| Max CVSS | 10.0 | Min CVSS | 1.9 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2016-2107 | 2.6 |
The AES-NI implementation in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h does not consider memory allocation during a certain padding check, which allows remote attackers to obtain sensitive cleartext information via a padding-oracle attack against
|
16-02-2024 - 19:19 | 05-05-2016 - 01:59 | |
| CVE-2014-0196 | 6.9 |
The n_tty_write function in drivers/tty/n_tty.c in the Linux kernel through 3.14.3 does not properly manage tty driver access in the "LECHO & !OPOST" case, which allows local users to cause a denial of service (memory corruption and system crash) or
|
09-02-2024 - 19:24 | 07-05-2014 - 10:55 | |
| CVE-2015-8816 | 7.2 |
The hub_activate function in drivers/usb/core/hub.c in the Linux kernel before 4.3.5 does not properly maintain a hub-interface data structure, which allows physically proximate attackers to cause a denial of service (invalid memory access and system
|
01-11-2023 - 14:51 | 27-04-2016 - 17:59 | |
| CVE-2016-2108 | 10.0 |
The ASN.1 implementation in OpenSSL before 1.0.1o and 1.0.2 before 1.0.2c allows remote attackers to execute arbitrary code or cause a denial of service (buffer underflow and memory corruption) via an ANY field in crafted serialized data, aka the "ne
|
13-12-2022 - 12:15 | 05-05-2016 - 01:59 | |
| CVE-2016-2067 | 9.3 |
drivers/gpu/msm/kgsl.c in the MSM graphics driver (aka GPU driver) for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, mishandles the KGSL_MEMFLAGS_GPUREADONLY flag, which a
|
04-08-2020 - 15:10 | 11-07-2016 - 01:59 | |
| CVE-2016-2068 | 6.8 |
The MSM QDSP6 audio driver (aka sound driver) for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, allows attackers to gain privileges or cause a denial of service (integer o
|
31-07-2020 - 14:47 | 11-07-2016 - 01:59 | |
| CVE-2014-9789 | 9.3 |
The (1) alloc and (2) free APIs in arch/arm/mach-msm/qdsp6v2/msm_audio_ion.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 devices do not validate parameters, which allows attackers to gain privileges via a crafted application, a
|
09-04-2019 - 17:06 | 11-07-2016 - 01:59 | |
| CVE-2016-3814 | 4.3 |
The NVIDIA camera driver in Android before 2016-07-05 on Nexus 9 devices allows attackers to obtain sensitive information via a crafted application, aka Android internal bug 28193342.
|
19-10-2017 - 01:30 | 11-07-2016 - 02:00 | |
| CVE-2016-3815 | 4.3 |
The NVIDIA camera driver in Android before 2016-07-05 on Nexus 9 devices allows attackers to obtain sensitive information via a crafted application, aka Android internal bug 28522274.
|
19-10-2017 - 01:30 | 11-07-2016 - 02:00 | |
| CVE-2016-3793 | 9.3 |
The NVIDIA camera driver in Android before 2016-07-05 on Nexus 9 devices allows attackers to gain privileges via a crafted application, aka Android internal bug 28026625.
|
19-10-2017 - 01:30 | 11-07-2016 - 02:00 | |
| CVE-2016-0723 | 5.6 |
Race condition in the tty_ioctl function in drivers/tty/tty_io.c in the Linux kernel through 4.4.1 allows local users to obtain sensitive information from kernel memory or cause a denial of service (use-after-free and system crash) by making a TIOCGE
|
06-12-2016 - 03:05 | 08-02-2016 - 03:59 | |
| CVE-2015-8891 | 9.3 |
Multiple integer overflows in app/aboot/aboot.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 and 7 (2013) devices allow attackers to bypass intended access restrictions via a crafted image, aka Android internal bug 28842418 and
|
28-11-2016 - 19:50 | 11-07-2016 - 01:59 | |
| CVE-2015-8888 | 9.3 |
Integer overflow in app/aboot/aboot.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 devices allows attackers to bypass intended access restrictions via a crafted block count and block size of a sparse header, aka Android internal
|
28-11-2016 - 19:50 | 11-07-2016 - 01:59 | |
| CVE-2015-8892 | 9.3 |
platform/msm_shared/boot_verifier.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5X and 6P devices allows attackers to bypass intended access restrictions via a digest with trailing data, aka Android internal bug 28822807 and Qual
|
28-11-2016 - 19:50 | 11-07-2016 - 01:59 | |
| CVE-2015-8890 | 9.3 |
platform/msm_shared/partition_parser.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 and 7 (2013) devices does not validate certain GUID Partition Table (GPT) data, which allows attackers to bypass intended access restrictions vi
|
28-11-2016 - 19:50 | 11-07-2016 - 01:59 | |
| CVE-2015-8889 | 9.3 |
The aboot implementation in the Qualcomm components in Android before 2016-07-05 on Nexus 6P devices omits the recovery PIN feature, which has unspecified impact and attack vectors, aka Android internal bug 28822677 and Qualcomm internal bug CR804067
|
28-11-2016 - 19:50 | 11-07-2016 - 01:59 | |
| CVE-2014-9801 | 9.3 |
Multiple integer overflows in lib/libfdt/fdt_rw.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 devices allow attackers to gain privileges via a crafted application, aka Android internal bug 28822060 and Qualcomm internal bug CR7
|
28-11-2016 - 19:15 | 11-07-2016 - 01:59 | |
| CVE-2014-9800 | 9.3 |
Integer overflow in lib/heap/heap.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 and 7 (2013) devices allows attackers to gain privileges via a crafted application, aka Android internal bug 28822150 and Qualcomm internal bug CR6
|
28-11-2016 - 19:15 | 11-07-2016 - 01:59 | |
| CVE-2014-9802 | 9.3 |
Multiple integer overflows in lib/libfdt/fdt.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 and 7 (2013) devices allow attackers to gain privileges via a crafted application, aka Android internal bug 28821965 and Qualcomm intern
|
28-11-2016 - 19:15 | 11-07-2016 - 01:59 | |
| CVE-2014-9793 | 9.3 |
platform/msm_shared/mmc.c in the Qualcomm components in Android before 2016-07-05 on Nexus 7 (2013) devices mishandles the power-on write-protect feature, which allows attackers to gain privileges via a crafted application, aka Android internal bug 2
|
28-11-2016 - 19:14 | 11-07-2016 - 01:59 | |
| CVE-2014-9785 | 9.3 |
drivers/misc/qseecom.c in the Qualcomm components in Android before 2016-07-05 on Nexus 7 (2013) devices does not validate addresses before copying data, which allows attackers to gain privileges via a crafted application, aka Android internal bug 28
|
28-11-2016 - 19:14 | 11-07-2016 - 01:59 | |
| CVE-2014-9786 | 9.3 |
Heap-based buffer overflow in drivers/media/platform/msm/camera_v2/sensor/actuator/msm_actuator.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 and 7 (2013) devices allows attackers to gain privileges via a crafted application, a
|
28-11-2016 - 19:14 | 11-07-2016 - 01:59 | |
| CVE-2014-9780 | 9.3 |
drivers/video/msm/mdss/mdp3_ctrl.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5, 5X, and 6P devices does not validate start and length values, which allows attackers to gain privileges via a crafted application, aka Android inte
|
28-11-2016 - 19:14 | 11-07-2016 - 01:59 | |
| CVE-2014-9788 | 9.3 |
Multiple buffer overflows in the voice drivers in the Qualcomm components in Android before 2016-07-05 on Nexus 5 devices allow attackers to gain privileges via a crafted application, aka Android internal bug 28573112 and Qualcomm internal bug CR5488
|
28-11-2016 - 19:14 | 11-07-2016 - 01:59 | |
| CVE-2014-9784 | 9.3 |
Multiple buffer overflows in drivers/char/diag/diag_debugfs.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 and 7 (2013) devices allow attackers to gain privileges via a crafted application, aka Android internal bug 28442449 and
|
28-11-2016 - 19:14 | 11-07-2016 - 01:59 | |
| CVE-2014-9796 | 9.3 |
app/aboot/aboot.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 and 7 (2013) devices does not validate the page size in the kernel header, which allows attackers to bypass intended access restrictions via a crafted boot image, ak
|
28-11-2016 - 19:14 | 11-07-2016 - 01:59 | |
| CVE-2014-9779 | 9.3 |
arch/arm/mach-msm/qdsp6v2/msm_audio_ion.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 devices allows attackers to obtain sensitive information from kernel memory via a crafted offset, aka Android internal bug 28598347 and Qualc
|
28-11-2016 - 19:14 | 11-07-2016 - 01:59 | |
| CVE-2014-9781 | 9.3 |
Buffer overflow in drivers/video/fbcmap.c in the Qualcomm components in Android before 2016-07-05 on Nexus 7 (2013) devices allows attackers to gain privileges via a crafted application, aka Android internal bug 28410333 and Qualcomm internal bug CR5
|
28-11-2016 - 19:14 | 11-07-2016 - 01:59 | |
| CVE-2014-9777 | 9.3 |
The vid_dec_set_meta_buffers function in drivers/video/msm/vidc/common/dec/vdec.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 and 7 (2013) devices does not validate the number of buffers, which allows attackers to gain privileg
|
28-11-2016 - 19:14 | 11-07-2016 - 01:59 | |
| CVE-2014-9778 | 9.3 |
The vid_dec_set_h264_mv_buffers function in drivers/video/msm/vidc/common/dec/vdec.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 and 7 (2013) devices does not validate the number of buffers, which allows attackers to gain privi
|
28-11-2016 - 19:14 | 11-07-2016 - 01:59 | |
| CVE-2014-9792 | 9.3 |
arch/arm/mach-msm/ipc_router.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 devices uses an incorrect integer data type, which allows attackers to gain privileges via a crafted application, aka Android internal bug 28769399 and
|
28-11-2016 - 19:14 | 11-07-2016 - 01:59 | |
| CVE-2014-9790 | 9.3 |
drivers/mmc/core/debugfs.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 and 7 (2013) devices does not validate pointers used in read and write operations, which allows attackers to gain privileges via a crafted application, aka
|
28-11-2016 - 19:14 | 11-07-2016 - 01:59 | |
| CVE-2014-9782 | 9.3 |
drivers/media/platform/msm/camera_v2/sensor/actuator/msm_actuator.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 and 7 (2013) devices does not validate direction and step parameters, which allows attackers to gain privileges via
|
28-11-2016 - 19:14 | 11-07-2016 - 01:59 | |
| CVE-2014-9799 | 9.3 |
The makefile in the Qualcomm components in Android before 2016-07-05 on Nexus 5 and 7 (2013) devices omits the -fno-strict-overflow option to gcc, which might allow attackers to gain privileges via a crafted application that leverages incorrect compi
|
28-11-2016 - 19:14 | 11-07-2016 - 01:59 | |
| CVE-2014-9795 | 10.0 |
app/aboot/aboot.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 devices does not properly check for an integer overflow, which allows attackers to bypass intended access restrictions via crafted start and size values, aka Android
|
28-11-2016 - 19:14 | 11-07-2016 - 01:59 | |
| CVE-2014-9787 | 9.3 |
Integer overflow in drivers/misc/qseecom.c in the Qualcomm components in Android before 2016-07-05 on Nexus 7 (2013) devices allows attackers to gain privileges via a crafted application, aka Android internal bug 28571496 and Qualcomm internal bug CR
|
28-11-2016 - 19:14 | 11-07-2016 - 01:59 | |
| CVE-2014-9783 | 9.3 |
drivers/media/platform/msm/camera_v2/sensor/cci/msm_cci.c in the Qualcomm components in Android before 2016-07-05 on Nexus 7 (2013) devices does not validate certain values, which allows attackers to gain privileges via a crafted application, aka And
|
28-11-2016 - 19:14 | 11-07-2016 - 01:59 | |
| CVE-2016-3747 | 10.0 |
Use-after-free vulnerability in the mm-video-v4l2 venc component in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01 allows attackers to gain privileges via a crafted application, as demonstra
|
14-07-2016 - 11:52 | 11-07-2016 - 01:59 | |
| CVE-2014-0974 | 1.9 |
The boot_linux_from_mmc function in app/aboot/aboot.c in the Little Kernel (LK) bootloader, as distributed with Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, does not properly validate a certain address v
|
13-07-2016 - 18:27 | 25-08-2014 - 01:55 | |
| CVE-2014-0973 | 7.2 |
The image_verify function in platform/msm_shared/image_verify.c in the Little Kernel (LK) bootloader, as distributed with Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, does not check whether a certain dig
|
13-07-2016 - 18:26 | 25-08-2014 - 01:55 | |
| CVE-2016-3795 | 9.3 |
The MediaTek power driver in Android before 2016-07-05 on Android One devices allows attackers to gain privileges via a crafted application, aka Android internal bug 28085222 and MediaTek internal bug ALPS02677244.
|
12-07-2016 - 18:09 | 11-07-2016 - 02:00 | |
| CVE-2016-3771 | 9.3 |
The MediaTek drivers in Android before 2016-07-05 on Android One devices allow attackers to gain privileges via a crafted application, aka Android internal bug 29007611 and MediaTek internal bug ALPS02703102.
|
12-07-2016 - 18:09 | 11-07-2016 - 02:00 | |
| CVE-2016-3797 | 9.3 |
The Qualcomm Wi-Fi driver in Android before 2016-07-05 on Nexus 5X devices allows attackers to gain privileges via a crafted application, aka Android internal bug 28085680 and Qualcomm internal bug CR1001450.
|
12-07-2016 - 18:00 | 11-07-2016 - 02:00 | |
| CVE-2016-3807 | 9.3 |
The serial peripheral interface driver in Android before 2016-07-05 on Nexus 5X and 6P devices allows attackers to gain privileges via a crafted application, aka internal bug 28402196.
|
12-07-2016 - 17:58 | 11-07-2016 - 02:00 | |
| CVE-2016-3809 | 4.3 |
The networking component in Android before 2016-07-05 on Android One, Nexus 5, Nexus 5X, Nexus 6, Nexus 6P, Nexus 7 (2013), Nexus 9, Nexus Player, and Pixel C devices allows attackers to obtain sensitive information via a crafted application, aka int
|
12-07-2016 - 17:57 | 11-07-2016 - 02:00 | |
| CVE-2016-3812 | 4.3 |
The MediaTek video codec driver in Android before 2016-07-05 on Android One devices allows attackers to obtain sensitive information via a crafted application, aka Android internal bug 28174833 and MediaTek internal bug ALPS02688832.
|
12-07-2016 - 17:57 | 11-07-2016 - 02:00 | |
| CVE-2016-3805 | 9.3 |
The MediaTek power management driver in Android before 2016-07-05 on Android One devices allows attackers to gain privileges via a crafted application, aka Android internal bug 28333002 and MediaTek internal bug ALPS02694412.
|
12-07-2016 - 17:54 | 11-07-2016 - 02:00 | |
| CVE-2016-3810 | 4.3 |
The MediaTek Wi-Fi driver in Android before 2016-07-05 on Android One devices allows attackers to obtain sensitive information via a crafted application, aka Android internal bug 28175522 and MediaTek internal bug ALPS02694389.
|
12-07-2016 - 17:53 | 11-07-2016 - 02:00 | |
| CVE-2016-3811 | 9.3 |
The kernel video driver in Android before 2016-07-05 on Nexus 9 devices allows attackers to gain privileges via a crafted application, aka internal bug 28447556.
|
12-07-2016 - 17:52 | 11-07-2016 - 02:00 | |
| CVE-2016-3799 | 9.3 |
The MediaTek video driver in Android before 2016-07-05 on Android One devices allows attackers to gain privileges via a crafted application, aka Android internal bug 28175025 and MediaTek internal bug ALPS02693738.
|
12-07-2016 - 17:52 | 11-07-2016 - 02:00 | |
| CVE-2016-3813 | 4.3 |
The Qualcomm USB driver in Android before 2016-07-05 on Nexus 5, 5X, 6, and 6P devices allows attackers to obtain sensitive information via a crafted application, aka Android internal bug 28172322 and Qualcomm internal bug CR1010222.
|
12-07-2016 - 17:52 | 11-07-2016 - 02:00 | |
| CVE-2016-3798 | 9.3 |
The MediaTek hardware sensor driver in Android before 2016-07-05 on Android One devices allows attackers to gain privileges via a crafted application, aka Android internal bug 28174490 and MediaTek internal bug ALPS02703105.
|
12-07-2016 - 17:51 | 11-07-2016 - 02:00 | |
| CVE-2016-3804 | 9.3 |
The MediaTek power management driver in Android before 2016-07-05 on Android One devices allows attackers to gain privileges via a crafted application, aka Android internal bug 28332766 and MediaTek internal bug ALPS02694410.
|
12-07-2016 - 17:50 | 11-07-2016 - 02:00 | |
| CVE-2016-3800 | 9.3 |
The MediaTek video driver in Android before 2016-07-05 on Android One devices allows attackers to gain privileges via a crafted application, aka Android internal bug 28175027 and MediaTek internal bug ALPS02693739.
|
12-07-2016 - 17:50 | 11-07-2016 - 02:00 | |
| CVE-2016-3802 | 9.3 |
The kernel filesystem implementation in Android before 2016-07-05 on Nexus 9 devices allows attackers to gain privileges via a crafted application, aka internal bug 28271368.
|
12-07-2016 - 17:49 | 11-07-2016 - 02:00 | |
| CVE-2016-3801 | 9.3 |
The MediaTek GPS driver in Android before 2016-07-05 on Android One devices allows attackers to gain privileges via a crafted application, aka Android internal bug 28174914 and MediaTek internal bug ALPS02688853.
|
12-07-2016 - 17:49 | 11-07-2016 - 02:00 | |
| CVE-2016-3803 | 9.3 |
The kernel filesystem implementation in Android before 2016-07-05 on Nexus 5X and 6P devices allows attackers to gain privileges via a crafted application, aka internal bug 28588434.
|
12-07-2016 - 17:48 | 11-07-2016 - 02:00 | |
| CVE-2016-3818 | 7.1 |
libc in Android 4.x before 4.4.4 allows remote attackers to cause a denial of service (device hang or reboot) via a crafted file, aka internal bug 28740702.
|
12-07-2016 - 17:41 | 11-07-2016 - 02:00 | |
| CVE-2016-3816 | 4.3 |
The MediaTek display driver in Android before 2016-07-05 on Android One devices allows attackers to obtain sensitive information via a crafted application, aka Android internal bug 28402240.
|
12-07-2016 - 17:40 | 11-07-2016 - 02:00 | |
| CVE-2016-3808 | 9.3 |
The serial peripheral interface driver in Android before 2016-07-05 on Pixel C devices allows attackers to gain privileges via a crafted application, aka internal bug 28430009.
|
12-07-2016 - 17:40 | 11-07-2016 - 02:00 | |
| CVE-2016-3806 | 9.3 |
The MediaTek display driver in Android before 2016-07-05 on Android One devices allows attackers to gain privileges via a crafted application, aka Android internal bug 28402341 and MediaTek internal bug ALPS02715341.
|
12-07-2016 - 17:39 | 11-07-2016 - 02:00 | |
| CVE-2016-3792 | 9.3 |
CORE/HDD/src/wlan_hdd_hostapd.c in the Qualcomm Wi-Fi driver in Android before 2016-07-05 on Nexus 7 (2013) devices mishandles userspace data copying, which allows attackers to gain privileges via a crafted application, aka Android internal bug 27725
|
12-07-2016 - 17:36 | 11-07-2016 - 02:00 | |
| CVE-2016-3772 | 9.3 |
The MediaTek drivers in Android before 2016-07-05 on Android One devices allow attackers to gain privileges via a crafted application, aka Android internal bug 29008188 and MediaTek internal bug ALPS02703102.
|
12-07-2016 - 17:36 | 11-07-2016 - 02:00 | |
| CVE-2016-3770 | 9.3 |
The MediaTek drivers in Android before 2016-07-05 on Android One devices allow attackers to gain privileges via a crafted application, aka Android internal bug 28346752 and MediaTek internal bug ALPS02703102.
|
12-07-2016 - 17:31 | 11-07-2016 - 02:00 | |
| CVE-2016-3796 | 9.3 |
The MediaTek power driver in Android before 2016-07-05 on Android One devices allows attackers to gain privileges via a crafted application, aka Android internal bug 29008443 and MediaTek internal bug ALPS02677244.
|
12-07-2016 - 17:16 | 11-07-2016 - 02:00 | |
| CVE-2016-3767 | 9.3 |
The MediaTek Wi-Fi driver in Android before 2016-07-05 on Android One devices allows attackers to gain privileges via a crafted application, aka Android internal bug 28169363 and MediaTek internal bug ALPS02689526.
|
12-07-2016 - 17:14 | 11-07-2016 - 02:00 | |
| CVE-2016-3766 | 7.8 |
MPEG4Extractor.cpp in libstagefright in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01 does not check whether memory allocation succeeds, which allows remote attackers to cause a denial of s
|
12-07-2016 - 17:13 | 11-07-2016 - 02:00 | |
| CVE-2016-3765 | 6.4 |
decoder/impeg2d_bitstream.c in mediaserver in Android 6.x before 2016-07-01 allows attackers to obtain sensitive information from process memory or cause a denial of service (out-of-bounds read) via a crafted application, aka internal bug 28168413.
|
12-07-2016 - 17:12 | 11-07-2016 - 02:00 | |
| CVE-2016-2457 | 2.1 |
server/pm/UserManagerService.java in Wi-Fi in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-05-01 allows attackers to bypass intended restrictions on Wi-Fi configuration changes by leveraging guest access, aka internal bug 27411
|
12-07-2016 - 17:11 | 09-05-2016 - 10:59 | |
| CVE-2016-3764 | 5.0 |
media/libmediaplayerservice/MetadataRetrieverClient.cpp in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01 allows attackers to obtain sensitive pointer information via a crafted application,
|
12-07-2016 - 17:11 | 11-07-2016 - 02:00 | |
| CVE-2016-3775 | 9.3 |
The kernel filesystem implementation in Android before 2016-07-05 on Nexus 5X, Nexus 6, Nexus 6P, Nexus Player, and Pixel C devices allows attackers to gain privileges via a crafted application, aka internal bug 28588279.
|
12-07-2016 - 17:06 | 11-07-2016 - 02:00 | |
| CVE-2016-3773 | 9.3 |
The MediaTek drivers in Android before 2016-07-05 on Android One devices allow attackers to gain privileges via a crafted application, aka Android internal bug 29008363 and MediaTek internal bug ALPS02703102.
|
12-07-2016 - 14:58 | 11-07-2016 - 02:00 | |
| CVE-2016-3768 | 9.3 |
The Qualcomm performance component in Android before 2016-07-05 on Nexus 5, 6, 5X, 6P, and 7 (2013) devices allows attackers to gain privileges via a crafted application, aka Android internal bug 28172137 and Qualcomm internal bug CR1010644.
|
12-07-2016 - 14:57 | 11-07-2016 - 02:00 | |
| CVE-2016-3774 | 9.3 |
The MediaTek drivers in Android before 2016-07-05 on Android One devices allow attackers to gain privileges via a crafted application, aka Android internal bug 29008609 and MediaTek internal bug ALPS02703102.
|
12-07-2016 - 14:53 | 11-07-2016 - 02:00 | |
| CVE-2016-3769 | 9.3 |
The NVIDIA video driver in Android before 2016-07-05 on Nexus 9 devices allows attackers to gain privileges via a crafted application, aka Android internal bug 28376656.
|
12-07-2016 - 14:51 | 11-07-2016 - 02:00 | |
| CVE-2016-3763 | 5.0 |
net/PacProxySelector.java in the Proxy Auto-Config (PAC) feature in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01 does not ensure that URL information is restricted to a scheme, host, and port, which allo
|
12-07-2016 - 14:32 | 11-07-2016 - 02:00 | |
| CVE-2016-3762 | 9.3 |
The sockets subsystem in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01 allows attackers to gain privileges via a crafted application that uses (1) the AF_MSM_IPC socket class or (2) another socket class that is unrecognize
|
12-07-2016 - 14:25 | 11-07-2016 - 02:00 | |
| CVE-2016-3761 | 2.1 |
NfcService.java in NFC in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01 allows attackers to obtain sensitive foreground-application information via a crafted background application, aka internal bug 28300
|
12-07-2016 - 14:10 | 11-07-2016 - 02:00 | |
| CVE-2016-3760 | 5.4 |
Bluetooth in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01 allows local users to gain privileges by establishing a pairing that remains present during a session of the primary user, aka internal bug 27410683.
|
12-07-2016 - 14:05 | 11-07-2016 - 02:00 | |
| CVE-2016-3758 | 9.3 |
Multiple buffer overflows in libdex/OptInvocation.cpp in DexClassLoader in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01 allow attackers to gain privileges via a crafted application that provides a long f
|
12-07-2016 - 14:03 | 11-07-2016 - 01:59 | |
| CVE-2016-3759 | 5.0 |
The Framework APIs in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01 allow attackers to read backup data via a crafted application that leverages priv-app access to insert a backup transport, aka internal bug 28406080.
|
12-07-2016 - 13:57 | 11-07-2016 - 01:59 | |
| CVE-2016-2508 | 9.3 |
media/libmediaplayerservice/nuplayer/GenericSource.cpp in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01 does not validate certain track data, which allows remote attackers to execute arbitr
|
12-07-2016 - 13:56 | 11-07-2016 - 01:59 | |
| CVE-2016-2507 | 9.3 |
Integer overflow in codecs/on2/h264dec/source/h264bsd_storage.c in libstagefright in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01 allows remote attackers to execute arbitrary code or cause
|
12-07-2016 - 13:55 | 11-07-2016 - 01:59 | |
| CVE-2016-2505 | 9.3 |
mpeg2ts/ATSParser.cpp in libstagefright in mediaserver in Android 6.x before 2016-07-01 does not validate a certain section length, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted
|
12-07-2016 - 13:53 | 11-07-2016 - 01:59 | |
| CVE-2014-9803 | 9.3 |
arch/arm64/include/asm/pgtable.h in the Linux kernel before 3.15-rc5-next-20140519, as used in Android before 2016-07-05 on Nexus 5X and 6P devices, mishandles execute-only pages, which allows attackers to gain privileges via a crafted application, a
|
12-07-2016 - 13:52 | 11-07-2016 - 01:59 | |
| CVE-2016-2502 | 9.3 |
drivers/usb/gadget/f_serial.c in the Qualcomm USB driver in Android before 2016-07-05 on Nexus 5X and 6P devices allows attackers to gain privileges via a large size in a GSER_IOCTL ioctl call, aka Android internal bug 27657963 and Qualcomm internal
|
11-07-2016 - 18:53 | 11-07-2016 - 01:59 | |
| CVE-2016-3742 | 7.5 |
decoder/ih264d_process_intra_mb.c in mediaserver in Android 6.x before 2016-07-01 mishandles intra mode, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal b
|
11-07-2016 - 18:46 | 11-07-2016 - 01:59 | |
| CVE-2016-2501 | 9.3 |
The Qualcomm camera driver in Android before 2016-07-05 on Nexus 5X, 6, 6P, and 7 (2013) devices allows attackers to gain privileges via a crafted application, aka Android internal bug 27890772 and Qualcomm internal bug CR1001092.
|
11-07-2016 - 18:45 | 11-07-2016 - 01:59 | |
| CVE-2016-3749 | 4.6 |
server/LockSettingsService.java in LockSettingsService in Android 6.x before 2016-07-01 allows attackers to modify the screen-lock password or pattern via a crafted application, aka internal bug 28163930.
|
11-07-2016 - 18:44 | 11-07-2016 - 01:59 | |
| CVE-2016-2503 | 9.3 |
The Qualcomm GPU driver in Android before 2016-07-05 on Nexus 5X and 6P devices allows attackers to gain privileges via a crafted application, aka Android internal bug 28084795 and Qualcomm internal bug CR1006067.
|
11-07-2016 - 18:43 | 11-07-2016 - 01:59 | |
| CVE-2016-3752 | 7.5 |
internal/app/ChooserActivity.java in the ChooserTarget service in Android 6.x before 2016-07-01 mishandles target security checks, which allows attackers to gain privileges via a crafted application, aka internal bug 28384423.
|
11-07-2016 - 18:30 | 11-07-2016 - 01:59 | |
| CVE-2016-3744 | 4.3 |
Buffer overflow in the create_pbuf function in btif/src/btif_hh.c in Bluetooth in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01 allows remote attackers to gain privileges via a crafted pairing operation,
|
11-07-2016 - 18:28 | 11-07-2016 - 01:59 | |
| CVE-2016-3748 | 7.5 |
The sockets subsystem in Android 6.x before 2016-07-01 allows attackers to bypass intended system-call restrictions via a crafted application that makes an ioctl call, aka internal bug 28171804.
|
11-07-2016 - 18:28 | 11-07-2016 - 01:59 | |
| CVE-2016-3743 | 7.5 |
decoder/ih264d_api.c in mediaserver in Android 6.x before 2016-07-01 does not initialize certain data structures, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka i
|
11-07-2016 - 18:24 | 11-07-2016 - 01:59 | |
| CVE-2016-3741 | 7.5 |
The H.264 decoder in mediaserver in Android 6.x before 2016-07-01 does not initialize certain slice data, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal
|
11-07-2016 - 18:23 | 11-07-2016 - 01:59 | |
| CVE-2016-3755 | 7.8 |
decoder/ih264d_parse_pslice.c in mediaserver in Android 6.x before 2016-07-01 does not properly select concealment frames, which allows remote attackers to cause a denial of service (device hang or reboot) via a crafted media file, aka internal bug 2
|
11-07-2016 - 17:57 | 11-07-2016 - 01:59 | |
| CVE-2016-3751 | 7.5 |
Unspecified vulnerability in libpng before 1.6.20, as used in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01, allows attackers to gain privileges via a crafted application, as demonstrated by obtaining Sig
|
11-07-2016 - 17:52 | 11-07-2016 - 01:59 | |
| CVE-2016-3753 | 5.0 |
mediaserver in Android 4.x before 4.4.4 allows remote attackers to obtain sensitive information via unspecified vectors, aka internal bug 27210135.
|
11-07-2016 - 17:43 | 11-07-2016 - 01:59 | |
| CVE-2016-3750 | 7.5 |
libs/binder/Parcel.cpp in the Parcels Framework APIs in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01 does not validate the return value of the dup system call, which allows attackers to bypass an isolati
|
11-07-2016 - 17:41 | 11-07-2016 - 01:59 | |
| CVE-2016-3756 | 7.8 |
Tremolo/res012.c in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01 does not validate the number of partitions, which allows remote attackers to cause a denial of service (device hang or rebo
|
11-07-2016 - 17:41 | 11-07-2016 - 01:59 | |
| CVE-2016-3746 | 7.5 |
Use-after-free vulnerability in the mm-video-v4l2 vdec component in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01 allows attackers to gain privileges via a crafted application, as demonstra
|
11-07-2016 - 17:39 | 11-07-2016 - 01:59 | |
| CVE-2016-3757 | 5.9 |
The print_maps function in toolbox/lsof.c in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01 allows user-assisted attackers to gain privileges via a crafted application that attempts to list a long name of
|
11-07-2016 - 17:25 | 11-07-2016 - 01:59 | |
| CVE-2016-3745 | 7.5 |
Multiple buffer overflows in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01 allow attackers to gain privileges via a crafted application that provides an AudioEffect reply, as demonstrated b
|
11-07-2016 - 17:23 | 11-07-2016 - 01:59 | |
| CVE-2016-2506 | 10.0 |
DRMExtractor.cpp in libstagefright in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01 does not validate a certain offset value, which allows remote attackers to execute arbitrary code or caus
|
11-07-2016 - 17:22 | 11-07-2016 - 01:59 | |
| CVE-2014-9798 | 7.1 |
platform/msm_shared/dev_tree.c in the Qualcomm bootloader in Android before 2016-07-05 on Nexus 5 devices does not check the relationship between tags addresses and aboot addresses, which allows attackers to cause a denial of service (OS outage) via
|
11-07-2016 - 17:11 | 11-07-2016 - 01:59 | |
| CVE-2015-8893 | 4.3 |
app/aboot/aboot.c in the Qualcomm bootloader in Android before 2016-07-05 on Nexus 5 and 7 (2013) devices allows attackers to cause a denial of service (OS outage or buffer over-read) via a crafted application, aka Android internal bug 28822690 and Q
|
11-07-2016 - 14:36 | 11-07-2016 - 01:59 | |
| CVE-2013-7457 | 10.0 |
Unspecified vulnerability in the Qualcomm components in Android before 2016-07-05 allows attackers to gain privileges via a crafted application.
|
11-07-2016 - 14:33 | 11-07-2016 - 01:59 | |
| CVE-2016-3754 | 7.8 |
mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01 does not limit process-memory usage, which allows remote attackers to cause a denial of service (device hang or reboot) via a crafted media fil
|
11-07-2016 - 14:24 | 11-07-2016 - 01:59 |