Security

BlackBerry releases December 2017 Android Security Update for BlackBerry Android devices

BlackBerry has today rolled out the December 2017 Android Security update to BlackBerry Android devices.

The Android Security Bulletin contains details of security vulnerabilities affecting Android devices. BlackBerry releases security bulletins to notify users of its Android smartphones about available security fixes.

The following vulnerabilities have been remediated in this update:

Summary CVE
Elevation of Privilege in Framework CVE-2017-0807
Elevation of Privilege in Framework CVE-2017-0870
Remote Code Execution in Media Framework CVE-2017-0872
Remote Code Execution in Media Framework CVE-2017-13151
Elevation of Privilege in Media Framework CVE-2017-0837
Elevation of Privilege in Media Framework CVE-2017-13154
Denial of Service in Media Framework CVE-2017-0873
Denial of Service in Media Framework CVE-2017-0874
Denial of Service in Media Framework CVE-2017-0880
Denial of Service in Media Framework CVE-2017-13148
Remote Code Execution in System CVE-2017-13160
Elevation of Privilege in System CVE-2017-13156
Information Disclosure in System CVE-2017-13157
Information Disclosure in System CVE-2017-13158
Information Disclosure in System CVE-2017-13159
Elevation of Privilege in Kernel ION CVE-2017-0564
Elevation of Privilege in Kernel File Handling CVE-2017-7533
Elevation of Privilege in Kernel EDL CVE-2017-13174
Elevation of Privilege in Kernel Sound Timer CVE-2017-13167
Remote Code Execution in Qualcomm WLAN CVE-2017-11043
Elevation of Privilege in Qualcomm Qbt1000 Driver CVE-2017-9716
Elevation of Privilege in Qualcomm RPMB Driver CVE-2017-14897
Vulnerability in Qualcomm Storage CVE-2017-14914
Denial of Service in Media Framework CVE-2017-0879
Denial of Service in Media Framework CVE-2017-13149
Denial of Service in Media Framework CVE-2017-13150
Information Disclosure in Media Framework CVE-2017-13152
Elevation of Privilege in Kernel MTP USB Driver CVE-2017-13163
Elevation of Privilege in Kernel File System CVE-2017-13165
Elevation of Privilege in Kernel V4L2 Video Driver CVE-2017-13166
Elevation of Privilege in Kernel Sound Timer Driver CVE-2017-1000380
Elevation of Privilege in Kernel SCSI Driver CVE-2017-13168
Information Disclosure in Kernel Camera Server CVE-2017-13169
Elevation of Privilege in Qualcomm Kernel CVE-2017-9708
Elevation of Privilege in Qualcomm Display CVE-2017-11030
Elevation of Privilege in Qualcomm Video Driver CVE-2017-9703
Elevation of Privilege in Qualcomm Debugfs Driver CVE-2017-8244
Elevation of Privilege in Qualcomm Kernel CVE-2017-9718
Elevation of Privilege in Qualcomm Graphics CVE-2017-9698
Elevation of Privilege in Qualcomm Audio CVE-2017-9700
Elevation of Privilege in Qualcomm Display CVE-2017-9722
Elevation of Privilege in Qualcomm Display CVE-2017-11049
Elevation of Privilege in Qualcomm Display CVE-2017-11047
Elevation of Privilege in Qualcomm Graphics CVE-2017-11044
Elevation of Privilege in Qualcomm Camera CVE-2017-11045
Elevation of Privilege in Qualcomm Data HLOS CVE-2017-9710
Elevation of Privilege in Qualcomm Display CVE-2017-11019
Elevation of Privilege in Qualcomm Audio CVE-2017-11016
Elevation of Privilege in Qualcomm Kernel CVE-2017-11033
Information Disclosure in Qualcomm WLAN CVE-2017-14903
Information Disclosure in Qualcomm Display CVE-2017-11031

If you own an Android device from BlackBerry and are not seeing the system update message, you can check manually by heading into Settings -> About phone -> System updates and checking manually.

Look for Android security patch level December 1, 2017 or later.

Updated software builds may also be available from other retailers or carriers, dependent on their deployment schedules.