Candidate: CVE-2017-0420
PublicDate: 2017-02-08 15:59:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0420
 https://source.android.com/security/bulletin/2017-02-01.html
Description:
 An information disclosure vulnerability in AOSP Mail could enable a local
 malicious application to bypass operating system protections that isolate
 application data from other applications. This issue is rated as High
 because it could be used to gain access to data that the application does
 not have access to. Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0,
 6.0.1, 7.0, 7.1.1. Android ID: A-32615212.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N [5.5 MEDIUM]

Patches_android:
upstream_android: needs-triage
precise_android: DNE
precise/esm_android: DNE
trusty_android: ignored (abandoned)
trusty/esm_android: DNE (trusty was ignored [abandoned])
vivid/stable-phone-overlay_android: ignored (reached end-of-life)
vivid/ubuntu-core_android: DNE
xenial_android: ignored (abandoned)
yakkety_android: ignored (reached end-of-life)
zesty_android: ignored (reached end-of-life)
artful_android: DNE
bionic_android: DNE
devel_android: DNE