Google Inc Android vulnerabilities

CVE-2017-0847 [CRITICAL] CWE-276 CVE-2017-0847: An elevation of privilege vulnerability in the Android media framework (mediaanalytics). Product: An An elevation of privilege vulnerability in the Android media framework (mediaanalytics). Product: Android. Versions: 8.0. Android ID: A-65540999.

CVE-2017-0854 [CRITICAL] CWE-125 CVE-2017-0854: An information disclosure vulnerability in the Android media framework (n/a). Product: Android. Vers An information disclosure vulnerability in the Android media framework (n/a). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-63873837.

CVE-2017-0853 [CRITICAL] CVE-2017-0853: An information disclosure vulnerability in the Android media framework (n/a). Product: Android. Vers An information disclosure vulnerability in the Android media framework (n/a). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-63121644.

CVE-2017-0831 [HIGH] CWE-732 CVE-2017-0831: An elevation of privilege vulnerability in the Android framework (window manager). Product: Android. An elevation of privilege vulnerability in the Android framework (window manager). Product: Android. Versions: 8.0. Android ID: A-37442941.

CVE-2017-0838 [HIGH] CVE-2017-0838: An elevation of privilege vulnerability in the Android media framework (libstagefright). Product: An An elevation of privilege vulnerability in the Android media framework (libstagefright). Product: Android. Versions: 7.0, 7.1.1, 7.1.2. Android ID: A-63522818.

CVE-2017-0842 [HIGH] CWE-119 CVE-2017-0842: An elevation of privilege vulnerability in the Android system (bluetooth). Product: Android. Version An elevation of privilege vulnerability in the Android system (bluetooth). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-37502513.

CVE-2017-0859 [HIGH] CVE-2017-0859: Another vulnerability in the Android media framework (n/a). Product: Android. Versions: 7.0, 7.1.1, Another vulnerability in the Android media framework (n/a). Product: Android. Versions: 7.0, 7.1.1, 7.1.2. Android ID: A-36075131.

CVE-2017-0835 [HIGH] CVE-2017-0835: A remote code execution vulnerability in the Android media framework (libmpeg2). Product: Android. V A remote code execution vulnerability in the Android media framework (libmpeg2). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-63316832.

CVE-2017-0833 [HIGH] CVE-2017-0833: A remote code execution vulnerability in the Android media framework (libavc). Product: Android. Ver A remote code execution vulnerability in the Android media framework (libavc). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-62896384.

CVE-2017-0862 [HIGH] CVE-2017-0862: An elevation of privilege vulnerability in the Upstream kernel kernel. Product: Android. Versions: A An elevation of privilege vulnerability in the Upstream kernel kernel. Product: Android. Versions: Android kernel. Android ID: A-36006779.

CVE-2017-0857 [HIGH] CWE-369 CVE-2017-0857: Another vulnerability in the Android media framework (n/a). Product: Android. Versions: 7.0, 7.1.1, Another vulnerability in the Android media framework (n/a). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-65122447.

CVE-2017-0841 [HIGH] CWE-190 CVE-2017-0841: A remote code execution vulnerability in the Android system (libutils). Product: Android. Versions: A remote code execution vulnerability in the Android system (libutils). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-37723026.

CVE-2017-0865 [HIGH] CVE-2017-0865: An elevation of privilege vulnerability in the MediaTek soc driver. Product: Android. Versions: Andr An elevation of privilege vulnerability in the MediaTek soc driver. Product: Android. Versions: Android kernel. Android ID: A-65025090. References: M-ALPS02973195.

CVE-2017-0861 [HIGH] CWE-416 CVE-2017-0861: Use-after-free vulnerability in the snd_pcm_info function in the ALSA subsystem in the Linux kernel Use-after-free vulnerability in the snd_pcm_info function in the ALSA subsystem in the Linux kernel allows attackers to gain privileges via unspecified vectors.

CVE-2017-0836 [HIGH] CWE-129 CVE-2017-0836: A remote code execution vulnerability in the Android media framework (libhevc). Product: Android. Ve A remote code execution vulnerability in the Android media framework (libhevc). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-64893226.

CVE-2017-0864 [HIGH] CVE-2017-0864: An elevation of privilege vulnerability in the MediaTek ioctl (flashlight). Product: Android. Versio An elevation of privilege vulnerability in the MediaTek ioctl (flashlight). Product: Android. Versions: Android kernel. Android ID: A-37277147. References: M-ALPS03394571.

CVE-2017-0834 [HIGH] CWE-787 CVE-2017-0834: A remote code execution vulnerability in the Android media framework (libmpeg2). Product: Android. V A remote code execution vulnerability in the Android media framework (libmpeg2). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-63125953.

CVE-2017-0863 [HIGH] CVE-2017-0863: An elevation of privilege vulnerability in the Upstream kernel video driver. Product: Android. Versi An elevation of privilege vulnerability in the Upstream kernel video driver. Product: Android. Versions: Android kernel. Android ID: A-37950620.

CVE-2017-0858 [HIGH] CWE-20 CVE-2017-0858: Another vulnerability in the Android media framework (n/a). Product: Android. Versions: 7.0, 7.1.1, Another vulnerability in the Android media framework (n/a). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-64836894.

CVE-2017-0840 [HIGH] CWE-200 CVE-2017-0840: An information disclosure vulnerability in the Android media framework (libstagefright). Product: An An information disclosure vulnerability in the Android media framework (libstagefright). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-62948670.