BlackBerry has today rolled out the December 2017 Android Security update to BlackBerry Android devices.
The Android Security Bulletin contains details of security vulnerabilities affecting Android devices. BlackBerry releases security bulletins to notify users of its Android smartphones about available security fixes.
The following vulnerabilities have been remediated in this update:
Summary | CVE | ||
Elevation of Privilege in Framework | CVE-2017-0807 | ||
Elevation of Privilege in Framework | CVE-2017-0870 | ||
Remote Code Execution in Media Framework | CVE-2017-0872 | ||
Remote Code Execution in Media Framework | CVE-2017-13151 | ||
Elevation of Privilege in Media Framework | CVE-2017-0837 | ||
Elevation of Privilege in Media Framework | CVE-2017-13154 | ||
Denial of Service in Media Framework | CVE-2017-0873 | ||
Denial of Service in Media Framework | CVE-2017-0874 | ||
Denial of Service in Media Framework | CVE-2017-0880 | ||
Denial of Service in Media Framework | CVE-2017-13148 | ||
Remote Code Execution in System | CVE-2017-13160 | ||
Elevation of Privilege in System | CVE-2017-13156 | ||
Information Disclosure in System | CVE-2017-13157 | ||
Information Disclosure in System | CVE-2017-13158 | ||
Information Disclosure in System | CVE-2017-13159 | ||
Elevation of Privilege in Kernel ION | CVE-2017-0564 | ||
Elevation of Privilege in Kernel File Handling | CVE-2017-7533 | ||
Elevation of Privilege in Kernel EDL | CVE-2017-13174 | ||
Elevation of Privilege in Kernel Sound Timer | CVE-2017-13167 | ||
Remote Code Execution in Qualcomm WLAN | CVE-2017-11043 | ||
Elevation of Privilege in Qualcomm Qbt1000 Driver | CVE-2017-9716 | ||
Elevation of Privilege in Qualcomm RPMB Driver | CVE-2017-14897 | ||
Vulnerability in Qualcomm Storage | CVE-2017-14914 | ||
Denial of Service in Media Framework | CVE-2017-0879 | ||
Denial of Service in Media Framework | CVE-2017-13149 | ||
Denial of Service in Media Framework | CVE-2017-13150 | ||
Information Disclosure in Media Framework | CVE-2017-13152 | ||
Elevation of Privilege in Kernel MTP USB Driver | CVE-2017-13163 | ||
Elevation of Privilege in Kernel File System | CVE-2017-13165 | ||
Elevation of Privilege in Kernel V4L2 Video Driver | CVE-2017-13166 | ||
Elevation of Privilege in Kernel Sound Timer Driver | CVE-2017-1000380 | ||
Elevation of Privilege in Kernel SCSI Driver | CVE-2017-13168 | ||
Information Disclosure in Kernel Camera Server | CVE-2017-13169 | ||
Elevation of Privilege in Qualcomm Kernel | CVE-2017-9708 | ||
Elevation of Privilege in Qualcomm Display | CVE-2017-11030 | ||
Elevation of Privilege in Qualcomm Video Driver | CVE-2017-9703 | ||
Elevation of Privilege in Qualcomm Debugfs Driver | CVE-2017-8244 | ||
Elevation of Privilege in Qualcomm Kernel | CVE-2017-9718 | ||
Elevation of Privilege in Qualcomm Graphics | CVE-2017-9698 | ||
Elevation of Privilege in Qualcomm Audio | CVE-2017-9700 | ||
Elevation of Privilege in Qualcomm Display | CVE-2017-9722 | ||
Elevation of Privilege in Qualcomm Display | CVE-2017-11049 | ||
Elevation of Privilege in Qualcomm Display | CVE-2017-11047 | ||
Elevation of Privilege in Qualcomm Graphics | CVE-2017-11044 | ||
Elevation of Privilege in Qualcomm Camera | CVE-2017-11045 | ||
Elevation of Privilege in Qualcomm Data HLOS | CVE-2017-9710 | ||
Elevation of Privilege in Qualcomm Display | CVE-2017-11019 | ||
Elevation of Privilege in Qualcomm Audio | CVE-2017-11016 | ||
Elevation of Privilege in Qualcomm Kernel | CVE-2017-11033 | ||
Information Disclosure in Qualcomm WLAN | CVE-2017-14903 | ||
Information Disclosure in Qualcomm Display | CVE-2017-11031 |
If you own an Android device from BlackBerry and are not seeing the system update message, you can check manually by heading into Settings -> About phone -> System updates and checking manually.
Look for Android security patch level December 1, 2017 or later.
Updated software builds may also be available from other retailers or carriers, dependent on their deployment schedules.