BlackBerry has today rolled out the December 2017 Android Security update to BlackBerry Android devices.
The Android Security Bulletin contains details of security vulnerabilities affecting Android devices. BlackBerry releases security bulletins to notify users of its Android smartphones about available security fixes.
The following vulnerabilities have been remediated in this update:
Summary
CVE
Elevation of Privilege in Framework
CVE-2017-0807
Elevation of Privilege in Framework
CVE-2017-0870
Remote Code Execution in Media Framework
CVE-2017-0872
Remote Code Execution in Media Framework
CVE-2017-13151
Elevation of Privilege in Media Framework
CVE-2017-0837
Elevation of Privilege in Media Framework
CVE-2017-13154
Denial of Service in Media Framework
CVE-2017-0873
Denial of Service in Media Framework
CVE-2017-0874
Denial of Service in Media Framework
CVE-2017-0880
Denial of Service in Media Framework
CVE-2017-13148
Remote Code Execution in System
CVE-2017-13160
Elevation of Privilege in System
CVE-2017-13156
Information Disclosure in System
CVE-2017-13157
Information Disclosure in System
CVE-2017-13158
Information Disclosure in System
CVE-2017-13159
Elevation of Privilege in Kernel ION
CVE-2017-0564
Elevation of Privilege in Kernel File Handling
CVE-2017-7533
Elevation of Privilege in Kernel EDL
CVE-2017-13174
Elevation of Privilege in Kernel Sound Timer
CVE-2017-13167
Remote Code Execution in Qualcomm WLAN
CVE-2017-11043
Elevation of Privilege in Qualcomm Qbt1000 Driver
CVE-2017-9716
Elevation of Privilege in Qualcomm RPMB Driver
CVE-2017-14897
Vulnerability in Qualcomm Storage
CVE-2017-14914
Denial of Service in Media Framework
CVE-2017-0879
Denial of Service in Media Framework
CVE-2017-13149
Denial of Service in Media Framework
CVE-2017-13150
Information Disclosure in Media Framework
CVE-2017-13152
Elevation of Privilege in Kernel MTP USB Driver
CVE-2017-13163
Elevation of Privilege in Kernel File System
CVE-2017-13165
Elevation of Privilege in Kernel V4L2 Video Driver
CVE-2017-13166
Elevation of Privilege in Kernel Sound Timer Driver
CVE-2017-1000380
Elevation of Privilege in Kernel SCSI Driver
CVE-2017-13168
Information Disclosure in Kernel Camera Server
CVE-2017-13169
Elevation of Privilege in Qualcomm Kernel
CVE-2017-9708
Elevation of Privilege in Qualcomm Display
CVE-2017-11030
Elevation of Privilege in Qualcomm Video Driver
CVE-2017-9703
Elevation of Privilege in Qualcomm Debugfs Driver
CVE-2017-8244
Elevation of Privilege in Qualcomm Kernel
CVE-2017-9718
Elevation of Privilege in Qualcomm Graphics
CVE-2017-9698
Elevation of Privilege in Qualcomm Audio
CVE-2017-9700
Elevation of Privilege in Qualcomm Display
CVE-2017-9722
Elevation of Privilege in Qualcomm Display
CVE-2017-11049
Elevation of Privilege in Qualcomm Display
CVE-2017-11047
Elevation of Privilege in Qualcomm Graphics
CVE-2017-11044
Elevation of Privilege in Qualcomm Camera
CVE-2017-11045
Elevation of Privilege in Qualcomm Data HLOS
CVE-2017-9710
Elevation of Privilege in Qualcomm Display
CVE-2017-11019
Elevation of Privilege in Qualcomm Audio
CVE-2017-11016
Elevation of Privilege in Qualcomm Kernel
CVE-2017-11033
Information Disclosure in Qualcomm WLAN
CVE-2017-14903
Information Disclosure in Qualcomm Display
CVE-2017-11031
If you own an Android device from BlackBerry and are not seeing the system update message, you can check manually by heading into Settings -> About phone -> System updates and checking manually.
Look for Android security patch level December 1, 2017 or later.
Updated software builds may also be available from other retailers or carriers, dependent on their deployment schedules.
