-2016-10281</td>
    <td>A-28175647*<br />
        M-ALPS02696475</td>
    <td></td>
    <td>**</td>
    <td>2016  4  11 </td>
  </tr>
  <tr>
    <td>CVE-2016-10282</td>
    <td>A-33939045*<br />
        M-ALPS03149189</td>
    <td></td>
    <td>**</td>
    <td>2016  12  27 </td>
  </tr>
</tbody></table>

<p>*  Nexus  <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p>

<p>**  Android 7.1.1  Google  ()</p>

<h3 id="eop-in-qualcomm-wi-fi-driver">Qualcomm Wi-Fi </h3>

<p>Qualcomm Wi-Fi </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-10283</td>
    <td>A-32094986<br />
        <a href="https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-2.0/commit/?id=93863644b4547324309613361d70ad9dc91f8dfd">
QC-CR#2002052</a></td>
    <td></td>
    <td>Nexus 5XPixelPixel XLAndroid One</td>
    <td>2016  10  11 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-qualcomm-video-driver">Qualcomm </h3>

<p>Qualcomm </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-10284</td>
    <td>A-32402303*<br />
        QC-CR#2000664</td>
    <td></td>
    <td>Nexus 5XNexus 6Nexus 6PPixelPixel XLAndroid One</td>
    <td>2016  10  24 </td>
  </tr>
  <tr>
    <td>CVE-2016-10285</td>
    <td>A-33752702<br />
        <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=67dfd3a65336e0b3f55ee83d6312321dc5f2a6f9">
QC-CR#1104899</a></td>
    <td></td>
    <td>PixelPixel XL</td>
    <td>2016  12  19 </td>
  </tr>
  <tr>
    <td>CVE-2016-10286</td>
    <td>A-35400904<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=5d30a3d0dc04916ddfb972bfc52f8e636642f999">
QC-CR#1090237</a></td>
    <td></td>
    <td>PixelPixel XL</td>
    <td>2016  2  15 </td>
  </tr>
</tbody></table>

<p>*  Nexus  <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p>

<h3 id="eop-in-kernel-performance-subsystem"></h3>

<p></p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2015-9004</td>
    <td>A-34515362<br />
        <a href="https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git/commit/?id=c3c87e770458aa004bd7ed3f29945ff436fd6511">
</a></td>
    <td></td>
    <td>Nexus 5XNexus 6Nexus 6PNexus 9PixelPixel XLPixel CAndroid OneNexus Player</td>
    <td>2016  11  23 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-qualcomm-sound-driver">Qualcomm </h3>

<p>Qualcomm </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-10287</td>
    <td>A-33784446<br />
        <a href="https://www.codeaurora.org/gitweb/quic/la/?p=kernel/msm-4.4.git;a=commit;h=937bc9e644180e258c68662095861803f7ba4ded">
QC-CR#1112751</a></td>
    <td></td>
    <td>Nexus 5XNexus 6PPixelPixel XLAndroid One</td>
    <td>2016  12  20 </td>
  </tr>
  <tr>
    <td>CVE-2017-0606</td>
    <td>A-34088848<br />
        <a href="https://www.codeaurora.org/gitweb/quic/la/?p=kernel/msm-4.4.git;a=commit;h=d3237316314c3d6f75a58192971f66e3822cd250">
QC-CR#1116015</a></td>
    <td></td>
    <td>Nexus 5XNexus 6PPixelPixel XLAndroid One</td>
    <td>2017  1  3 </td>
  </tr>
  <tr>
    <td>CVE-2016-5860</td>
    <td>A-34623424<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=9f91ae0d7203714fc39ae78e1f1c4fd71ed40498">
QC-CR#1100682</a></td>
    <td></td>
    <td>PixelPixel XL</td>
    <td>2017  1  22 </td>
  </tr>
  <tr>
    <td>CVE-2016-5867</td>
    <td>A-35400602<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=065360da7147003aed8f59782b7652d565f56be5">
QC-CR#1095947</a></td>
    <td></td>
    <td>*</td>
    <td>2017  2  15 </td>
  </tr>
  <tr>
    <td>CVE-2017-0607</td>
    <td>A-35400551<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=b003c8d5407773d3aa28a48c9841e4c124da453d">
QC-CR#1085928</a></td>
    <td></td>
    <td>PixelPixel XL</td>
    <td>2017  2  15 </td>
  </tr>
  <tr>
    <td>CVE-2017-0608</td>
    <td>A-35400458<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=b66f442dd97c781e873e8f7b248e197f86fd2980">
QC-CR#1098363</a></td>
    <td></td>
    <td>Nexus 5XNexus 6Nexus 6PPixelPixel XLAndroid One</td>
    <td>2017  2  15 </td>
  </tr>
  <tr>
    <td>CVE-2017-0609</td>
    <td>A-35399801<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=38a83df036084c00e8c5a4599c8ee7880b4ee567">
QC-CR#1090482</a></td>
    <td></td>
    <td>Nexus 5XNexus 6PPixelPixel XLAndroid One</td>
    <td>2017  2  15 </td>
  </tr>
  <tr>
    <td>CVE-2016-5859</td>
    <td>A-35399758<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=97fdb441a9fb330a76245e473bc1a2155c809ebe">
QC-CR#1096672</a></td>
    <td></td>
    <td>*</td>
    <td>2017  2  15 </td>
  </tr>
  <tr>
    <td>CVE-2017-0610</td>
    <td>A-35399404<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=65009746a6e649779f73d665934561ea983892fe">
QC-CR#1094852</a></td>
    <td></td>
    <td>Nexus 5XNexus 6Nexus 6PPixelPixel XLAndroid One</td>
    <td>2017  2  15 </td>
  </tr>
  <tr>
    <td>CVE-2017-0611</td>
    <td>A-35393841<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=1aa5df9246557a98181f03e98530ffd509b954c8">
QC-CR#1084210</a></td>
    <td></td>
    <td>Nexus 5XNexus 6Nexus 6PPixelPixel XLAndroid One</td>
    <td>2017  2  15 </td>
  </tr>
  <tr>
    <td>CVE-2016-5853</td>
    <td>A-35392629<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=a8f3b894de319718aecfc2ce9c691514696805be">
QC-CR#1102987</a></td>
    <td></td>
    <td>*</td>
    <td>2017  2  15 </td>
  </tr>
</tbody></table>

<p>*  Android 7.1.1  Google  ()</p>

<h3 id="eop-in-qualcomm-led-driver">Qualcomm LED </h3>

<p>Qualcomm LED </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-10288</td>
    <td>A-33863909<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=db2cdc95204bc404f03613d5dd7002251fb33660">
QC-CR#1109763</a></td>
    <td></td>
    <td>PixelPixel XL</td>
    <td>2016  12  23 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-qualcomm-crypto-driver">Qualcomm </h3>

<p>Qualcomm </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-10289</td>
    <td>A-33899710<br />
        <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=a604e6f3889ccc343857532b63dea27603381816">
QC-CR#1116295</a></td>
    <td></td>
    <td>Nexus 5XNexus 6Nexus 6PPixelPixel XLAndroid One</td>
    <td>2016  12  24 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-qualcomm-shared-memory-driver">Qualcomm </h3>

<p>Qualcomm </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-10290</td>
    <td>A-33898330<br />
        <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=a5e46d8635a2e28463b365aacdeab6750abd0d49">
QC-CR#1109782</a></td>
    <td></td>
    <td>Nexus 5XNexus 6PPixelPixel XL</td>
    <td>2016  12  24 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-qualcomm-slimbus-driver">Qualcomm Slimbus </h3>

<p>Qualcomm Slimbus </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-10291</td>
    <td>A-34030871<br />
        <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=a225074c0494ca8125ca0ac2f9ebc8a2bd3612de">
QC-CR#986837</a></td>
    <td></td>
    <td>Nexus 5XNexus 6Nexus 6PAndroid One</td>
    <td>2016  12  31 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-qualcomm-adsprpc-driver">Qualcomm ADSPRPC </h3>

<p>Qualcomm ADSPRPC </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0465</td>
    <td>A-34112914<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=3823f0f8d0bbbbd675a42a54691f4051b3c7e544">
QC-CR#1110747</a></td>
    <td></td>
    <td>Nexus 5XNexus 6PPixelPixel XLAndroid One</td>
    <td>2017  1  5 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-qualcomm-secure-execution-environment-communicator-driver">Qualcomm </h3>

<p>Qualcomm </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0612</td>
    <td>A-34389303<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=05efafc998dc86c3b75af9803ca71255ddd7a8eb">
QC-CR#1061845</a></td>
    <td></td>
    <td>PixelPixel XL</td>
    <td>2017  1  10 </td>
  </tr>
  <tr>
    <td>CVE-2017-0613</td>
    <td>A-35400457<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=b108c651cae9913da1ab163cb4e5f7f2db87b747">
QC-CR#1086140</a></td>
    <td></td>
    <td>Nexus 5XNexus 6Nexus 6PPixelPixel XLAndroid One</td>
    <td>2017  2  15 </td>
  </tr>
  <tr>
    <td>CVE-2017-0614</td>
    <td>A-35399405<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=fc2ae27eb9721a0ce050c2062734fec545cda604">
QC-CR#1080290</a></td>
    <td></td>
    <td>Nexus 5XNexus 6Nexus 6PPixelPixel XLAndroid One</td>
    <td>2017  2  15 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-mediatek-power-driver">MediaTek </h3>

<p>MediaTek </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0615</td>
    <td>A-34259126*<br />
        M-ALPS03150278</td>
    <td></td>
    <td>**</td>
    <td>2017  1  12 </td>
  </tr>
</tbody></table>

<p>*  Nexus  <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p>

<p>**  Android 7.1.1  Google  ()</p>

<h3 id="eop-in-mediatek-system-management-interrupt-driver">MediaTek </h3>

<p>MediaTek </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0616</td>
    <td>A-34470286*<br />
        M-ALPS03149160</td>
    <td></td>
    <td>**</td>
    <td>2017  1  19 </td>
  </tr>
</tbody></table>

<p>*  Nexus  <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p>

<p>**  Android 7.1.1  Google  ()</p>

<h3 id="eop-in-mediatek-video-driver">MediaTek </h3>

<p>MediaTek </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0617</td>
    <td>A-34471002*<br />
        M-ALPS03149173</td>
    <td></td>
    <td>**</td>
    <td>2017  1  19 </td>
  </tr>
</tbody></table>

<p>*  Nexus  <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p>

<p>**  Android 7.1.1  Google  ()</p>

<h3 id="eop-in-mediatek-command-queue-driver">MediaTek </h3>

<p>MediaTek </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0618</td>
    <td>A-35100728*<br />
        M-ALPS03161536</td>
    <td></td>
    <td>**</td>
    <td>2017  2  7 </td>
  </tr>
</tbody></table>

<p>*  Nexus  <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p>

<p>**  Android 7.1.1  Google  ()</p>

<h3 id="eop-in-qualcomm-pin-controller-driver">Qualcomm PIN </h3>

<p>Qualcomm PIN </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0619</td>
    <td>A-35401152<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.14/commit/?id=72f67b29a9c5e6e8d3c34751600c749c5f5e13e1">
QC-CR#826566</a></td>
    <td></td>
    <td>Nexus 6Android One</td>
    <td>2017  2  15 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-qualcomm-secure-channel-manager-driver">Qualcomm </h3>

<p>Qualcomm </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0620</td>
    <td>A-35401052<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=01b2c9a5d728ff6f2f1f28a5d4e927aaeabf56ed">
QC-CR#1081711</a></td>
    <td></td>
    <td>Nexus 5XNexus 6Nexus 6PPixelPixel XLAndroid One</td>
    <td>2017  2  15 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-qualcomm-sound-codec-driver">Qualcomm </h3>

<p>Qualcomm </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-5862</td>
    <td>A-35399803<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=4199451e83729a3add781eeafaee32994ff65b04">
QC-CR#1099607</a></td>
    <td></td>
    <td>PixelPixel XL</td>
    <td>2017  2  15 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-kernel-voltage-regulator-driver"></h3>

<p></p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2014-9940</td>
    <td>A-35399757<br />
        <a href="https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git/commit/?id=60a2362f769cf549dc466134efe71c8bf9fbaaba">
</a></td>
    <td></td>
    <td>Nexus 6Nexus 9Pixel CAndroid OneNexus Player</td>
    <td>2017  2  15 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-qualcomm-camera-driver">Qualcomm </h3>

<p>Qualcomm </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0621</td>
    <td>A-35399703<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.10/commit/?id=9656e2c2b3523af20502bf1e933e35a397f5e82f">
QC-CR#831322</a></td>
    <td></td>
    <td>Android One</td>
    <td>2017  2  15 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-qualcomm-networking-driver">Qualcomm </h3>

<p>Qualcomm </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-5868</td>
    <td>A-35392791<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=fbb765a3f813f5cc85ddab21487fd65f24bf6a8c">
QC-CR#1104431</a></td>
    <td></td>
    <td>Nexus 5XPixelPixel XL</td>
    <td>2017  2  15 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-kernel-networking-subsystem"></h3>

<p></p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-7184</td>
    <td>A-36565222<br />
        <a href="https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=677e806da4d916052585301785d847c3b3e6186a">
</a> <a href="https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=f843ee6dd019bcece3e74e76ad9df0155655d0df">
[2]</a></td>
    <td></td>
    <td>Nexus 5XNexus 6Nexus 6PNexus 9PixelPixel XLAndroid One</td>
    <td>2017  3  23 </td>
  </tr>
</tbody></table>

<h3 id="eop-in-goodix-touchscreen-driver">Goodix </h3>

<p>Goodix </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0622</td>
    <td>A-32749036<br />
        <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=40efa25345003a96db34effbd23ed39530b3ac10">
QC-CR#1098602</a></td>
    <td></td>
    <td>Android One</td>
    <td>Google </td>
  </tr>
</tbody></table>

<h3 id="eop-in-htc-bootloader">HTC </h3>

<p>HTC </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0623</td>
    <td>A-32512358*<br />
        </td>
    <td></td>
    <td>PixelPixel XL</td>
    <td>Google </td>
  </tr>
</tbody></table>

<p>*  Nexus  <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p>

<h3 id="id-in-qualcomm-wi-fi-driver">Qualcomm Wi-Fi </h3>

<p>Qualcomm Wi-Fi </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0624</td>
    <td>A-34327795*<br />
        QC-CR#2005832</td>
    <td></td>
    <td>Nexus 5XPixelPixel XL</td>
    <td>2017  1  16 </td>
  </tr>
</tbody></table>

<p>*  Nexus  <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p>

<h3 id="id-in-mediatek-command-queue-driver">MediaTek </h3>

<p>MediaTek </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0625</td>
    <td>A-35142799*<br />
        M-ALPS03161531</td>
    <td></td>
    <td>**</td>
    <td>2017  2  8 </td>
  </tr>
</tbody></table>

<p>*  Nexus  <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p>

<p>**  Android 7.1.1  Google  ()</p>

<h3 id="id-in-qualcomm-crypto-engine-driver">Qualcomm </h3>

<p>Qualcomm </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0626</td>
    <td>A-35393124<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=64551bccab9b5b933757f6256b58f9ca0544f004">
QC-CR#1088050</a></td>
    <td></td>
    <td>Nexus 5XNexus 6Nexus 6PPixelPixel XLAndroid One</td>
    <td>2017  2  15 </td>
  </tr>
</tbody></table>

<h3 id="dos-in-qualcomm-wi-fi-driver">Qualcomm Wi-Fi </h3>

<p>Qualcomm Wi-Fi  Wi-Fi </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-10292</td>
    <td>A-34514463*<br />
        QC-CR#1065466</td>
    <td></td>
    <td>Nexus 5XPixelPixel XL</td>
    <td>2016  12  16 </td>
  </tr>
</tbody></table>

<p>*  Nexus  <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p>

<h3 id="id-in-kernel-uvc-driver"> UVC </h3>

<p> UVC </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0627</td>
    <td>A-33300353*<br />
        </td>
    <td></td>
    <td>Nexus 5XNexus 6PNexus 9Pixel CNexus Player</td>
    <td>2016  12  2 </td>
  </tr>
</tbody></table>

<p>*  Nexus  <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p>

<h3 id="id-in-qualcomm-video-driver">Qualcomm </h3>

<p>Qualcomm </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-10293</td>
    <td>A-33352393<br />
        <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?id=2469d5374745a2228f774adbca6fb95a79b9047f">
QC-CR#1101943</a></td>
    <td></td>
    <td>Nexus 5XNexus 6PAndroid One</td>
    <td>2016  12  4 </td>
  </tr>
</tbody></table>

<h3 id="id-in-qualcomm-power-driver-(device-specific)">Qualcomm  ()</h3>

<p>Qualcomm </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-10294</td>
    <td>A-33621829<br />
        <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=9e9bc51ffb8a298f0be5befe346762cdb6e1d49c">
QC-CR#1105481</a></td>
    <td></td>
    <td>Nexus 5XNexus 6PPixelPixel XL</td>
    <td>2016  12  14 </td>
  </tr>
</tbody></table>

<h3 id="id-in-qualcomm-led-driver">Qualcomm LED </h3>

<p>Qualcomm LED </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-10295</td>
    <td>A-33781694<br />
        <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=f11ae3df500bc2a093ddffee6ea40da859de0fa9">
QC-CR#1109326</a></td>
    <td></td>
    <td>PixelPixel XL</td>
    <td>2016  12  20 </td>
  </tr>
</tbody></table>

<h3 id="id-in-qualcomm-shared-memory-driver">Qualcomm </h3>

<p>Qualcomm </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-10296</td>
    <td>A-33845464<br />
        <a href="https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=a5e46d8635a2e28463b365aacdeab6750abd0d49">
QC-CR#1109782</a></td>
    <td></td>
    <td>Nexus 5XNexus 6PPixelPixel XLAndroid One</td>
    <td>2016  12  22 </td>
  </tr>
</tbody></table>

<h3 id="id-in-qualcomm-camera-driver">Qualcomm </h3>

<p>Qualcomm </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0628</td>
    <td>A-34230377<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=012e37bf91490c5b59ba2ab68a4d214b632b613f">
QC-CR#1086833</a></td>
    <td></td>
    <td>Nexus 5XNexus 6PixelPixel XL</td>
    <td>2017  1  10 </td>
  </tr>
  <tr>
    <td>CVE-2017-0629</td>
    <td>A-35214296<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=012e37bf91490c5b59ba2ab68a4d214b632b613f">
QC-CR#1086833</a></td>
    <td></td>
    <td>Nexus 5XNexus 6PixelPixel XL</td>
    <td>2017  2  8 </td>
  </tr>
</tbody></table>

<h3 id="id-in-kernel-trace-subsystem"></h3>

<p></p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0630</td>
    <td>A-34277115*<br />
        </td>
    <td></td>
    <td>Nexus 5XNexus 6Nexus 6PNexus 9PixelPixel XLPixel CAndroid OneNexus Player</td>
    <td>2017  1  11 </td>
  </tr>
</tbody></table>

<p>*  Nexus  <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p>

<h3 id="id-in-qualcomm-sound-codec-driver">Qualcomm </h3>

<p>Qualcomm </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-5858</td>
    <td>A-35400153<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=3154eb1d263b9c3eab2c9fa8ebe498390bf5d711">
QC-CR#1096799</a> <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.18/commit/?id=afc5bea71bc8f251dad1104568383019f4923af6">
[2]</a></td>
    <td></td>
    <td>Nexus 5XNexus 6Nexus 6PPixelPixel XLAndroid One</td>
    <td>2017  2  15 </td>
  </tr>
</tbody></table>

<h3 id="id-in-qualcomm-camera-driver-2">Qualcomm </h3>

<p>Qualcomm </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0631</td>
    <td>A-35399756<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=8236d6ebc7e26361ca7078cbeba01509f10941d8">
QC-CR#1093232</a></td>
    <td></td>
    <td>Nexus 5XNexus 6PPixelPixel XLAndroid One</td>
    <td>2017  2  15 </td>
  </tr>
</tbody></table>

<h3 id="id-in-qualcomm-sound-driver">Qualcomm </h3>

<p>Qualcomm </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-5347</td>
    <td>A-35394329<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=f14390f13e62460fc6b05fc0acde0e825374fdb6">
QC-CR#1100878</a></td>
    <td></td>
    <td>Nexus 5XNexus 6Nexus 6PPixelPixel XLAndroid One</td>
    <td>2017  2  15 </td>
  </tr>
</tbody></table>

<h3 id="id-in-qualcomm-spcom-driver">Qualcomm SPCom </h3>

<p>Qualcomm SPCopm </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2016-5854</td>
    <td>A-35392792<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=28d23d4d7999f683b27b6e0c489635265b67a4c9">
QC-CR#1092683</a></td>
    <td></td>
    <td>*</td>
    <td>2017  2  15 </td>
  </tr>
  <tr>
    <td>CVE-2016-5855</td>
    <td>A-35393081<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-4.4/commit/?id=a5edb54e93ba85719091fe2bc426d75fa7059834">
QC-CR#1094143</a></td>
    <td></td>
    <td>*</td>
    <td>2017  2  15 </td>
  </tr>
</tbody></table>

<p>*  Android 7.1.1  Google  ()</p>

<h3 id="id-in-qualcomm-sound-codec-driver-2">Qualcomm </h3>

<p>Qualcomm </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0632</td>
    <td>A-35392586<br />
        <a href="https://source.codeaurora.org/quic/la//kernel/msm-3.10/commit/?id=970d6933e53c1f7ca8c8b67f49147b18505c3b8f">
QC-CR#832915</a></td>
    <td></td>
    <td>Android One</td>
    <td>2017  2  15 </td>
  </tr>
</tbody></table>

<h3 id="id-in-broadcom-wi-fi-driver">Broadcom Wi-Fi </h3>

<p>Broadcom Wi-Fi </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0633</td>
    <td>A-36000515*<br />
        B-RB#117131</td>
    <td></td>
    <td>Nexus 6Nexus 6PNexus 9Pixel CNexus Player</td>
    <td>2017  2  23 </td>
  </tr>
</tbody></table>

<p>*  Nexus  <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p>

<h3 id="id-in-synaptics-touchscreen-driver">Synaptics </h3>

<p>Synaptics </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2017-0634</td>
    <td>A-32511682*<br />
        </td>
    <td></td>
    <td>PixelPixel XL</td>
    <td>Google </td>
  </tr>
</tbody></table>

<p>*  Nexus  <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p>

<h3 id="vulnerabilities-in-qualcomm-components-2">Qualcomm </h3>

<p> Qualcomm  2014  2016  Qualcomm AMSS  Android  Android </p>

<table>
  <colgroup><col width="19%" />
  <col width="20%" />
  <col width="10%" />
  <col width="23%" />
  <col width="17%" />
  </colgroup><tbody><tr>
    <th>CVE</th>
    <th></th>
    <th></th>
    <th> Google </th>
    <th></th>
  </tr>
  <tr>
    <td>CVE-2014-9923</td>
    <td>A-35434045**<br />
        QC-CR#403910</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2014-9924</td>
    <td>A-35434631**<br />
        QC-CR#596102</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2014-9925</td>
    <td>A-35444657**<br />
        QC-CR#638130</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2014-9926</td>
    <td>A-35433784**<br />
        QC-CR#631527</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2014-9927</td>
    <td>A-35433785**<br />
        QC-CR#661111</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2014-9928</td>
    <td>A-35438623**<br />
        QC-CR#696972</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2014-9929</td>
    <td>A-35443954**<br />
        QC-CR#644783</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2014-9930</td>
    <td>A-35432946**<br />
        QC-CR#634637</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2015-9005</td>
    <td>A-36393500**<br />
        QC-CR#741548</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2015-9006</td>
    <td>A-36393450**<br />
        QC-CR#750559</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2015-9007</td>
    <td>A-36393700**<br />
        QC-CR#807173</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2016-10297</td>
    <td>A-36393451**<br />
        QC-CR#1061123</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2014-9941</td>
    <td>A-36385125**<br />
        QC-CR#509915</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2014-9942</td>
    <td>A-36385319**<br />
        QC-CR#533283</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2014-9943</td>
    <td>A-36385219**<br />
        QC-CR#546527</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2014-9944</td>
    <td>A-36384534**<br />
        QC-CR#613175</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2014-9945</td>
    <td>A-36386912**<br />
        QC-CR#623452</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2014-9946</td>
    <td>A-36385281**<br />
        QC-CR#520149</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2014-9947</td>
    <td>A-36392400**<br />
        QC-CR#650540</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2014-9948</td>
    <td>A-36385126**<br />
        QC-CR#650500</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2014-9949</td>
    <td>A-36390608**<br />
        QC-CR#652426</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2014-9950</td>
    <td>A-36385321**<br />
        QC-CR#655530</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2014-9951</td>
    <td>A-36389161**<br />
        QC-CR#525043</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
  <tr>
    <td>CVE-2014-9952</td>
    <td>A-36387019**<br />
        QC-CR#674836</td>
    <td></td>
    <td>***</td>
    <td>Qualcomm </td>
  </tr>
</tbody></table>

<p>* </p>

<p>*  Nexus  <a href="https://developers.google.com/android/nexus/drivers">Google Developers </a></p>

<p>***  Android 7.1.1  Google  ()</p>

<h2 id="common-questions-and-answers"></h2>
<p></p>

<p><strong>1. 
</strong></p>

<p> <a href="https://support.google.com/pixelphone/answer/4457705#pixel_phones&nexus_devices">Pixel  Nexus </a></p>

<ul>
<li>2017  5  1  2017-05-01 </li>
<li>2017  5  5  2017-05-05 
</li>
</ul>

<p></p>
<ul>
<li>[ro.build.version.security_patch]:[2017-05-01]</li>
<li>[ro.build.version.security_patch]:[2017-05-05]</li>
</ul>

<p><strong>2. </strong></p>

<p> Android  Android  Android </p>
<ul>
<li> 2017  5  1 </li>
<li> 2017  5  5  () </li>
</ul>

<p></p>

<p><strong>3.  Google </strong></p>

<p> <a href="#2017-05-01-details">2017-05-01</a>  <a href="#2017-05-05-details">2017-05-05</a>  Google <em></em> Google </p>
<ul>
<li><strong> Google </strong> Pixel  Google <em></em><a href="https://support.google.com/pixelphone/answer/4457705#pixel_phones&nexus_devices"></a>Nexus 5XNexus 6Nexus 6PNexus 9Android OneNexus PlayerPixel CPixel  Pixel XL</li>
<li><strong> Google </strong> Google  Google <em></em> Google </li>
<li><strong> Google </strong> Android 7.0  Google  Google <em></em></li>
</ul>
<p><strong>4. </strong></p>

<p><em></em></p>

<table>
  <tbody><tr>
   <th></th>
   <th></th>
  </tr>
  <tr>
   <td>A-</td>
   <td>Android  ID</td>
  </tr>
  <tr>
   <td>QC-</td>
   <td>Qualcomm </td>
  </tr>
  <tr>
   <td>M-</td>
   <td>MediaTek </td>
  </tr>
  <tr>
   <td>N-</td>
   <td>NVIDIA </td>
  </tr>
  <tr>
   <td>B-</td>
   <td>Broadcom </td>
  </tr>
</tbody></table>
<h2 id="revisions"></h2>
<ul>
<li>2017  5  1 </li>
<li>2017  5  2  AOSP </li>
</ul>

</body></html>