Candidate: CVE-2015-6626
PublicDate: 2015-12-08 23:59:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-6626
 http://source.android.com/security/bulletin/2015-12-01.html
Description:
 libstagefright in Android before 5.1.1 LMY48Z and 6.0 before 2015-12-01
 allows remote attackers to obtain sensitive information, and consequently
 bypass an unspecified protection mechanism, via unknown vectors, as
 demonstrated by obtaining Signature or SignatureOrSystem access, aka
 internal bug 24310423.
Ubuntu-Description:
Notes:
 jdstrand> as with previous stagefright issues, this issue affects Ubuntu's
  android packages, but not in a way that is exposed to apps.  See
  CVE-2015-1538 for details
Bugs:
Priority: negligible
Discovered-by: Guang Gong, Abhishek Arya, Oliver Chang, and Martin Barbella
Assigned-to:
CVSS: 

Patches_android:
 upstream: https://android.googlesource.com/platform/frameworks/av/+/8dde7269a5356503d2b283234b6cb46d0c3f214e%5E%21/
upstream_android: released (6.0 2015-12-01)
precise_android: DNE
trusty_android: ignored
trusty/esm_android: DNE (trusty was ignored)
vivid_android: ignored
vivid/stable-phone-overlay_android: ignored
vivid/ubuntu-core_android: DNE
wily_android: ignored
devel_android: ignored