1
Candidate: CVE-2016-3900
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3900
5
http://source.android.com/security/bulletin/2016-10-01.html
6
https://android.googlesource.com/platform/frameworks/native/+/047eec456943dc082e33220d28abb7df4e089f69
7
https://android.googlesource.com/platform/frameworks/native/+/d3c6ce463ac91ecbeb2128beb475d31d3ca6ef42
9
cmds/servicemanager/service_manager.c in ServiceManager in Android 5.0.x
10
before 5.0.2, 5.1.x before 5.1.1, 6.x before 2016-10-01, and 7.0 before
11
2016-10-01 does not properly restrict service registration, which allows
12
attackers to gain privileges via a crafted application, aka internal bug
22
upstream_android: needs-triage
24
precise/esm_android: DNE
25
trusty_android: ignored (abandoned)
26
vivid/stable-phone-overlay_android: ignored (reached end-of-life)
27
vivid/ubuntu-core_android: DNE
28
xenial_android: ignored (abandoned)
29
yakkety_android: ignored (reached end-of-life)
30
zesty_android: ignored (reached end-of-life)