Candidate: CVE-2016-6708
PublicDate: 2016-11-25 16:59:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6708
 https://source.android.com/security/bulletin/2016-11-01.html
Description:
 An elevation of privilege in the System UI in Android 7.0 before 2016-11-01
 could enable a local malicious user to bypass the security prompt of your
 work profile in Multi-Window mode. This issue is rated as High because it
 is a local bypass of user interaction requirements for any developer or
 security setting modifications. Android ID: A-30693465.
Ubuntu-Description:
Notes:
Bugs:
Priority: negligible
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N [5.5 MEDIUM]

Patches_android:
upstream_android: released (7.0 2016-11-01)
precise_android: DNE
precise/esm_android: DNE
trusty_android: ignored (abandoned)
trusty/esm_android: DNE (trusty was ignored [abandoned])
vivid/stable-phone-overlay_android: ignored (reached end-of-life)
vivid/ubuntu-core_android: DNE
xenial_android: ignored (abandoned)
yakkety_android: ignored (reached end-of-life)
zesty_android: ignored (reached end-of-life)
artful_android: DNE
bionic_android: DNE
devel_android: DNE