From 3ef1ef078ef07fcae765883a088e162e359bf9ad Mon Sep 17 00:00:00 2001 From: Danielle Roberts Date: Wed, 4 Jan 2017 15:03:56 -0800 Subject: Docs: Add AOSP links to January 2017 security bulletin Test: make online-sac-docs on staging 13 Bug: 33808338 Change-Id: I3e95b80284f6de41ac51fb5ae92e3d93533af571 --- src/security/bulletin/2017-01-01.jd | 663 +++++++++++++++++++----------------- 1 file changed, 346 insertions(+), 317 deletions(-) diff --git a/src/security/bulletin/2017-01-01.jd b/src/security/bulletin/2017-01-01.jd index 9a55fbaf..89a6e2b7 100644 --- a/src/security/bulletin/2017-01-01.jd +++ b/src/security/bulletin/2017-01-01.jd @@ -16,7 +16,7 @@ page.title=Android Security Bulletin—January 2017 See the License for the specific language governing permissions and limitations under the License. --> -

Published January 03, 2017

+

Published January 03, 2017 | Updated January 04, 2017

The Android Security Bulletin contains details of security vulnerabilities affecting Android devices. Alongside the bulletin, we have released a security @@ -30,10 +30,9 @@ and Nexus update schedule to learn how to check a device's security patch level.

Partners were notified of the issues described in the bulletin on December 05, -2016 or earlier. Source code patches for these issues will be released to the -Android Open Source Project (AOSP) repository in the next 48 hours. We will -revise this bulletin with the AOSP links when they are available. This bulletin -also includes links to patches outside of AOSP.

+2016 or earlier. Source code patches for these issues have been released to the +Android Open Source Project (AOSP) repository and linked from this bulletin. +This bulletin also includes links to patches outside of AOSP.

The most severe of these issues is a Critical security vulnerability that could enable remote code execution on an affected device through multiple methods such @@ -586,7 +585,8 @@ remote code execution within the context of the Mediaserver process. CVE-2017-0381 - A-31607432 + + A-31607432 Critical All 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1 @@ -598,9 +598,9 @@ remote code execution within the context of the Mediaserver process.

Remote code execution vulnerability in c-ares

A remote code execution vulnerability in c-ares could enable an attacker using -a specially crafted request to execute arbitrary code in the context of a -privileged process. This issue is rated as Critical due to the possibility of -remote code execution in applications that use this library. +a specially crafted request to execute arbitrary code in the context of an +unprivileged process. This issue is rated as High due to the possibility of +remote code execution in an application that uses this library.

@@ -620,7 +620,8 @@ remote code execution in applications that use this library. - + @@ -629,8 +630,8 @@ remote code execution in applications that use this library.
CVE-2016-5180A-32205736 + A-32205736 High All 7.0
-

Remote code execution vulnerability in -Framesequence

+

Remote code +execution vulnerability in Framesequence

A remote code execution vulnerability in the Framesequence library could enable an attacker using a specially crafted file to execute arbitrary code in the @@ -638,7 +639,6 @@ context of an unprivileged process. This issue is rated as High due to the possibility of remote code execution in an application that uses the Framesequence library.

- @@ -647,34 +647,32 @@ Framesequence library. - - - - - - + + + + + + - - - - - - + + + + + +
CVEReferencesSeverityUpdated Google devicesUpdated AOSP versionsDate reportedCVEReferencesSeverityUpdated Google devicesUpdated AOSP versionsDate reported
CVE-2017-0382A-32338390HighAll5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1Oct 21, 2016CVE-2017-0382 + A-32338390HighAll5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1Oct 21, 2016
- - -

Elevation of privilege vulnerability in -Framework APIs

+

Elevation of +privilege vulnerability in Framework APIs

An elevation of privilege vulnerability in the Framework APIs could enable a local malicious application to execute arbitrary code within the context of a -privileged process. This issue is rated as High because it could be used to -gain local access to elevated capabilities, which are not normally accessible -to a third-party application. +privileged process. This issue is rated as High because it could be used to gain +local access to elevated capabilities, which are not normally accessible to a +third-party application.

- @@ -683,34 +681,32 @@ to a third-party application. - - - - - - + + + + + + - - - - - - + + + + + +
CVEReferencesSeverityUpdated Google devicesUpdated AOSP versionsDate reportedCVEReferencesSeverityUpdated Google devicesUpdated AOSP versionsDate reported
CVE-2017-0383A-31677614HighAll7.0, 7.1Sep 21, 2016CVE-2017-0383 + A-31677614HighAll7.0, 7.1Sep 21, 2016
- - -

Elevation of privilege vulnerability in -Audioserver

+

Elevation of +privilege vulnerability in Audioserver

An elevation of privilege vulnerability in Audioserver could enable a local malicious application to execute arbitrary code within the context of a -privileged process. This issue is rated as High because it could be used to -gain local access to elevated capabilities, which are not normally accessible -to a third-party application. +privileged process. This issue is rated as High because it could be used to gain +local access to elevated capabilities, which are not normally accessible to a +third-party application.

- @@ -719,41 +715,41 @@ to a third-party application. - - - - - - + + + + + + - - - - - - + + + + + + - - - - - - + + + + + +
CVEReferencesSeverityUpdated Google devicesUpdated AOSP versionsDate reportedCVEReferencesSeverityUpdated Google devicesUpdated AOSP versionsDate reported
CVE-2017-0384A-32095626HighAll4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1Oct 11, 2016CVE-2017-0384 + A-32095626HighAll4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1Oct 11, 2016
CVE-2017-0385A-32585400HighAll4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1Oct 11, 2016CVE-2017-0385 + A-32585400HighAll4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1Oct 11, 2016
- - -

Elevation of privilege vulnerability in libnl

+

Elevation of privilege +vulnerability in libnl

An elevation of privilege vulnerability in the libnl library could enable a local malicious application to execute arbitrary code within the context of a -privileged process. This issue is rated as High because it could be used to -gain local access to elevated capabilities, which are not normally accessible -to a third-party application. +privileged process. This issue is rated as High because it could be used to gain +local access to elevated capabilities, which are not normally accessible to a +third-party application.

- @@ -762,34 +758,32 @@ to a third-party application. - - - - - - + + + + + + - - - - - - + + + + + +
CVEReferencesSeverityUpdated Google devicesUpdated AOSP versionsDate reportedCVEReferencesSeverityUpdated Google devicesUpdated AOSP versionsDate reported
CVE-2017-0386A-32255299HighAll5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1Oct 18, 2016CVE-2017-0386 + A-32255299HighAll5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1Oct 18, 2016
- - -

Elevation of privilege vulnerability in -Mediaserver

+

Elevation of +privilege vulnerability in Mediaserver

An elevation of privilege vulnerability in Mediaserver could enable a local malicious application to execute arbitrary code within the context of a -privileged process. This issue is rated as High because it could be used to -gain local access to elevated capabilities, which are not normally accessible -to a third-party application. +privileged process. This issue is rated as High because it could be used to gain +local access to elevated capabilities, which are not normally accessible to a +third-party application.

- @@ -798,24 +792,23 @@ to a third-party application. - - - - - - + + + + + + - - - - - - + + + + + +
CVEReferencesSeverityUpdated Google devicesUpdated AOSP versionsDate reportedCVEReferencesSeverityUpdated Google devicesUpdated AOSP versionsDate reported
CVE-2017-0387A-32660278HighAll5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1Nov 4, 2016CVE-2017-0387 + A-32660278HighAll5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1Nov 4, 2016
- -

Information disclosure vulnerability in External Storage Provider

@@ -824,7 +817,6 @@ enable a local secondary user to read data from an external storage SD card inserted by the primary user. This issue is rated as High because it could be used to access data without permission.

- @@ -833,33 +825,31 @@ used to access data without permission. - - - - - - + + + + + + - - - - - - + + + + + +
CVEReferencesSeverityUpdated Google devicesUpdated AOSP versionsDate reportedCVEReferencesSeverityUpdated Google devicesUpdated AOSP versionsDate reported
CVE-2017-0388A-32523490HighAll6.0, 6.0.1, 7.0, 7.1Google internalCVE-2017-0388 + A-32523490HighAll6.0, 6.0.1, 7.0, 7.1Google internal
- - -

Denial of service vulnerability in core -networking

+

Denial of service +vulnerability in core networking

A denial of service vulnerability in core networking could enable a remote attacker to use specially crafted network packet to cause a device hang or reboot. This issue is rated as High due to the possibility of remote denial of service.

- @@ -868,31 +858,31 @@ service. - - - - - - + + + + + + - - - - - - + + + + + +
CVEReferencesSeverityUpdated Google devicesUpdated AOSP versionsDate reportedCVEReferencesSeverityUpdated Google devicesUpdated AOSP versionsDate reported
CVE-2017-0389A-31850211HighAll6.0, 6.0.1, 7.0, 7.1Jul 20, 2016CVE-2017-0389 + A-31850211 +[2]HighAll6.0, 6.0.1, 7.0, 7.1Jul 20, 2016
- - -

Denial of service vulnerability in Mediaserver

+

Denial of service +vulnerability in Mediaserver

A denial of service vulnerability in Mediaserver could enable a remote attacker to use a specially crafted file to cause a device hang or reboot. This issue is rated as High due to the possibility of remote denial of service.

- @@ -901,55 +891,57 @@ rated as High due to the possibility of remote denial of service. - - - - - - + + + + + + - - - - - - + + + + + + - - - - - - + + + + + + - - - - - - + + + + + + - - - - - - + + + + + +
CVEReferencesSeverityUpdated Google devicesUpdated AOSP versionsDate reportedCVEReferencesSeverityUpdated Google devicesUpdated AOSP versionsDate reported
CVE-2017-0390A-31647370HighAll4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1Sep 19, 2016CVE-2017-0390 + A-31647370HighAll4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1Sep 19, 2016
CVE-2017-0391A-32322258HighAll6.0, 6.0.1, 7.0, 7.1Oct 20, 2016CVE-2017-0391 + A-32322258HighAll6.0, 6.0.1, 7.0, 7.1Oct 20, 2016
CVE-2017-0392A-32577290HighAll4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1Oct 29, 2016CVE-2017-0392 + A-32577290HighAll4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1Oct 29, 2016
CVE-2017-0393A-30436808HighAll4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1Google internalCVE-2017-0393 + A-30436808HighAll4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1Google internal
- - -

Denial of service vulnerability in Telephony

+

Denial of service +vulnerability in Telephony

-A denial of service vulnerability in Telephony could enable a remote attacker -to cause a device hang or reboot. This issue is rated as High due to the +A denial of service vulnerability in Telephony could enable a remote attacker to +cause a device hang or reboot. This issue is rated as High due to the possibility of remote denial of service.

- @@ -958,25 +950,25 @@ possibility of remote denial of service. - - - - - - + + + + + + - - - - - - + + + + + +
CVEReferencesSeverityUpdated Google devicesUpdated AOSP versionsDate reportedCVEReferencesSeverityUpdated Google devicesUpdated AOSP versionsDate reported
CVE-2017-0394A-31752213HighAll5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1Sep 23, 2016CVE-2017-0394 + A-31752213HighAll5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1Sep 23, 2016
- - -

Elevation of privilege vulnerability in Contacts

+

Elevation of privilege +vulnerability in Contacts

An elevation of privilege vulnerability in Contacts could enable a local malicious application to silently create contact information. This issue is @@ -984,7 +976,6 @@ rated as Moderate because it is a local bypass of user interaction requirements (access to functionality that would normally require either user initiation or user permission).

- @@ -993,33 +984,31 @@ user permission). - - - - - - + + + + + + - - - - - - + + + + + +
CVEReferencesSeverityUpdated Google devicesUpdated AOSP versionsDate reportedCVEReferencesSeverityUpdated Google devicesUpdated AOSP versionsDate reported
CVE-2017-0395A-32219099ModerateAll4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1Oct 15, 2016CVE-2017-0395 + A-32219099ModerateAll4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1Oct 15, 2016
- - -

Information disclosure vulnerability in -Mediaserver

+

Information +disclosure vulnerability in Mediaserver

An information disclosure vulnerability in Mediaserver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it could be used to access sensitive data without permission.

- @@ -1028,41 +1017,40 @@ without permission. - - - - - - + + + + + + - - - - - - + + + + + + - - - - - - + + + + + +
CVEReferencesSeverityUpdated Google devicesUpdated AOSP versionsDate reportedCVEReferencesSeverityUpdated Google devicesUpdated AOSP versionsDate reported
CVE-2017-0396A-31781965ModerateAll4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1Sep 27, 2016CVE-2017-0396 + A-31781965ModerateAll4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1Sep 27, 2016
CVE-2017-0397A-32377688ModerateAll4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1Oct 21, 2016CVE-2017-0397 + A-32377688ModerateAll4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1Oct 21, 2016
- - -

Information disclosure vulnerability in -Audioserver

+

Information +disclosure vulnerability in Audioserver

An information disclosure vulnerability in Audioserver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it could be used to access sensitive data without permission.

- @@ -1071,72 +1059,81 @@ without permission. - - - - - - + + + + + + - - - - - - + + + + + + - - - - - - + + + + + + - - - - - - + + + + + + - - - - - - + + + + + + - - - - - - + + + + + + - - - - - - + + + + + + - - - - - - + + + + + +
CVEReferencesSeverityUpdated Google devicesUpdated AOSP versionsDate reportedCVEReferencesSeverityUpdated Google devicesUpdated AOSP versionsDate reported
CVE-2017-0398A-32438594ModerateAll4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1Oct 25, 2016CVE-2017-0398 + A-32438594ModerateAll4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1Oct 25, 2016
CVE-2017-0398A-32635664ModerateAll4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1Oct 25, 2016CVE-2017-0398 + A-32635664ModerateAll4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1Oct 25, 2016
CVE-2017-0398A-32624850ModerateAll4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1Oct 25, 2016CVE-2017-0398 + A-32624850ModerateAll4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1Oct 25, 2016
CVE-2017-0399A-32247948ModerateAll4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1Oct 18, 2016CVE-2017-0399 + A-32247948 +[2]ModerateAll4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1Oct 18, 2016
CVE-2017-0400A-32584034ModerateAll4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1Oct 25, 2016CVE-2017-0400 + A-32584034 +[2]ModerateAll4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1Oct 25, 2016
CVE-2017-0401A-32448258ModerateAll4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1Oct 26, 2016CVE-2017-0401 + A-32448258ModerateAll4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1Oct 26, 2016
CVE-2017-0402A-32436341ModerateAll4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1Oct 25, 2016CVE-2017-0402 + A-32436341 +[2]ModerateAll4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1Oct 25, 2016
-

2017-01-05 security patch level—Vulnerability details

@@ -2706,36 +2703,67 @@ access sensitive data without permission. Date reported - CVE-2017-0399 - A-32588756 - Moderate - All - 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1 - Oct 18, 2016 - - - CVE-2017-0400 - A-32438598 - Moderate - All - 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1 - Oct 25, 2016 - - - CVE-2017-0401 - A-32588016 - Moderate - All - 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1 - Oct 26, 2016 - - - CVE-2017-0402 - A-32588352 - Moderate - All - 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1 - Oct 25, 2016 + CVE-2017-0399 + + + A-32588756 +[2] + + Moderate + + All + + 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1 + + Oct 18, 2016 + + + + CVE-2017-0400 + + + A-32438598 +[2] + + Moderate + + All + + 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1 + + Oct 25, 2016 + + + + CVE-2017-0401 + + + A-32588016 + + Moderate + + All + + 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1 + + Oct 26, 2016 + + + + CVE-2017-0402 + + + A-32588352 +[2] + + Moderate + + All + + 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1 + + Oct 25, 2016 + @@ -2908,4 +2936,5 @@ belongs. These prefixes map as follows:

Revisions

-- cgit v1.2.3