CVE-2016-6735 | Vulnerability Database | Aqua Security

An elevation of privilege vulnerability in the NVIDIA GPU driver in Android before 2016-11-05 could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the operating system to repair the device. Android ID: A-30907701. References: NVIDIA N-CVE-2016-6735.

Affected Software

Name	Vendor	Start Version	End Version
Android	Google	*	7.0 (including)
Linux-armadaxp	Ubuntu	precise	*
Linux-flo	Ubuntu	esm-apps/xenial	*
Linux-flo	Ubuntu	trusty	*
Linux-flo	Ubuntu	vivid/stable-phone-overlay	*
Linux-flo	Ubuntu	xenial	*
Linux-flo	Ubuntu	yakkety	*
Linux-goldfish	Ubuntu	trusty	*
Linux-grouper	Ubuntu	trusty	*
Linux-linaro-omap	Ubuntu	precise	*
Linux-linaro-shared	Ubuntu	precise	*
Linux-linaro-vexpress	Ubuntu	precise	*
Linux-lts-quantal	Ubuntu	precise	*
Linux-lts-quantal	Ubuntu	precise/esm	*
Linux-lts-raring	Ubuntu	precise	*
Linux-lts-raring	Ubuntu	precise/esm	*
Linux-lts-saucy	Ubuntu	precise	*
Linux-lts-saucy	Ubuntu	precise/esm	*
Linux-lts-utopic	Ubuntu	trusty	*
Linux-lts-wily	Ubuntu	trusty	*
Linux-maguro	Ubuntu	trusty	*
Linux-mako	Ubuntu	esm-apps/xenial	*
Linux-mako	Ubuntu	trusty	*
Linux-mako	Ubuntu	vivid/stable-phone-overlay	*
Linux-mako	Ubuntu	xenial	*
Linux-mako	Ubuntu	yakkety	*
Linux-manta	Ubuntu	trusty	*
Linux-qcm-msm	Ubuntu	precise	*
Linux-raspi2	Ubuntu	vivid/ubuntu-core	*
Linux-ti-omap4	Ubuntu	precise	*

NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-6735
CWE	https://cwe.mitre.org/data/definitions/264.html