Revision history [back]

[CVE-2016-0805] [CVE-2016-0806] two critical bugs discovered in qualcomm drivers, so an upgrade is needed.

Using API19 drivers may allow linux-kernel upgrade and alien-dalvik level-upgrade, too!

[CVE-2016-0805] [CVE-2016-0806] two critical bugs discovered in qualcomm drivers, so an upgrade is needed.

Using API19 drivers may allow linux-kernel upgrade and alien-dalvik level-upgrade, too!

[CVE-2016-0805] [CVE-2016-0806] two critical bugs discovered discovered in qualcomm drivers, so an upgrade is needed.

• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453)
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204)

Using API19 drivers may allow linux-kernel upgrade and alien-dalvik level-upgrade, too!

[CVE-2016-0805] [CVE-2016-0806] two critical bugs discovered in qualcomm drivers, so an upgrade is needed.

• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453)
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204)

Using API19 drivers may allow allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires) and alien-dalvik level-upgrade, level-upgrade (more likely required), too!

[CVE-2016-0805] [CVE-2016-0806] two critical bugs discovered in qualcomm drivers, so an upgrade is needed.

• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453)
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204)

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires) and alien-dalvik level-upgrade (more likely required), too!

[CVE-2016-0805] [CVE-2016-0806] two [CVE-2016-0806] [CVE-2016-0819] three critical bugs discovered in qualcomm drivers, so an upgrade is needed.

• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453)
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204)(ANDROID-25773204) and (ANDROID-25364034)

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires) and alien-dalvik level-upgrade (more likely required), too!

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] three critical bugs discovered in qualcomm drivers, so an upgrade is needed.

• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453)
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204) and (ANDROID-25364034)

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires) and alien-dalvik level-upgrade (more likely required), too!

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] three [CVE-2016-0819] [CVE-2016-0843] four critical bugs discovered in qualcomm drivers, so an upgrade is needed.

• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453)
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204) (ANDROID-25773204), (ANDROID-25364034) and (ANDROID-25364034)(ANDROID-25801197)

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires) and alien-dalvik level-upgrade (more likely required), too!

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] [CVE-2016-0843] four critical bugs discovered in qualcomm drivers, so an upgrade is needed.

• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453)
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204), (ANDROID-25364034) and (ANDROID-25801197)

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires) and alien-dalvik level-upgrade (more likely required), too!

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] [CVE-2016-0843] four critical bugs discovered in qualcomm drivers, so an upgrade is needed.

• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453)(ANDROID-25344453)
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204), (ANDROID-25773204), (ANDROID-25364034) and (ANDROID-25801197)

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires) and alien-dalvik level-upgrade (more likely required), too!

Edit 20160415: topic in next SailfishOS, open source, collaboration meeting 28. Apr 16 13.30h (UTC)

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] [CVE-2016-0843] four critical bugs discovered in qualcomm drivers, so an upgrade is needed.

• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453)
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204), (ANDROID-25364034) (ANDROID-25364034) and (ANDROID-25801197)

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires) and alien-dalvik level-upgrade (more likely required), too!

Edit 20160415: topic in next SailfishOS, open source, collaboration meeting 28. Apr 16 13.30h (UTC)

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] [CVE-2016-0843] four critical bugs discovered in qualcomm drivers, so an upgrade of Jolla1 drivers is needed.

• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453)
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204), (ANDROID-25364034) and (ANDROID-25801197)

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires) requires: kernel 3.4 in the case of Galaxy 4 mini) and alien-dalvik level-upgrade (more likely required), too!

Edit 20160415: topic in next SailfishOS, open source, collaboration meeting 28. Apr 16 13.30h (UTC)

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] [CVE-2016-0843] four critical bugs discovered in qualcomm drivers, so an upgrade of Jolla1 drivers is needed.

• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453)
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204), (ANDROID-25364034) and (ANDROID-25801197)

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires: kernel 3.4 in the case of Galaxy 4 S4 mini) and alien-dalvik level-upgrade (more likely required), too!

Edit 20160415: topic in next SailfishOS, open source, collaboration meeting 28. Apr 16 13.30h (UTC)

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] [CVE-2016-0843] four critical bugs discovered in qualcomm drivers, so an upgrade of Jolla1 drivers is needed.

• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453)
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204), (ANDROID-25364034) and (ANDROID-25801197)

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires: kernel 3.4 in the case of Galaxy S4 mini) and alien-dalvik level-upgrade (more likely required), NOT required because jolla1 already seems to use API ≥ 17 drivers but provides API16 for aliendalvik), too!

Andoid version available for MSM8930Ax devices [ link ]

Edit 20160415: topic in next SailfishOS, open source, collaboration meeting 28. Apr 16 13.30h (UTC)

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] [CVE-2016-0843] four critical bugs discovered in qualcomm drivers, so an upgrade of Jolla1 drivers is needed.

• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453)
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204), (ANDROID-25364034) and (ANDROID-25801197)

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires: kernel 3.4 in the case of Galaxy S4 mini) and alien-dalvik level-upgrade (more likely NOT required because jolla1 already seems to use API ≥ 17 drivers but provides API16 for aliendalvik), too!

Andoid version available for MSM8930Ax devices [ link ]

Info about the WLAN host device driver installed on Jolla1: modinfo wlan returns a value vermagic: 3.4.108.20150901.1 SMP

Edit 20160415: 20160502: topic in next SailfishOS, open source, collaboration meeting 28. Apr 05. May 16 13.30h (UTC)

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] [CVE-2016-0843] four critical bugs discovered in qualcomm drivers, so an upgrade of Jolla1 drivers is needed.

• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453)
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204), (ANDROID-25364034) and (ANDROID-25801197)

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires: kernel 3.4 in the case of Galaxy S4 mini) and alien-dalvik level-upgrade (more likely NOT required because jolla1 already seems to use API ≥ 17 drivers but provides API16 for aliendalvik), too!

Andoid version available for MSM8930Ax devices [ link ]

Info about the WLAN host device driver installed on Jolla1: modinfo wlan returns a value vermagic: 3.4.108.20150901.1 SMP

Edit 20160502: topic in next SailfishOS, open source, collaboration meeting 05. May 16 13.30h (UTC)

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] [CVE-2016-0843] four critical bugs discovered in qualcomm drivers, so an upgrade of Jolla1 drivers is needed.

• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453)
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204), (ANDROID-25364034) and (ANDROID-25801197)

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires: kernel 3.4 in the case of Galaxy S4 mini) and alien-dalvik level-upgrade (more likely NOT required because jolla1 already seems to use API ≥ 17 drivers but provides API16 for aliendalvik), too!

Andoid version available for MSM8930Ax devices [ link ]

Info about the WLAN host device driver installed on Jolla1: modinfo wlan returns a value vermagic: 3.4.108.20150901.1 SMP

Edit 20160502: topic in next SailfishOS, open source, collaboration meeting 05. May 16 13.30h (UTC)

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] [CVE-2016-0843] four [CVE-2016-0843] [CVE-2015-0569] [CVE-2015-0570] six critical bugs discovered in qualcomm drivers, so an upgrade of Jolla1 drivers is needed.

• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453)), (ANDROID-26754117) and (ANDROID-26764809)
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204), (ANDROID-25364034) and (ANDROID-25801197)

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires: kernel 3.4 in the case of Galaxy S4 mini) and alien-dalvik level-upgrade (more likely NOT required because jolla1 already seems to use API ≥ 17 drivers but provides API16 for aliendalvik), too!

Andoid version available for MSM8930Ax devices [ link ]

Info about the WLAN host device driver installed on Jolla1: modinfo wlan returns a value vermagic: 3.4.108.20150901.1 SMP

Edit 20160502: topic in next SailfishOS, open source, collaboration meeting 05. May 16 13.30h (UTC)

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] [CVE-2016-0843] [CVE-2015-0569] [CVE-2015-0570] six critical bugs discovered in qualcomm drivers, so an upgrade of Jolla1 drivers is needed.

• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453), (ANDROID-26754117) and (ANDROID-26764809)
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204), (ANDROID-25364034) and (ANDROID-25801197)
• (maybe Qualcomm Tethering controller [CVE-2016-2060])
• (maybe Elevation of Privilege Vulnerability in Qualcomm Buspm Driver [CVE-2016-2441],[CVE-2016-2442])
• (maybe Elevation of Privilege Vulnerability in Qualcomm TrustZone [CVE-2016-2431] or [CVE-2016-2432])

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires: kernel 3.4 in the case of Galaxy S4 mini) and alien-dalvik level-upgrade (more likely NOT required because jolla1 already seems to use API ≥ 17 drivers but provides API16 for aliendalvik), too!

Andoid version available for MSM8930Ax devices [ link ]

Info about the WLAN host device driver installed on Jolla1: modinfo wlan returns a value vermagic: 3.4.108.20150901.1 SMP

Edit 20160502: topic in next SailfishOS, open source, collaboration meeting 05. May 16 13.30h (UTC)

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] [CVE-2016-0843] [CVE-2015-0569] [CVE-2015-0570] six critical bugs discovered in qualcomm drivers, so an upgrade of Jolla1 drivers is needed.

• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453), (ANDROID-26754117) and (ANDROID-26764809)(ANDROID-26764809) [(ANDROID-26763920 severity:High)]
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204), (ANDROID-25364034) and (ANDROID-25801197)
• (maybe Qualcomm Tethering controller [CVE-2016-2060])
• (maybe Elevation of Privilege Vulnerability in Qualcomm Buspm Driver [CVE-2016-2441],[CVE-2016-2442])
• (maybe Elevation of Privilege Vulnerability in Qualcomm TrustZone [CVE-2016-2431] or [CVE-2016-2432])

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires: kernel 3.4 in the case of Galaxy S4 mini) and alien-dalvik level-upgrade (more likely NOT required because jolla1 already seems to use API ≥ 17 drivers but provides API16 for aliendalvik), too!

Andoid version available for MSM8930Ax devices [ link ]

Info about the WLAN host device driver installed on Jolla1: modinfo wlan returns a value vermagic: 3.4.108.20150901.1 SMP

Edit 20160502: topic in next SailfishOS, open source, collaboration meeting 05. May 16 13.30h (UTC)

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] [CVE-2016-0843] [CVE-2015-0569] [CVE-2015-0570] six critical bugs discovered in qualcomm drivers, so an upgrade of Jolla1 drivers is needed.

• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453), (ANDROID-26754117) and (ANDROID-26764809) [(ANDROID-26763920 severity:High)]
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204), (ANDROID-25364034) and (ANDROID-25801197)
• (maybe Qualcomm Tethering controller [CVE-2016-2060])
• (maybe Elevation of Privilege Vulnerability in Qualcomm Buspm Driver [CVE-2016-2441],[CVE-2016-2442])
• (maybe Elevation of Privilege Vulnerability in Qualcomm TrustZone [CVE-2016-2431] or [CVE-2016-2432])
• Remote Denial of Service Vulnerability in Qualcomm Hardware Codec [CVE-2016-2454] (rated:High)

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires: kernel 3.4 in the case of Galaxy S4 mini) and alien-dalvik level-upgrade (more likely NOT required because jolla1 already seems to use API ≥ 17 drivers but provides API16 for aliendalvik), too!

Andoid version available for MSM8930Ax devices [ link ]

Info about the WLAN host device driver installed on Jolla1: modinfo wlan returns a value vermagic: 3.4.108.20150901.1 SMP

Edit 20160502: topic in next SailfishOS, open source, collaboration meeting 05. May 16 13.30h (UTC)(UTC) Edit 20160505: meeting @sledges : <sledges> #info Jolla will look at the scope of this task

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] [CVE-2016-0843] [CVE-2015-0569] [CVE-2015-0570] six [CVE-2015-0570] [CVE-2016-2465] [CVE-2016-2467] [CVE-2016-2468] 9 critical bugs discovered in qualcomm drivers, so an upgrade of Jolla1 drivers is needed.

• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453), (ANDROID-26754117) (ANDROID-26754117), (ANDROID-26764809) and (ANDROID-26764809) (ANDROID-26425765) [(ANDROID-26763920 severity:High)]
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204), (ANDROID-25364034) and (ANDROID-25801197)
• (maybe Qualcomm Tethering controller [CVE-2016-2060])
• (maybe Elevation of Privilege Vulnerability in Qualcomm Buspm Driver [CVE-2016-2441],[CVE-2016-2442])
• (maybe Elevation of Privilege Vulnerability in Qualcomm TrustZone [CVE-2016-2431] or [CVE-2016-2432])
• Remote Denial of Service Vulnerability in Qualcomm Hardware Codec [CVE-2016-2454] (rated:High)
• Elevation of Privilege Vulnerability in Qualcomm Video Driver [CVE-2016-2465] (rated:Critical)
• Elevation of Privilege Vulnerability in Qualcomm Sound Driver [CVE-2016-2467] (rated:Critical) [and (ANDROID-26876409) and (ANDROID-27531992) rated:High]
• Elevation of Privilege Vulnerability in Qualcomm GPU Driver [CVE-2016-2468] (rated:Critical)

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires: kernel 3.4 in the case of Galaxy S4 mini) and alien-dalvik level-upgrade (more likely NOT required because jolla1 already seems to use API ≥ 17 drivers but provides API16 for aliendalvik), too!

Andoid version available for MSM8930Ax devices [ link ]

Info about the WLAN host device driver installed on Jolla1: modinfo wlan returns a value vermagic: 3.4.108.20150901.1 SMP

Edit 20160502: topic in next SailfishOS, open source, collaboration meeting 05. May 16 13.30h (UTC) Edit 20160505: meeting @sledges : <sledges> #info Jolla will look at the scope of this task

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] [CVE-2016-0843] [CVE-2015-0569] [CVE-2015-0570] [CVE-2016-2465] [CVE-2016-2467] [CVE-2016-2468] 9 critical bugs discovered in qualcomm drivers, so an upgrade of Jolla1 drivers is needed.

• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453), (ANDROID-26754117), (ANDROID-26764809) and (ANDROID-26425765) [(ANDROID-26763920 severity:High)][additionally (ANDROID-26763920 , 27662174 , 27773913 , 27776888 , 27777501 severity:High) and 27777162 severity:moderate]
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204), (ANDROID-25364034) and (ANDROID-25801197)
• (maybe Qualcomm Tethering controller [CVE-2016-2060])
• (maybe Elevation of Privilege Vulnerability in Qualcomm Buspm Driver [CVE-2016-2441],[CVE-2016-2442])
• (maybe Elevation of Privilege Vulnerability in Qualcomm TrustZone [CVE-2016-2431] or [CVE-2016-2432])
• Remote Denial of Service Vulnerability in Qualcomm Hardware Codec [CVE-2016-2454] (rated:High)
• Elevation of Privilege Vulnerability in Qualcomm Video Driver [CVE-2016-2465] (rated:Critical)(rated:Critical) (additionally ANDROID-27407629 rated:high)
• Elevation of Privilege Vulnerability in Qualcomm Sound Driver [CVE-2016-2467] (rated:Critical) [and (ANDROID-26876409) and (ANDROID-27531992) rated:High]
• Elevation of Privilege Vulnerability in Qualcomm GPU Driver [CVE-2016-2468] (rated:Critical)

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires: kernel 3.4 in the case of Galaxy S4 mini) mini featuring Android4.4.2 although this KitKat version normally requires kernel 3.10 [so in principle you are able to release new Android API while sticking to old Linux Kernel] ) and alien-dalvik level-upgrade (more likely NOT required because jolla1 already seems to use API ≥ 17 drivers but provides API16 for aliendalvik), too!

Andoid version available for MSM8930Ax devices [ link ]

Info about the WLAN host device driver installed on Jolla1: modinfo wlan returns a value vermagic: 3.4.108.20150901.1 SMP

Edit 20160502: topic in next SailfishOS, open source, collaboration meeting 05. May 16 13.30h (UTC) Edit 20160505: meeting @sledges : <sledges> #info Jolla will look at the scope of this task

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] [CVE-2016-0843] [CVE-2015-0569] [CVE-2015-0570] [CVE-2016-2465] [CVE-2016-2467] [CVE-2016-2468] 9 critical bugs discovered in qualcomm drivers, so an upgrade of Jolla1 drivers is needed.

• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453), (ANDROID-26754117), (ANDROID-26764809) and (ANDROID-26425765) [additionally (ANDROID-26763920 , 27662174 , 27773913 , 27776888 , 27777501 severity:High) and 27777162 severity:moderate]
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204), (ANDROID-25364034) and (ANDROID-25801197)
• (maybe Qualcomm Tethering controller [CVE-2016-2060])
• (maybe Elevation of Privilege Vulnerability in Qualcomm Buspm Driver [CVE-2016-2441],[CVE-2016-2442])
• (maybe Elevation of Privilege Vulnerability in Qualcomm TrustZone [CVE-2016-2431] or [CVE-2016-2432])
• Remote Denial of Service Vulnerability in Qualcomm Hardware Codec [CVE-2016-2454] (rated:High)
• Elevation of Privilege Vulnerability in Qualcomm Video Driver [CVE-2016-2465] (rated:Critical) (additionally ANDROID-27407629 rated:high)
• Elevation of Privilege Vulnerability in Qualcomm Sound Driver [CVE-2016-2467] (rated:Critical) [and (ANDROID-26876409) and (ANDROID-27531992) rated:High]
• Elevation of Privilege Vulnerability in Qualcomm GPU Driver [CVE-2016-2468] (rated:Critical)

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires: kernel 3.4 in the case of Galaxy S4 mini featuring Android4.4.2 although this KitKat version normally requires kernel 3.10 [so in principle you are able to release new Android API while sticking to old Linux Kernel] ) and alien-dalvik level-upgrade (more likely NOT required because jolla1 already seems to use API ≥ 17 drivers but provides API16 for aliendalvik), too!

Andoid version available for MSM8930Ax devices [ link ]

Info about the WLAN host device driver installed on Jolla1: modinfo wlan returns a value vermagic: 3.4.108.20150901.1 SMP

Edit 20160502: topic in next SailfishOS, open source, collaboration meeting 05. May 16 13.30h (UTC) Edit 20160505: meeting @sledges : <sledges> #info Jolla will look at the scope of this task

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] [CVE-2016-0843] [CVE-2015-0569] [CVE-2015-0570] [CVE-2016-2465] [CVE-2016-2467] [CVE-2016-2468] 9 critical bugs discovered in qualcomm drivers, so an upgrade of Jolla1 drivers is needed.

• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453), (ANDROID-26754117), (ANDROID-26764809) and (ANDROID-26425765) [additionally (ANDROID-26763920 , 27662174 , 27773913 , 27776888 , 27777501 severity:High) and 27777162 severity:moderate]
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204), (ANDROID-25364034) and (ANDROID-25801197)
• (maybe Qualcomm Tethering controller [CVE-2016-2060])
• (maybe Elevation of Privilege Vulnerability in Qualcomm Buspm Driver [CVE-2016-2441],[CVE-2016-2442])
• (maybe Elevation of Privilege Vulnerability in Qualcomm TrustZone [CVE-2016-2431] or [CVE-2016-2432])
• Remote Denial of Service Vulnerability in Qualcomm Hardware Codec [CVE-2016-2454] (rated:High)
• Elevation of Privilege Vulnerability in Qualcomm Video Driver [CVE-2016-2465] (rated:Critical) (additionally ANDROID-27407629 rated:high)
• Elevation of Privilege Vulnerability in Qualcomm Sound Driver [CVE-2016-2467] (rated:Critical) (rated:Critical; access:Remote) [and (ANDROID-26876409) and (ANDROID-27531992) rated:High]
• Elevation of Privilege Vulnerability in Qualcomm GPU Driver [CVE-2016-2468] (rated:Critical)

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires: kernel 3.4 in the case of Galaxy S4 mini featuring Android4.4.2 although this KitKat version normally requires kernel 3.10 [so in principle you are able to release new Android API while sticking to old Linux Kernel] ) and alien-dalvik level-upgrade (more likely NOT required because jolla1 already seems to use API ≥ 17 drivers but provides API16 for aliendalvik), too!

Andoid version available for MSM8930Ax devices [ link ]

Info about the WLAN host device driver installed on Jolla1: modinfo wlan returns a value vermagic: 3.4.108.20150901.1 SMP

Edit 20160502: topic in next SailfishOS, open source, collaboration meeting 05. May 16 13.30h (UTC) Edit 20160505: meeting @sledges : <sledges> #info Jolla will look at the scope of this task

Edit 20160620: there are some changes in SFOS 2.0.2.45. It looks like kernel is updated 3.4.108.20150901 -> 3.4.108.20160401 and modules, too [wlan: sbj-wlan 0.2.6 -> 0.2.6.1 , policy-settings, pulseaudio-modules, preinit-plugin-sbj, jolla-recovery-sbj etc...].

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] [CVE-2016-0843] [CVE-2015-0569] [CVE-2015-0570] [CVE-2016-2465] [CVE-2016-2467] [CVE-2016-2468] 9 critical bugs discovered in qualcomm drivers, so an upgrade of Jolla1 drivers is needed.

• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453), (ANDROID-26754117), (ANDROID-26764809) (ANDROID-26754117 access:Remote), (ANDROID-26764809 access:Remote) and (ANDROID-26425765) [additionally (ANDROID-26763920 , 27662174 , 27773913 , 27776888 , 27777501 severity:High) and 27777162 severity:moderate]
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204), (ANDROID-25364034) and (ANDROID-25801197)
• (maybe Qualcomm Tethering controller [CVE-2016-2060])
• (maybe Elevation of Privilege Vulnerability in Qualcomm Buspm Driver [CVE-2016-2441],[CVE-2016-2442])
• (maybe Elevation of Privilege Vulnerability in Qualcomm TrustZone [CVE-2016-2431] or [CVE-2016-2432])
• Remote Denial of Service Vulnerability in Qualcomm Hardware Codec [CVE-2016-2454] (rated:High)
• Elevation of Privilege Vulnerability in Qualcomm Video Driver [CVE-2016-2465] (rated:Critical) (additionally ANDROID-27407629 rated:high)
• Elevation of Privilege Vulnerability in Qualcomm Sound Driver [CVE-2016-2467] (rated:Critical; access:Remote) [and (ANDROID-26876409) and (ANDROID-27531992) rated:High]
• Elevation of Privilege Vulnerability in Qualcomm GPU Driver [CVE-2016-2468] (rated:Critical)

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires: kernel 3.4 in the case of Galaxy S4 mini featuring Android4.4.2 although this KitKat version normally requires kernel 3.10 [so in principle you are able to release new Android API while sticking to old Linux Kernel] ) and alien-dalvik level-upgrade (more likely NOT required because jolla1 already seems to use API ≥ 17 drivers but provides API16 for aliendalvik), too!

Andoid version available for MSM8930Ax devices [ link ]

Info about the WLAN host device driver installed on Jolla1: modinfo wlan returns a value vermagic: 3.4.108.20150901.1 SMP

Edit 20160502: topic in next SailfishOS, open source, collaboration meeting 05. May 16 13.30h (UTC) Edit 20160505: meeting @sledges : <sledges> #info Jolla will look at the scope of this task

Edit 20160620: there are some changes in SFOS 2.0.2.45. It looks like kernel is updated 3.4.108.20150901 -> 3.4.108.20160401 and modules, too [wlan: sbj-wlan 0.2.6 -> 0.2.6.1 , policy-settings, pulseaudio-modules, preinit-plugin-sbj, jolla-recovery-sbj etc...].

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] [CVE-2016-0843] [CVE-2015-0569] [CVE-2015-0570] [CVE-2016-2465] [CVE-2016-2467] [CVE-2016-2468] 9 many critical bugs discovered in qualcomm drivers, so an upgrade of Jolla1 drivers is needed.

• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453), (ANDROID-26754117 access:Remote), (ANDROID-26764809 access:Remote) and (ANDROID-26425765) [additionally (ANDROID-26763920 , 27662174 , 27773913 , 27776888 , 27777501 27777501, CVE-2016-3792 severity:High) and 27777162 severity:moderate]
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204), (ANDROID-25364034) ([ANDROID-25364034) (https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-0819)) and (ANDROID-25801197)(ANDROID-25801197), [CVE-2016-3768]
• (maybe Qualcomm Tethering controller [CVE-2016-2060])
• (maybe Elevation of Privilege Vulnerability in Qualcomm Buspm Driver [CVE-2016-2441],[CVE-2016-2442])
• (maybe Elevation of Privilege Vulnerability in Qualcomm TrustZone [CVE-2016-2431] or [CVE-2016-2432])
• Remote Denial of Service Vulnerability in Qualcomm Hardware Codec [CVE-2016-2454] (rated:High)
• Elevation of Privilege Vulnerability in Qualcomm Video Driver [CVE-2016-2465] (rated:Critical) (additionally ANDROID-27407629 rated:high)
• Elevation of Privilege Vulnerability in Qualcomm Sound Driver [CVE-2016-2467] (rated:Critical; access:Remote) [and (ANDROID-26876409) (ANDROID-26876409), (ANDROID-27531992) and (ANDROID-27531992) [CVE-2016-2068] rated:High]
• Elevation of Privilege Vulnerability in Qualcomm GPU Driver [CVE-2016-2468] [CVE-2016-2067] (rated:Critical)
• Elevation of privilege vulnerability in Qualcomm camera driver [CVE-2016-2501 High]
• Information disclosure vulnerability in Qualcomm USB driver [CVE-2016-3813 Moderate]
• Denial of service vulnerability in Qualcomm bootloader [CVE-2014-9798, CVE-2015-8893 Moderate]
• Elevation of privilege vulnerability in Qualcomm components (Device specific: some may affect Jolla1, some not) CVE-2014-9794, CVE-2014-9795, CVE-2013-7457, CVE-2014-9781, CVE-2014-9786, CVE-2014-9788, CVE-2014-9779, CVE-2014-9780, CVE-2014-9789, CVE-2014-9793, CVE-2014-9782, CVE-2014-9783, CVE-2014-9785, CVE-2014-9787, CVE-2014-9784, CVE-2014-9777, CVE-2014-9778, CVE-2014-9790, CVE-2014-9792, CVE-2014-9797, CVE-2014-9791, CVE-2014-9796, CVE-2014-9800, CVE-2014-9799, CVE-2014-9801, CVE-2014-9802, CVE-2015-8891, CVE-2015-8888, CVE-2015-8890 High

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires: kernel 3.4 in the case of Galaxy S4 mini featuring Android4.4.2 although this KitKat version normally requires kernel 3.10 [so in principle you are able to release new Android API while sticking to old Linux Kernel] ) and alien-dalvik level-upgrade (more likely NOT required because jolla1 already seems to use API ≥ 17 drivers but provides API16 for aliendalvik), too!

Andoid version available for MSM8930Ax devices [ link ]

Info about the WLAN host device driver installed on Jolla1: modinfo wlan returns a value vermagic: 3.4.108.20150901.1 3.4.108.20160401.1 SMP (2.0.2.45)

Edit 20160502: topic in next SailfishOS, open source, collaboration meeting 05. May 16 13.30h (UTC) Edit 20160505: meeting @sledges : <sledges> #info Jolla will look at the scope of this task

Edit 20160620: there are some changes in SFOS 2.0.2.45. It looks like kernel is updated 3.4.108.20150901 -> 3.4.108.20160401 and modules, too [wlan: sbj-wlan 0.2.6 -> 0.2.6.1 , policy-settings, pulseaudio-modules, preinit-plugin-sbj, jolla-recovery-sbj etc...].etc...].
Edit 20160713: But dmesg is still saying wlan: loading driver v3.2.1.74 in 2.0.2.45 as in SFOS2.0.1.7

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] [CVE-2016-0843] [CVE-2015-0569] [CVE-2015-0570] [CVE-2016-2465] [CVE-2016-2467] [CVE-2016-2468] many critical bugs discovered in qualcomm drivers, so an upgrade of Jolla1 drivers is needed.

• cve-2016-5080 asn.1
• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453), (ANDROID-26754117 access:Remote), (ANDROID-26764809 access:Remote) and (ANDROID-26425765) [additionally (ANDROID-26763920 , 27662174 , 27773913 , 27776888 , 27777501, CVE-2016-3792 severity:High) and 27777162 severity:moderate]
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204), ([ANDROID-25364034) (https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-0819)) (ANDROID-25364034)) and (ANDROID-25801197), [CVE-2016-3768]
• (maybe Qualcomm Tethering controller [CVE-2016-2060])
• (maybe Elevation of Privilege Vulnerability in Qualcomm Buspm Driver [CVE-2016-2441],[CVE-2016-2442])
• (maybe Elevation of Privilege Vulnerability in Qualcomm TrustZone [CVE-2016-2431] or [CVE-2016-2432])
• Remote Denial of Service Vulnerability in Qualcomm Hardware Codec [CVE-2016-2454] (rated:High)
• Elevation of Privilege Vulnerability in Qualcomm Video Driver [CVE-2016-2465] (rated:Critical) (additionally ANDROID-27407629 rated:high)
• Elevation of Privilege Vulnerability in Qualcomm Sound Driver [CVE-2016-2467] (rated:Critical; access:Remote) [and (ANDROID-26876409), (ANDROID-27531992) and [CVE-2016-2068] rated:High]
• Elevation of Privilege Vulnerability in Qualcomm GPU Driver [CVE-2016-2468] [CVE-2016-2067] (rated:Critical)
• Elevation of privilege vulnerability in Qualcomm camera driver [CVE-2016-2501 High]
• Information disclosure vulnerability in Qualcomm USB driver [CVE-2016-3813 Moderate]
• Denial of service vulnerability in Qualcomm bootloader [CVE-2014-9798, CVE-2015-8893 Moderate]
• Elevation of privilege vulnerability in Qualcomm components (Device specific: some may affect Jolla1, some not) CVE-2014-9794, CVE-2014-9795, CVE-2013-7457, CVE-2014-9781, CVE-2014-9786, CVE-2014-9788, CVE-2014-9779, CVE-2014-9780, CVE-2014-9789, CVE-2014-9793, CVE-2014-9782, CVE-2014-9783, CVE-2014-9785, CVE-2014-9787, CVE-2014-9784, CVE-2014-9777, CVE-2014-9778, CVE-2014-9790, CVE-2014-9792, CVE-2014-9797, CVE-2014-9791, CVE-2014-9796, CVE-2014-9800, CVE-2014-9799, CVE-2014-9801, CVE-2014-9802, CVE-2015-8891, CVE-2015-8888, CVE-2015-8890 High

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires: kernel 3.4 in the case of Galaxy S4 mini featuring Android4.4.2 although this KitKat version normally requires kernel 3.10 [so in principle you are able to release new Android API while sticking to old Linux Kernel] ) and alien-dalvik level-upgrade (more likely NOT required because jolla1 already seems to use API ≥ 17 drivers but provides API16 for aliendalvik), too!

Andoid version available for MSM8930Ax devices [ link ]

Info about the WLAN host device driver installed on Jolla1: modinfo wlan returns a value vermagic: 3.4.108.20160401.1 SMP (2.0.2.45)

Edit 20160502: topic in next SailfishOS, open source, collaboration meeting 05. May 16 13.30h (UTC) Edit 20160505: meeting @sledges : <sledges> #info Jolla will look at the scope of this task

Edit 20160620: there are some changes in SFOS 2.0.2.45. It looks like kernel is updated 3.4.108.20150901 -> 3.4.108.20160401 and modules, too [wlan: sbj-wlan 0.2.6 -> 0.2.6.1 , policy-settings, pulseaudio-modules, preinit-plugin-sbj, jolla-recovery-sbj etc...].
Edit 20160713: But dmesg is still saying wlan: loading driver v3.2.1.74 in 2.0.2.45 as in SFOS2.0.1.7

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] [CVE-2016-0843] [CVE-2015-0569] [CVE-2015-0570] [CVE-2016-2465] [CVE-2016-2467] [CVE-2016-2468] many critical bugs discovered in qualcomm drivers, so an upgrade of Jolla1 (JollaC / auquafish affected too, but different bugs) drivers is needed.

• cve-2016-5080 asn.1asn.1: Objective Systems ASN1C generates code that contains a heap overflow vulnerability
• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453), (ANDROID-26754117 access:Remote), (ANDROID-26764809 access:Remote) and (ANDROID-26425765) and [CVE-2014-9902] [additionally (ANDROID-26763920 , 27662174 , 27773913 , 27776888 , 27777501, CVE-2016-3792 severity:High) and 27777162 severity:moderate]
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204), (ANDROID-25364034)) and (ANDROID-25801197), [CVE-2016-3768]
• (maybe Qualcomm Tethering controller [CVE-2016-2060])
• (maybe Elevation of Privilege Vulnerability in Qualcomm Buspm Driver [CVE-2016-2441],[CVE-2016-2442])
• (maybe Elevation of Privilege Vulnerability in Qualcomm TrustZone [CVE-2016-2431] or [CVE-2016-2432])
• Remote Denial of Service Vulnerability in Qualcomm Hardware Codec [CVE-2016-2454] (rated:High)
• Elevation of Privilege Vulnerability in Qualcomm Video Driver [CVE-2016-2465] (rated:Critical) (additionally ANDROID-27407629 rated:high)
• Elevation of Privilege Vulnerability in Qualcomm Sound Driver [CVE-2016-2467] (rated:Critical; access:Remote) [and (ANDROID-26876409), (ANDROID-27531992) and [CVE-2016-2068] rated:High]
• Elevation of Privilege Vulnerability in Qualcomm GPU Driver [CVE-2016-2468] [CVE-2016-2067] [CVE-2016-2504] (rated:Critical)
• Elevation of privilege vulnerability in Qualcomm camera driver [CVE-2016-2501 High]
• Information disclosure vulnerability in Qualcomm USB driver [CVE-2016-3813 Moderate]
• Denial of service vulnerability in Qualcomm bootloader [CVE-2014-9798, [CVE-2016-3850 High][CVE-2014-9798, CVE-2015-8893 Moderate]
• Elevation of privilege vulnerability in Qualcomm components (Device specific: some may affect Jolla1, Jolla1/C, some not) CVE-2014-9863 critical, CVE-2014-9794, CVE-2014-9795, CVE-2013-7457, CVE-2014-9781, CVE-2014-9786, CVE-2014-9788, CVE-2014-9779, CVE-2014-9780, CVE-2014-9789, CVE-2014-9793, CVE-2014-9782, CVE-2014-9783, CVE-2014-9785, CVE-2014-9787, CVE-2014-9784, CVE-2014-9777, CVE-2014-9778, CVE-2014-9790, CVE-2014-9792, CVE-2014-9797, CVE-2014-9791, CVE-2014-9796, CVE-2014-9800, CVE-2014-9799, CVE-2014-9801, CVE-2014-9802, CVE-2015-8891, CVE-2015-8888, CVE-2015-8890 High

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires: kernel 3.4 in the case of Galaxy S4 mini featuring Android4.4.2 although this KitKat version normally requires kernel 3.10 [so in principle you are able to release new Android API while sticking to old Linux Kernel] ) and alien-dalvik level-upgrade (more likely NOT required because jolla1 already seems to use API ≥ 17 drivers but provides API16 for aliendalvik), too!

Andoid version available for MSM8930Ax devices [ link ]

Info about the WLAN host device driver installed on Jolla1: modinfo wlan returns a value vermagic: 3.4.108.20160401.1 SMP (2.0.2.45)

Edit 20160502: topic in next SailfishOS, open source, collaboration meeting 05. May 16 13.30h (UTC) Edit 20160505: meeting @sledges : <sledges> #info Jolla will look at the scope of this task

Edit 20160620: there are some changes in SFOS 2.0.2.45. It looks like kernel is updated 3.4.108.20150901 -> 3.4.108.20160401 and modules, too [wlan: sbj-wlan 0.2.6 -> 0.2.6.1 , policy-settings, pulseaudio-modules, preinit-plugin-sbj, jolla-recovery-sbj etc...].
Edit 20160713: But dmesg is still saying wlan: loading driver v3.2.1.74 in 2.0.2.45 as in SFOS2.0.1.7SFOS2.0.1.7
Edit 20160806: still the same on 2.0.3.14

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] [CVE-2016-0843] [CVE-2015-0569] [CVE-2015-0570] [CVE-2016-2465] [CVE-2016-2467] [CVE-2016-2468] many critical bugs discovered in qualcomm drivers, so an upgrade of Jolla1 (JollaC / auquafish aquafish affected too, but different bugs) drivers is needed.

• cve-2016-5080 asn.1: Objective Systems ASN1C generates code that contains a heap overflow vulnerability
• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453), (ANDROID-26754117 access:Remote), (ANDROID-26764809 access:Remote) and (ANDROID-26425765) and [CVE-2014-9902] [additionally (ANDROID-26763920 , 27662174 , 27773913 , 27776888 , 27777501, CVE-2016-3792 severity:High) and 27777162 severity:moderate]
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204), (ANDROID-25364034)) and (ANDROID-25801197), [CVE-2016-3768]
• (maybe Qualcomm Tethering controller [CVE-2016-2060])
• (maybe Elevation of Privilege Vulnerability in Qualcomm Buspm Driver [CVE-2016-2441],[CVE-2016-2442])
• (maybe Elevation of Privilege Vulnerability in Qualcomm TrustZone [CVE-2016-2431] or [CVE-2016-2432])
• Remote Denial of Service Vulnerability in Qualcomm Hardware Codec [CVE-2016-2454] (rated:High)
• Elevation of Privilege Vulnerability in Qualcomm Video Driver [CVE-2016-2465] (rated:Critical) (additionally ANDROID-27407629 rated:high)
• Elevation of Privilege Vulnerability in Qualcomm Sound Driver [CVE-2016-2467] (rated:Critical; access:Remote) [and (ANDROID-26876409), (ANDROID-27531992) and [CVE-2016-2068] rated:High]
• Elevation of Privilege Vulnerability in Qualcomm GPU Driver [CVE-2016-2468] [CVE-2016-2067] [CVE-2016-2504] [CVE-2016-2504 quadrooter] [cve-2016-5340 quadrooter] (rated:Critical)
• Elevation of privilege vulnerability in Qualcomm camera driver [CVE-2016-2501 High]
• Information disclosure vulnerability in Qualcomm USB driver [CVE-2016-3813 Moderate]
• Denial of service vulnerability in Qualcomm bootloader [CVE-2016-3850 High][CVE-2014-9798, CVE-2015-8893 Moderate]
• Elevation of privilege vulnerability in Qualcomm components (Device specific: some may affect Jolla1/C, some not) CVE-2014-9863 critical, CVE-2014-9794, CVE-2014-9795, CVE-2013-7457, CVE-2014-9781, CVE-2014-9786, CVE-2014-9788, CVE-2014-9779, CVE-2014-9780, CVE-2014-9789, CVE-2014-9793, CVE-2014-9782, CVE-2014-9783, CVE-2014-9785, CVE-2014-9787, CVE-2014-9784, CVE-2014-9777, CVE-2014-9778, CVE-2014-9790, CVE-2014-9792, CVE-2014-9797, CVE-2014-9791, CVE-2014-9796, CVE-2014-9800, CVE-2014-9799, CVE-2014-9801, CVE-2014-9802, CVE-2015-8891, CVE-2015-8888, CVE-2015-8890 High

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires: kernel 3.4 in the case of Galaxy S4 mini featuring Android4.4.2 although this KitKat version normally requires kernel 3.10 [so in principle you are able to release new Android API while sticking to old Linux Kernel] ) and alien-dalvik level-upgrade (more likely NOT required because jolla1 already seems to use API ≥ 17 drivers but provides API16 for aliendalvik), too!

Andoid version available for MSM8930Ax devices [ link ]

Info about the WLAN host device driver installed on Jolla1: modinfo wlan returns a value vermagic: 3.4.108.20160401.1 SMP (2.0.2.45)

Edit 20160502: topic in next SailfishOS, open source, collaboration meeting 05. May 16 13.30h (UTC) Edit 20160505: meeting @sledges : <sledges> #info Jolla will look at the scope of this task

Edit 20160620: there are some changes in SFOS 2.0.2.45. It looks like kernel is updated 3.4.108.20150901 -> 3.4.108.20160401 and modules, too [wlan: sbj-wlan 0.2.6 -> 0.2.6.1 , policy-settings, pulseaudio-modules, preinit-plugin-sbj, jolla-recovery-sbj etc...].
Edit 20160713: But dmesg is still saying wlan: loading driver v3.2.1.74 in 2.0.2.45 as in SFOS2.0.1.7
Edit 20160806: still the same on 2.0.3.14

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] [CVE-2016-0843] [CVE-2015-0569] [CVE-2015-0570] [CVE-2016-2465] [CVE-2016-2467] [CVE-2016-2468] many critical bugs discovered in qualcomm drivers, so an upgrade of Jolla1 (JollaC / aquafish affected too, but different bugs) drivers is needed.

• cve-2016-5080 asn.1: Objective Systems ASN1C generates code that contains a heap overflow vulnerability
• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453), (ANDROID-26754117 access:Remote), (ANDROID-26764809 access:Remote) and (ANDROID-26425765) and [CVE-2014-9902] [additionally (ANDROID-26763920 , 27662174 , 27773913 , 27776888 , 27777501, CVE-2016-3792 severity:High) and 27777162 severity:moderate]
• ipc router kernel module cve-2016-2059 quadrooter
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204), (ANDROID-25364034)) and (ANDROID-25801197), [CVE-2016-3768]
• (maybe Qualcomm Tethering controller [CVE-2016-2060])
• (maybe Elevation of Privilege Vulnerability in Qualcomm Buspm Driver [CVE-2016-2441],[CVE-2016-2442])
• (maybe Elevation of Privilege Vulnerability in Qualcomm TrustZone [CVE-2016-2431] or [CVE-2016-2432])
• Remote Denial of Service Vulnerability in Qualcomm Hardware Codec [CVE-2016-2454] (rated:High)
• Elevation of Privilege Vulnerability in Qualcomm Video Driver [CVE-2016-2465] (rated:Critical) (additionally ANDROID-27407629 rated:high)
• Elevation of Privilege Vulnerability in Qualcomm Sound Driver [CVE-2016-2467] (rated:Critical; access:Remote) [and (ANDROID-26876409), (ANDROID-27531992) and [CVE-2016-2068] rated:High]
• Elevation of Privilege Vulnerability in Qualcomm GPU Driver [CVE-2016-2468] [CVE-2016-2067] [CVE-2016-2504 quadrooter] [cve-2016-5340 quadrooter] (rated:Critical)
• Elevation of privilege vulnerability in Qualcomm camera driver [CVE-2016-2501 High]
• Information disclosure vulnerability in Qualcomm USB driver [CVE-2016-3813 Moderate]
• Denial of service vulnerability in Qualcomm bootloader [CVE-2016-3850 High][CVE-2014-9798, CVE-2015-8893 Moderate]
• Elevation of privilege vulnerability in Qualcomm components (Device specific: some may affect Jolla1/C, some not) CVE-2014-9863 critical, CVE-2014-9794, CVE-2014-9795, CVE-2013-7457, CVE-2014-9781, CVE-2014-9786, CVE-2014-9788, CVE-2014-9779, CVE-2014-9780, CVE-2014-9789, CVE-2014-9793, CVE-2014-9782, CVE-2014-9783, CVE-2014-9785, CVE-2014-9787, CVE-2014-9784, CVE-2014-9777, CVE-2014-9778, CVE-2014-9790, CVE-2014-9792, CVE-2014-9797, CVE-2014-9791, CVE-2014-9796, CVE-2014-9800, CVE-2014-9799, CVE-2014-9801, CVE-2014-9802, CVE-2015-8891, CVE-2015-8888, CVE-2015-8890 High

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires: kernel 3.4 in the case of Galaxy S4 mini featuring Android4.4.2 although this KitKat version normally requires kernel 3.10 [so in principle you are able to release new Android API while sticking to old Linux Kernel] ) and alien-dalvik level-upgrade (more likely NOT required because jolla1 already seems to use API ≥ 17 drivers but provides API16 for aliendalvik), too!

Andoid version available for MSM8930Ax devices [ link ]

Info about the WLAN host device driver installed on Jolla1: modinfo wlan returns a value vermagic: 3.4.108.20160401.1 SMP (2.0.2.45)

Edit 20160502: topic in next SailfishOS, open source, collaboration meeting 05. May 16 13.30h (UTC) Edit 20160505: meeting @sledges : <sledges> #info Jolla will look at the scope of this task

Edit 20160620: there are some changes in SFOS 2.0.2.45. It looks like kernel is updated 3.4.108.20150901 -> 3.4.108.20160401 and modules, too [wlan: sbj-wlan 0.2.6 -> 0.2.6.1 , policy-settings, pulseaudio-modules, preinit-plugin-sbj, jolla-recovery-sbj etc...].
Edit 20160713: But dmesg is still saying wlan: loading driver v3.2.1.74 in 2.0.2.45 as in SFOS2.0.1.7
Edit 20160806: still the same on 2.0.3.14

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] [CVE-2016-0843] [CVE-2015-0569] [CVE-2015-0570] [CVE-2016-2465] [CVE-2016-2467] [CVE-2016-2468] many critical bugs discovered in qualcomm drivers, so an upgrade of Jolla1 (JollaC / aquafish affected too, but different bugs) drivers is needed.

• cve-2016-5080 asn.1: Objective Systems ASN1C generates code that contains a heap overflow vulnerability
• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453), (ANDROID-26754117 access:Remote), (ANDROID-26764809 access:Remote) and (ANDROID-26425765) and [CVE-2014-9902] [additionally (ANDROID-26763920 , 27662174 , 27773913 , 27776888 , 27777501, CVE-2016-3792 severity:High) and 27777162 severity:moderate]
• ipc router kernel module cve-2016-2059 quadrooter
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204), (ANDROID-25364034)) and (ANDROID-25801197), [CVE-2016-3768]
• (maybe Qualcomm Tethering controller [CVE-2016-2060])
• (maybe Elevation of Privilege Vulnerability in Qualcomm Buspm Driver [CVE-2016-2441],[CVE-2016-2442])
• (maybe Elevation of Privilege Vulnerability in Qualcomm TrustZone [CVE-2016-2431] or [CVE-2016-2432])
• Remote Denial of Service Vulnerability in Qualcomm Hardware Codec [CVE-2016-2454] (rated:High)
• Elevation of Privilege Vulnerability in Qualcomm Video Driver [CVE-2016-2465] (rated:Critical) (additionally ANDROID-27407629 rated:high)
• Elevation of Privilege Vulnerability in Qualcomm Sound Driver [CVE-2016-2467] (rated:Critical; access:Remote) [and (ANDROID-26876409), (ANDROID-27531992) and [CVE-2016-2068] rated:High]
• Elevation of Privilege Vulnerability in Qualcomm GPU Driver [CVE-2016-2468] [CVE-2016-2067] [CVE-2016-2504 quadrooter] [cve-2016-5340 quadrooter] (rated:Critical)
• Elevation of privilege vulnerability in Qualcomm camera driver [CVE-2016-2501 High]
• Information disclosure vulnerability in Qualcomm USB driver [CVE-2016-3813 Moderate]
• Denial of service vulnerability in Qualcomm bootloader [CVE-2016-3850 High][CVE-2014-9798, CVE-2015-8893 Moderate]
• Elevation of privilege vulnerability in Qualcomm components (Device specific: some may affect Jolla1/C, some not) CVE-2014-9863 critical, CVE-2014-9794, CVE-2014-9795, CVE-2013-7457, CVE-2014-9781, CVE-2014-9786, CVE-2014-9788, CVE-2014-9779, CVE-2014-9780, CVE-2014-9789, CVE-2014-9793, CVE-2014-9782, CVE-2014-9783, CVE-2014-9785, CVE-2014-9787, CVE-2014-9784, CVE-2014-9777, CVE-2014-9778, CVE-2014-9790, CVE-2014-9792, CVE-2014-9797, CVE-2014-9791, CVE-2014-9796, CVE-2014-9800, CVE-2014-9799, CVE-2014-9801, CVE-2014-9802, CVE-2015-8891, CVE-2015-8888, CVE-2015-8890 High

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires: kernel 3.4 in the case of Galaxy S4 mini featuring Android4.4.2 although this KitKat version normally requires kernel 3.10 [so in principle you are able to release new Android API while sticking to old Linux Kernel] ) and alien-dalvik level-upgrade (more likely NOT required because jolla1 already seems to use API ≥ 17 drivers but provides API16 for aliendalvik), too!

Andoid version available for MSM8930Ax devices [ link ]

Info about the WLAN host device driver installed on Jolla1: modinfo wlan returns a value vermagic: 3.4.108.20160401.1 SMP (2.0.2.45)

Edit 20160502: topic in next SailfishOS, open source, collaboration meeting 05. May 16 13.30h (UTC) Edit 20160505: meeting @sledges : <sledges> #info Jolla will look at the scope of this task

Edit 20160620: there are some changes in SFOS 2.0.2.45. It looks like kernel is updated 3.4.108.20150901 -> 3.4.108.20160401 and modules, too [wlan: sbj-wlan 0.2.6 -> 0.2.6.1 , policy-settings, pulseaudio-modules, preinit-plugin-sbj, jolla-recovery-sbj etc...].
Edit 20160713: But dmesg is still saying wlan: loading driver v3.2.1.74 in 2.0.2.45 as in SFOS2.0.1.7
Edit 20160806: still the same on 2.0.3.14

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] [CVE-2016-0843] [CVE-2015-0569] [CVE-2015-0570] [CVE-2016-2465] [CVE-2016-2467] [CVE-2016-2468] [CVE-2016-2468] Okt'16:[CVE-2016-3926] [CVE-2016-3927] many critical bugs discovered in qualcomm drivers, so an upgrade of Jolla1 (JollaC / aquafish affected too, but different bugs) drivers is needed.

• cve-2016-5080 asn.1: Objective Systems ASN1C generates code that contains a heap overflow vulnerability
• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453), (ANDROID-26754117 access:Remote), (ANDROID-26764809 access:Remote) and (ANDROID-26425765) and [CVE-2014-9902] [additionally (ANDROID-26763920 , 27662174 , 27773913 , 27776888 , 27777501, CVE-2016-3792 severity:High) and 27777162 severity:moderate]
• ipc router kernel module cve-2016-2059 quadrooter
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204), (ANDROID-25364034)) and (ANDROID-25801197), [CVE-2016-3768]
• (maybe Qualcomm Tethering controller [CVE-2016-2060])
• (maybe Elevation of Privilege Vulnerability in Qualcomm Buspm Driver [CVE-2016-2441],[CVE-2016-2442])
• (maybe Elevation of Privilege Vulnerability in Qualcomm TrustZone [CVE-2016-2431] or [CVE-2016-2432])
• Remote Denial of Service Vulnerability in Qualcomm Hardware Codec [CVE-2016-2454] (rated:High)
• Elevation of Privilege Vulnerability in Qualcomm Video Driver [CVE-2016-2465] (rated:Critical) (additionally ANDROID-27407629 rated:high)
• Elevation of Privilege Vulnerability in Qualcomm Sound Driver [CVE-2016-2467] (rated:Critical; access:Remote) [and (ANDROID-26876409), (ANDROID-27531992) and [CVE-2016-2068] rated:High]
• Elevation of Privilege Vulnerability in Qualcomm GPU Driver [CVE-2016-2468] [CVE-2016-2067] [CVE-2016-2504 quadrooter] [cve-2016-5340 quadrooter] (rated:Critical)
• Elevation of privilege vulnerability in Qualcomm camera driver [CVE-2016-2501 High]
• Information disclosure vulnerability in Qualcomm USB driver [CVE-2016-3813 Moderate]
• Denial of service vulnerability in Qualcomm bootloader [CVE-2016-3850 High][CVE-2014-9798, CVE-2015-8893 Moderate]
• Elevation of privilege vulnerability in Qualcomm components (Device specific: some may affect Jolla1/C, some not) CVE-2014-9863 critical, CVE-2014-9794, CVE-2014-9795, CVE-2013-7457, CVE-2014-9781, CVE-2014-9786, CVE-2014-9788, CVE-2014-9779, CVE-2014-9780, CVE-2014-9789, CVE-2014-9793, CVE-2014-9782, CVE-2014-9783, CVE-2014-9785, CVE-2014-9787, CVE-2014-9784, CVE-2014-9777, CVE-2014-9778, CVE-2014-9790, CVE-2014-9792, CVE-2014-9797, CVE-2014-9791, CVE-2014-9796, CVE-2014-9800, CVE-2014-9799, CVE-2014-9801, CVE-2014-9802, CVE-2015-8891, CVE-2015-8888, CVE-2015-8890 High

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires: kernel 3.4 in the case of Galaxy S4 mini featuring Android4.4.2 although this KitKat version normally requires kernel 3.10 [so in principle you are able to release new Android API while sticking to old Linux Kernel] ) and alien-dalvik level-upgrade (more likely NOT required because jolla1 already seems to use API ≥ 17 drivers but provides API16 for aliendalvik), too!

Andoid version available for MSM8930Ax devices [ link ]

Info about the WLAN host device driver installed on Jolla1: modinfo wlan returns a value vermagic: 3.4.108.20160401.1 SMP (2.0.2.45)

Edit 20160502: topic in next SailfishOS, open source, collaboration meeting 05. May 16 13.30h (UTC) Edit 20160505: meeting @sledges : <sledges> #info Jolla will look at the scope of this task

Edit 20160620: there are some changes in SFOS 2.0.2.45. It looks like kernel is updated 3.4.108.20150901 -> 3.4.108.20160401 and modules, too [wlan: sbj-wlan 0.2.6 -> 0.2.6.1 , policy-settings, pulseaudio-modules, preinit-plugin-sbj, jolla-recovery-sbj etc...].
Edit 20160713: But dmesg is still saying wlan: loading driver v3.2.1.74 in 2.0.2.45 as in SFOS2.0.1.7
Edit 20160806: still the same on 2.0.3.14

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] [CVE-2016-0843] [CVE-2015-0569] [CVE-2015-0570] [CVE-2016-2465] [CVE-2016-2467] [CVE-2016-2468] Okt'16:[CVE-2016-3926] Oct'16:[CVE-2016-3926] [CVE-2016-3927] many critical bugs discovered in qualcomm drivers, so an upgrade of Jolla1 (JollaC / aquafish affected too, but different bugs) drivers is needed.

• cve-2016-5080 asn.1: Objective Systems ASN1C generates code that contains a heap overflow vulnerability
• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453), (ANDROID-26754117 access:Remote), (ANDROID-26764809 access:Remote) and (ANDROID-26425765) and [CVE-2014-9902] [additionally (ANDROID-26763920 , 27662174 , 27773913 , 27776888 , 27777501, CVE-2016-3792 severity:High) and 27777162 severity:moderate]
• ipc router kernel module cve-2016-2059 quadrooter
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204), (ANDROID-25364034)) and (ANDROID-25801197), [CVE-2016-3768]
• (maybe Qualcomm Tethering controller [CVE-2016-2060])
• (maybe Elevation of Privilege Vulnerability in Qualcomm Buspm Driver [CVE-2016-2441],[CVE-2016-2442])
• (maybe Elevation of Privilege Vulnerability in Qualcomm TrustZone [CVE-2016-2431] or [CVE-2016-2432])
• Remote Denial of Service Vulnerability in Qualcomm Hardware Codec [CVE-2016-2454] (rated:High)
• Elevation of Privilege Vulnerability in Qualcomm Video Driver [CVE-2016-2465] (rated:Critical) (additionally ANDROID-27407629 rated:high)
• Elevation of Privilege Vulnerability in Qualcomm Sound Driver [CVE-2016-2467] (rated:Critical; access:Remote) [and (ANDROID-26876409), (ANDROID-27531992) and [CVE-2016-2068] rated:High]
• Elevation of Privilege Vulnerability in Qualcomm GPU Driver [CVE-2016-2468] [CVE-2016-2067] [CVE-2016-2504 quadrooter] [cve-2016-5340 quadrooter] (rated:Critical)
• Elevation of privilege vulnerability in Qualcomm camera driver [CVE-2016-2501 High]
• Information disclosure vulnerability in Qualcomm USB driver [CVE-2016-3813 Moderate]
• Denial of service vulnerability in Qualcomm bootloader [CVE-2016-3850 High][CVE-2014-9798, CVE-2015-8893 Moderate]
• Elevation of privilege vulnerability in Qualcomm components (Device specific: some may affect Jolla1/C, some not) CVE-2014-9863 critical, CVE-2014-9794, CVE-2014-9795, CVE-2013-7457, CVE-2014-9781, CVE-2014-9786, CVE-2014-9788, CVE-2014-9779, CVE-2014-9780, CVE-2014-9789, CVE-2014-9793, CVE-2014-9782, CVE-2014-9783, CVE-2014-9785, CVE-2014-9787, CVE-2014-9784, CVE-2014-9777, CVE-2014-9778, CVE-2014-9790, CVE-2014-9792, CVE-2014-9797, CVE-2014-9791, CVE-2014-9796, CVE-2014-9800, CVE-2014-9799, CVE-2014-9801, CVE-2014-9802, CVE-2015-8891, CVE-2015-8888, CVE-2015-8890 High
• • a lot of high & moderate vulnerabilities Sep'16 & Oct'16

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires: kernel 3.4 in the case of Galaxy S4 mini featuring Android4.4.2 although this KitKat version normally requires kernel 3.10 [so in principle you are able to release new Android API while sticking to old Linux Kernel] ) and alien-dalvik level-upgrade (more likely NOT required because jolla1 already seems to use API ≥ 17 drivers but provides API16 for aliendalvik), too!

Andoid version available for MSM8930Ax devices [ link ]

Info about the WLAN host device driver installed on Jolla1: modinfo wlan returns a value vermagic: 3.4.108.20160401.1 SMP (2.0.2.45)

Edit 20160502: topic in next SailfishOS, open source, collaboration meeting 05. May 16 13.30h (UTC) Edit 20160505: meeting @sledges : <sledges> #info Jolla will look at the scope of this task

Edit 20160620: there are some changes in SFOS 2.0.2.45. It looks like kernel is updated 3.4.108.20150901 -> 3.4.108.20160401 and modules, too [wlan: sbj-wlan 0.2.6 -> 0.2.6.1 , policy-settings, pulseaudio-modules, preinit-plugin-sbj, jolla-recovery-sbj etc...].
Edit 20160713: But dmesg is still saying wlan: loading driver v3.2.1.74 in 2.0.2.45 as in SFOS2.0.1.7
Edit 20160806: still the same on 2.0.3.14

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] [CVE-2016-0843] [CVE-2015-0569] [CVE-2015-0570] [CVE-2016-2465] [CVE-2016-2467] [CVE-2016-2468] Oct'16:[CVE-2016-3926] [CVE-2016-3927] many critical bugs discovered in qualcomm drivers, so an upgrade of Jolla1 (JollaC / aquafish affected too, but different bugs) drivers is needed.

• cve-2016-5080 asn.1: Objective Systems ASN1C generates code that contains a heap overflow vulnerability
• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453), (ANDROID-26754117 access:Remote), (ANDROID-26764809 access:Remote) and (ANDROID-26425765) and [CVE-2014-9902] [additionally (ANDROID-26763920 , 27662174 , 27773913 , 27776888 , 27777501, CVE-2016-3792 severity:High) and 27777162 severity:moderate]
• ipc router kernel module cve-2016-2059 quadrooter
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204), (ANDROID-25364034)) and (ANDROID-25801197), [CVE-2016-3768]
• (maybe Qualcomm Tethering controller [CVE-2016-2060])
• (maybe Elevation of Privilege Vulnerability in Qualcomm Buspm Driver [CVE-2016-2441],[CVE-2016-2442])
• (maybe Elevation of Privilege Vulnerability in Qualcomm TrustZone [CVE-2016-2431] or [CVE-2016-2432])
• Remote Denial of Service Vulnerability in Qualcomm Hardware Codec [CVE-2016-2454] (rated:High)
• Elevation of Privilege Vulnerability in Qualcomm Video Driver [CVE-2016-2465] (rated:Critical) (additionally ANDROID-27407629 rated:high)
• Elevation of Privilege Vulnerability in Qualcomm Sound Driver [CVE-2016-2467] (rated:Critical; access:Remote) [and (ANDROID-26876409), (ANDROID-27531992) and [CVE-2016-2068] rated:High]
• Elevation of Privilege Vulnerability in Qualcomm GPU Driver [CVE-2016-2468] [CVE-2016-2067] [CVE-2016-2504 quadrooter] [cve-2016-5340 quadrooter] (rated:Critical)
• Elevation of privilege vulnerability in Qualcomm camera driver [CVE-2016-2501 High]
• Information disclosure vulnerability in Qualcomm USB driver [CVE-2016-3813 Moderate]
• Denial of service vulnerability in Qualcomm bootloader [CVE-2016-3850 High][CVE-2014-9798, CVE-2015-8893 Moderate]
• Elevation of privilege vulnerability in Qualcomm components (Device specific: some may affect Jolla1/C, some not) CVE-2014-9863 critical, CVE-2014-9794, CVE-2014-9795, CVE-2013-7457, CVE-2014-9781, CVE-2014-9786, CVE-2014-9788, CVE-2014-9779, CVE-2014-9780, CVE-2014-9789, CVE-2014-9793, CVE-2014-9782, CVE-2014-9783, CVE-2014-9785, CVE-2014-9787, CVE-2014-9784, CVE-2014-9777, CVE-2014-9778, CVE-2014-9790, CVE-2014-9792, CVE-2014-9797, CVE-2014-9791, CVE-2014-9796, CVE-2014-9800, CVE-2014-9799, CVE-2014-9801, CVE-2014-9802, CVE-2015-8891, CVE-2015-8888, CVE-2015-8890 High
• • a lot of high & moderate vulnerabilities Sep'16 & Oct'16

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires: kernel 3.4 in the case of Galaxy S4 mini featuring Android4.4.2 although this KitKat version normally requires kernel 3.10 [so in principle you are able to release new Android API while sticking to old Linux Kernel] ) and alien-dalvik level-upgrade (more likely NOT required because jolla1 already seems to use API ≥ 17 drivers but provides API16 for aliendalvik), too!

Andoid version available for MSM8930Ax devices [ link ]

Info about the WLAN host device driver installed on Jolla1: modinfo wlan returns a value vermagic: 3.4.108.20160401.1 SMP (2.0.2.45)

Edit 20160502: topic in next SailfishOS, open source, collaboration meeting 05. May 16 13.30h (UTC) Edit 20160505: meeting @sledges : <sledges> #info Jolla will look at the scope of this task

Edit 20160620: there are some changes in SFOS 2.0.2.45. It looks like kernel is updated 3.4.108.20150901 -> 3.4.108.20160401 and modules, too [wlan: sbj-wlan 0.2.6 -> 0.2.6.1 , policy-settings, pulseaudio-modules, preinit-plugin-sbj, jolla-recovery-sbj etc...].
Edit 20160713: But dmesg is still saying wlan: loading driver v3.2.1.74 in 2.0.2.45 as in SFOS2.0.1.7
Edit 20160806: still the same on 2.0.3.142.0.3.14
Edit 20161007: still the same on 2.0.4.13: wlan: loading driver v3.2.1.74/modinfo wlan: vermagic: 3.4.108.20160401.1 SMP / sbj-wlan-0.2.6.1-10.21.14.jolla.armv7hl.rpm

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] [CVE-2016-0843] [CVE-2015-0569] [CVE-2015-0570] [CVE-2016-2465] [CVE-2016-2467] [CVE-2016-2468] Oct'16:[CVE-2016-3926] [CVE-2016-3927] many critical bugs discovered in qualcomm drivers, so an upgrade of Jolla1 (JollaC / aquafish affected too, but different bugs) drivers is needed.

• cve-2016-5080 asn.1: Objective Systems ASN1C generates code that contains a heap overflow vulnerability
• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453), (ANDROID-26754117 access:Remote), (ANDROID-26764809 access:Remote) and (ANDROID-26425765) and [CVE-2014-9902] [additionally (ANDROID-26763920 , 27662174 , 27773913 , 27776888 , 27777501, CVE-2016-3792 severity:High) and 27777162 severity:moderate]
• ipc router kernel module cve-2016-2059 quadrooter
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204), (ANDROID-25364034)) and (ANDROID-25801197), [CVE-2016-3768]
• (maybe Qualcomm Tethering controller [CVE-2016-2060])
• (maybe Elevation of Privilege Vulnerability in Qualcomm Buspm Driver [CVE-2016-2441],[CVE-2016-2442])
• (maybe Elevation of Privilege Vulnerability in Qualcomm TrustZone [CVE-2016-2431] or [CVE-2016-2432])
• Remote Denial of Service Vulnerability in Qualcomm Hardware Codec [CVE-2016-2454] (rated:High)
• Elevation of Privilege Vulnerability in Qualcomm Video Driver [CVE-2016-2465] (rated:Critical) (additionally ANDROID-27407629 rated:high)
• Elevation of Privilege Vulnerability in Qualcomm Sound Driver [CVE-2016-2467] (rated:Critical; access:Remote) [and (ANDROID-26876409), (ANDROID-27531992) and [CVE-2016-2068] rated:High]
• Elevation of Privilege Vulnerability in Qualcomm GPU Driver [CVE-2016-2468] [CVE-2016-2067] [CVE-2016-2504 quadrooter] [cve-2016-5340 quadrooter] (rated:Critical)
• Elevation of privilege vulnerability in Qualcomm camera driver [CVE-2016-2501 High]
• Information disclosure vulnerability in Qualcomm USB driver [CVE-2016-3813 Moderate]
• Denial of service vulnerability in Qualcomm bootloader [CVE-2016-3850 High][CVE-2014-9798, CVE-2015-8893 Moderate]
• Elevation of privilege vulnerability in Qualcomm components (Device specific: some may affect Jolla1/C, some not) CVE-2014-9863 critical, CVE-2014-9794, CVE-2014-9795, CVE-2013-7457, CVE-2014-9781, CVE-2014-9786, CVE-2014-9788, CVE-2014-9779, CVE-2014-9780, CVE-2014-9789, CVE-2014-9793, CVE-2014-9782, CVE-2014-9783, CVE-2014-9785, CVE-2014-9787, CVE-2014-9784, CVE-2014-9777, CVE-2014-9778, CVE-2014-9790, CVE-2014-9792, CVE-2014-9797, CVE-2014-9791, CVE-2014-9796, CVE-2014-9800, CVE-2014-9799, CVE-2014-9801, CVE-2014-9802, CVE-2015-8891, CVE-2015-8888, CVE-2015-8890 High
• • a lot of high & moderate vulnerabilities Sep'16 & Oct'16

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires: kernel 3.4 in the case of Galaxy S4 mini featuring Android4.4.2 although this KitKat version normally requires kernel 3.10 [so in principle you are able to release new Android API while sticking to old Linux Kernel] ) and alien-dalvik level-upgrade (more likely NOT required because jolla1 already seems to use API ≥ 17 drivers but provides API16 for aliendalvik), too!

Andoid version available for MSM8930Ax devices [ link ] : 4.4.2 with Android security patch level: 01.09.2016

Info about the WLAN host device driver installed on Jolla1: modinfo wlan returns a value vermagic: 3.4.108.20160401.1 SMP (2.0.2.45)

Edit 20160502: topic in next SailfishOS, open source, collaboration meeting 05. May 16 13.30h (UTC) Edit 20160505: meeting @sledges : <sledges> #info Jolla will look at the scope of this task

Edit 20160620: there are some changes in SFOS 2.0.2.45. It looks like kernel is updated 3.4.108.20150901 -> 3.4.108.20160401 and modules, too [wlan: sbj-wlan 0.2.6 -> 0.2.6.1 , policy-settings, pulseaudio-modules, preinit-plugin-sbj, jolla-recovery-sbj etc...].
Edit 20160713: But dmesg is still saying wlan: loading driver v3.2.1.74 in 2.0.2.45 as in SFOS2.0.1.7
Edit 20160806: still the same on 2.0.3.14
Edit 20161007: still the same on 2.0.4.13: 2.0.4.14: wlan: loading driver v3.2.1.74/modinfo wlan: vermagic: 3.4.108.20160401.1 SMP / sbj-wlan-0.2.6.1-10.21.14.jolla.armv7hl.rpm

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] [CVE-2016-0843] [CVE-2015-0569] [CVE-2015-0570] [CVE-2016-2465] [CVE-2016-2467] [CVE-2016-2468] Oct'16:[CVE-2016-3926] [CVE-2016-3927] [CVE-2016-3927] Nov'16: [CVE-2016-6725] [CVE-2016-6729] many critical bugs discovered in qualcomm drivers, so an upgrade of Jolla1 (JollaC / aquafish affected too, but different bugs) drivers is needed.

• cve-2016-5080 asn.1: Objective Systems ASN1C generates code that contains a heap overflow vulnerability
• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453), (ANDROID-26754117 access:Remote), (ANDROID-26764809 access:Remote) and (ANDROID-26425765) and [CVE-2014-9902] [additionally (ANDROID-26763920 , 27662174 , 27773913 , 27776888 , 27777501, CVE-2016-3792 severity:High) and 27777162 severity:moderate]
• ipc router kernel module cve-2016-2059 quadrooter
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204), (ANDROID-25364034)) and (ANDROID-25801197), [CVE-2016-3768]
• (maybe Qualcomm Tethering controller [CVE-2016-2060])
• (maybe Elevation of Privilege Vulnerability in Qualcomm Buspm Driver [CVE-2016-2441],[CVE-2016-2442])
• (maybe Elevation of Privilege Vulnerability in Qualcomm TrustZone [CVE-2016-2431] or [CVE-2016-2432])
• Remote Denial of Service Vulnerability in Qualcomm Hardware Codec [CVE-2016-2454] (rated:High)
• Elevation of Privilege Vulnerability in Qualcomm Video Driver [CVE-2016-2465] (rated:Critical) (additionally ANDROID-27407629 rated:high)
• Elevation of Privilege Vulnerability in Qualcomm Sound Driver [CVE-2016-2467] (rated:Critical; access:Remote) [and (ANDROID-26876409), (ANDROID-27531992) and [CVE-2016-2068] rated:High]
• Elevation of Privilege Vulnerability in Qualcomm GPU Driver [CVE-2016-2468] [CVE-2016-2067] [CVE-2016-2504 quadrooter] [cve-2016-5340 quadrooter] (rated:Critical)
• Elevation of privilege vulnerability in Qualcomm camera driver [CVE-2016-2501 High]
• Information disclosure vulnerability in Qualcomm USB driver [CVE-2016-3813 Moderate]
• Denial of service vulnerability in Qualcomm bootloader [CVE-2016-3850 High][CVE-2014-9798, CVE-2015-8893 Moderate]Moderate] [CVE-2016-6729 critical]
• Remote code execution vulnerability in Qualcomm crypto driver [CVE-2016-6725 critical]
• Elevation of privilege vulnerability in Qualcomm components (Device specific: some may affect Jolla1/C, some not) CVE-2014-9863 critical, CVE-2014-9794, CVE-2014-9795, CVE-2013-7457, CVE-2014-9781, CVE-2014-9786, CVE-2014-9788, CVE-2014-9779, CVE-2014-9780, CVE-2014-9789, CVE-2014-9793, CVE-2014-9782, CVE-2014-9783, CVE-2014-9785, CVE-2014-9787, CVE-2014-9784, CVE-2014-9777, CVE-2014-9778, CVE-2014-9790, CVE-2014-9792, CVE-2014-9797, CVE-2014-9791, CVE-2014-9796, CVE-2014-9800, CVE-2014-9799, CVE-2014-9801, CVE-2014-9802, CVE-2015-8891, CVE-2015-8888, CVE-2015-8890 High
• • a lot of high & moderate vulnerabilities Sep'16 & Oct'16 & Nov'16

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires: kernel 3.4 in the case of Galaxy S4 mini featuring Android4.4.2 although this KitKat version normally requires kernel 3.10 [so in principle you are able to release new Android API while sticking to old Linux Kernel] ) and alien-dalvik level-upgrade (more likely NOT required because jolla1 already seems to use API ≥ 17 drivers but provides API16 for aliendalvik), too!

Andoid version available for MSM8930Ax devices [ link ] : 4.4.2 with Android security patch level: 01.09.2016

Info about the WLAN host device driver installed on Jolla1: modinfo wlan returns a value vermagic: 3.4.108.20160401.1 3.4.108.20161101.1 SMP (2.0.2.45)(2.0.5.6)

Edit 20160502: topic in next SailfishOS, open source, collaboration meeting 05. May 16 13.30h (UTC) Edit 20160505: meeting @sledges : <sledges> #info Jolla will look at the scope of this task

Edit 20160620: there are some changes in SFOS 2.0.2.45. It looks like kernel is updated 3.4.108.20150901 -> 3.4.108.20160401 and modules, too [wlan: sbj-wlan 0.2.6 -> 0.2.6.1 , policy-settings, pulseaudio-modules, preinit-plugin-sbj, jolla-recovery-sbj etc...].
Edit 20160713: But dmesg is still saying wlan: loading driver v3.2.1.74 in 2.0.2.45 as in SFOS2.0.1.7
Edit 20160806: still the same on 2.0.3.14
Edit 20161007: still the same on 2.0.4.14: wlan: loading driver v3.2.1.74/modinfo wlan: vermagic: 3.4.108.20160401.1 SMP / sbj-wlan-0.2.6.1-10.21.14.jolla.armv7hl.rpm
Edit 20161127: 2.0.5.6: still wlan: loading driver v3.2.1.74/modinfo wlan: vermagic: 3.4.108.20161101.1 SMP / sbj-wlan-0.2.6.1-10.22.2.jolla.armv7hl.rpm

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] [CVE-2016-0843] [CVE-2015-0569] [CVE-2015-0570] [CVE-2016-2465] [CVE-2016-2467] [CVE-2016-2468] Oct'16:[CVE-2016-3926] [CVE-2016-3927] Nov'16: [CVE-2016-6725] [CVE-2016-6729] many critical bugs discovered in qualcomm drivers, so an upgrade of Jolla1 (JollaC / aquafish affected too, but different bugs) drivers is needed.

• cve-2016-5080 asn.1: Objective Systems ASN1C generates code that contains a heap overflow vulnerability
• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453), (ANDROID-26754117 access:Remote), (ANDROID-26764809 access:Remote) and (ANDROID-26425765) and [CVE-2014-9902] [additionally (ANDROID-26763920 , 27662174 , 27773913 , 27776888 , 27777501, CVE-2016-3792 severity:High) and 27777162 severity:moderate]
• ipc router kernel module cve-2016-2059 quadrooter
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204), (ANDROID-25364034)) and (ANDROID-25801197), [CVE-2016-3768]
• (maybe Qualcomm Tethering controller [CVE-2016-2060])
• (maybe Elevation of Privilege Vulnerability in Qualcomm Buspm Driver [CVE-2016-2441],[CVE-2016-2442])
• (maybe Elevation of Privilege Vulnerability in Qualcomm TrustZone [CVE-2016-2431] or [CVE-2016-2432])
• Remote Denial of Service Vulnerability in Qualcomm Hardware Codec [CVE-2016-2454] (rated:High)
• Elevation of Privilege Vulnerability in Qualcomm Video Driver [CVE-2016-2465] (rated:Critical) (additionally ANDROID-27407629 rated:high)
• Elevation of Privilege Vulnerability in Qualcomm Sound Driver [CVE-2016-2467] (rated:Critical; access:Remote) [and (ANDROID-26876409), (ANDROID-27531992) and [CVE-2016-2068] rated:High]
• Elevation of Privilege Vulnerability in Qualcomm GPU Driver [CVE-2016-2468] [CVE-2016-2067] [CVE-2016-2504 quadrooter] [cve-2016-5340 quadrooter] (rated:Critical)
• Elevation of privilege vulnerability in Qualcomm camera driver [CVE-2016-2501 High]
• Information disclosure vulnerability in Qualcomm USB driver [CVE-2016-3813 Moderate]
• Denial of service vulnerability in Qualcomm bootloader [CVE-2016-3850 High][CVE-2014-9798, CVE-2015-8893 Moderate] [CVE-2016-6729 critical]
• Remote code execution vulnerability in Qualcomm crypto driver [CVE-2016-6725 critical]
• Elevation of privilege vulnerability in Qualcomm components (Device specific: some may affect Jolla1/C, some not) CVE-2014-9863 critical, CVE-2014-9794, CVE-2014-9795, CVE-2013-7457, CVE-2014-9781, CVE-2014-9786, CVE-2014-9788, CVE-2014-9779, CVE-2014-9780, CVE-2014-9789, CVE-2014-9793, CVE-2014-9782, CVE-2014-9783, CVE-2014-9785, CVE-2014-9787, CVE-2014-9784, CVE-2014-9777, CVE-2014-9778, CVE-2014-9790, CVE-2014-9792, CVE-2014-9797, CVE-2014-9791, CVE-2014-9796, CVE-2014-9800, CVE-2014-9799, CVE-2014-9801, CVE-2014-9802, CVE-2015-8891, CVE-2015-8888, CVE-2015-8890 High
• • a lot of high & moderate vulnerabilities Sep'16 & Oct'16 & Nov'16

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires: kernel 3.4 in the case of Galaxy S4 mini featuring Android4.4.2 although this KitKat version normally requires kernel 3.10 [so in principle you are able to release new Android API while sticking to old Linux Kernel] ) and alien-dalvik level-upgrade (more likely NOT required because jolla1 already seems to use API ≥ 17 drivers but provides API16 for aliendalvik), too!

Andoid version available for MSM8930Ax devices [ link ] : 4.4.2 with Android security patch level: 01.09.2016

Info about the WLAN host device driver installed on Jolla1: modinfo wlan returns a value vermagic: 3.4.108.20161101.1 SMP (2.0.5.6)

Edit 20160502: topic in next SailfishOS, open source, collaboration meeting 05. May 16 13.30h (UTC) Edit 20160505: meeting @sledges : <sledges> #info Jolla will look at the scope of this task

Edit 20160620: there are some changes in SFOS 2.0.2.45. It looks like kernel is updated 3.4.108.20150901 -> 3.4.108.20160401 and modules, too [wlan: sbj-wlan 0.2.6 -> 0.2.6.1 , policy-settings, pulseaudio-modules, preinit-plugin-sbj, jolla-recovery-sbj etc...].
Edit 20160713: But dmesg is still saying wlan: loading driver v3.2.1.74 in 2.0.2.45 as in SFOS2.0.1.7
Edit 20160806: still the same on 2.0.3.14
Edit 20161007: still the same on 2.0.4.14: wlan: loading driver v3.2.1.74/modinfo wlan: vermagic: 3.4.108.20160401.1 SMP / sbj-wlan-0.2.6.1-10.21.14.jolla.armv7hl.rpm
Edit 20161127: 2.0.5.6: still wlan: loading driver v3.2.1.74/modinfo wlan: vermagic: 3.4.108.20161101.1 SMP / sbj-wlan-0.2.6.1-10.22.2.jolla.armv7hl.rpm

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] [CVE-2016-0843] [CVE-2015-0569] [CVE-2015-0570] [CVE-2016-2465] [CVE-2016-2467] [CVE-2016-2468] Oct'16:[CVE-2016-3926] [CVE-2016-3927] Nov'16: [CVE-2016-6725] [CVE-2016-6729] many critical bugs discovered in qualcomm drivers, so an upgrade of Jolla1 (JollaC / aquafish affected too, but different bugs) drivers is needed.

• cve-2016-5080 asn.1: Objective Systems ASN1C generates code that contains a heap overflow vulnerability
• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453), (ANDROID-26754117 access:Remote), (ANDROID-26764809 access:Remote) and (ANDROID-26425765) and [CVE-2014-9902] [additionally (ANDROID-26763920 , 27662174 , 27773913 , 27776888 , 27777501, CVE-2016-3792 severity:High) and 27777162 severity:moderate]
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204), (ANDROID-25364034)) and (ANDROID-25801197), [CVE-2016-3768]
• (maybe Qualcomm Tethering controller [CVE-2016-2060])
• (maybe Elevation of Privilege Vulnerability in Qualcomm Buspm Driver [CVE-2016-2441],[CVE-2016-2442])
• (maybe Elevation of Privilege Vulnerability in Qualcomm TrustZone [CVE-2016-2431] or [CVE-2016-2432])
• Remote Denial of Service Vulnerability in Qualcomm Hardware Codec [CVE-2016-2454] (rated:High)(rated:High) [CVE-2016-6758 -61 High]
• Elevation of Privilege Vulnerability in Qualcomm Video Driver [CVE-2016-2465] (rated:Critical) (additionally ANDROID-27407629 rated:high)
• Elevation of Privilege Vulnerability in Qualcomm Sound Driver [CVE-2016-2467] (rated:Critical; access:Remote) [and (ANDROID-26876409), (ANDROID-27531992) and [CVE-2016-2068] rated:High]rated:High], [CVE-2016-6791 High], [CVE-2016-8391 High], [CVE-2016-8392 High]
• Elevation of Privilege Vulnerability in Qualcomm GPU Driver [CVE-2016-2468] [CVE-2016-2067] [cve-2016-5340 quadrooter] (rated:Critical)
• Elevation of privilege vulnerability in Qualcomm camera driver [CVE-2016-2501 High] [CVE-2016-6755 High]
• Denial of service vulnerability in Qualcomm GPS driver [CVE-2016-5341 High]
• Information disclosure vulnerability in Qualcomm USB driver [CVE-2016-3813 Moderate]
• Denial of service vulnerability in Qualcomm bootloader [CVE-2016-3850 High][CVE-2014-9798, CVE-2015-8893 Moderate] [CVE-2016-6729 critical]
• Remote code execution vulnerability in Qualcomm crypto driver [CVE-2016-6725 critical]
• Elevation of privilege vulnerability in Qualcomm components (Device specific: some may affect Jolla1/C, some not) CVE-2014-9863 CVE-2014-9863, CVE-2016-8411 critical, CVE-2014-9794, CVE-2014-9795, CVE-2013-7457, CVE-2014-9781, CVE-2014-9786, CVE-2014-9788, CVE-2014-9779, CVE-2014-9780, CVE-2014-9789, CVE-2014-9793, CVE-2014-9782, CVE-2014-9783, CVE-2014-9785, CVE-2014-9787, CVE-2014-9784, CVE-2014-9777, CVE-2014-9778, CVE-2014-9790, CVE-2014-9792, CVE-2014-9797, CVE-2014-9791, CVE-2014-9796, CVE-2014-9800, CVE-2014-9799, CVE-2014-9801, CVE-2014-9802, CVE-2015-8891, CVE-2015-8888, CVE-2015-8890 High
• • a lot of high & moderate vulnerabilities Sep'16 & Oct'16 & Nov'16 & Dec'16

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires: kernel 3.4 in the case of Galaxy S4 mini featuring Android4.4.2 although this KitKat version normally requires kernel 3.10 [so in principle you are able to release new Android API while sticking to old Linux Kernel] ) and alien-dalvik level-upgrade (more likely NOT required because jolla1 already seems to use API ≥ 17 drivers but provides API16 for aliendalvik), too!

Andoid version available for MSM8930Ax devices [ link ] : 4.4.2 with Android security patch level: 01.09.2016

Info about the WLAN host device driver installed on Jolla1: modinfo wlan returns a value vermagic: 3.4.108.20161101.1 SMP (2.0.5.6)

Edit 20160502: topic in next SailfishOS, open source, collaboration meeting 05. May 16 13.30h (UTC) Edit 20160505: meeting @sledges : <sledges> #info Jolla will look at the scope of this task

Edit 20160620: there are some changes in SFOS 2.0.2.45. It looks like kernel is updated 3.4.108.20150901 -> 3.4.108.20160401 and modules, too [wlan: sbj-wlan 0.2.6 -> 0.2.6.1 , policy-settings, pulseaudio-modules, preinit-plugin-sbj, jolla-recovery-sbj etc...].
Edit 20160713: But dmesg is still saying wlan: loading driver v3.2.1.74 in 2.0.2.45 as in SFOS2.0.1.7
Edit 20160806: still the same on 2.0.3.14
Edit 20161007: still the same on 2.0.4.14: wlan: loading driver v3.2.1.74/modinfo wlan: vermagic: 3.4.108.20160401.1 SMP / sbj-wlan-0.2.6.1-10.21.14.jolla.armv7hl.rpm
Edit 20161127: 2.0.5.6: still wlan: loading driver v3.2.1.74/modinfo wlan: vermagic: 3.4.108.20161101.1 SMP / sbj-wlan-0.2.6.1-10.22.2.jolla.armv7hl.rpm

• [cve-2016-2059 quadrooter], [CVE-2016-2504 quadrooter], [CVE-2016-4008 libtasn1] fixed in Haapajoki(2.0.5)

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] [CVE-2016-0843] [CVE-2015-0569] [CVE-2015-0570] [CVE-2016-2465] [CVE-2016-2467] [CVE-2016-2468] Oct'16:[CVE-2016-3926] [CVE-2016-3927] Nov'16: [CVE-2016-6725] [CVE-2016-6729] many critical bugs discovered in qualcomm drivers, so an upgrade of Jolla1 (JollaC / aquafish affected too, but different bugs) drivers is needed.

• cve-2016-5080 asn.1: Objective Systems ASN1C generates code that contains a heap overflow vulnerability
• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453), (ANDROID-26754117 access:Remote), (ANDROID-26764809 access:Remote) and (ANDROID-26425765) and [CVE-2014-9902] [additionally (ANDROID-26763920 , 27662174 , 27773913 , 27776888 , 27777501, CVE-2016-3792 severity:High) and 27777162 severity:moderate]severity:moderate] (maybe high CVE-2017-0437 -> -0439 and CVE-2016-8419 -> -8421 and CVE-2017-0440 -> -0443 and CVE-2016-8476)
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204), (ANDROID-25364034)) and (ANDROID-25801197), [CVE-2016-3768]
• (maybe Qualcomm Tethering controller [CVE-2016-2060])
• (maybe Elevation of Privilege Vulnerability in Qualcomm Buspm Driver [CVE-2016-2441],[CVE-2016-2442])
• (maybe Elevation of Privilege Vulnerability in Qualcomm TrustZone [CVE-2016-2431] or [CVE-2016-2432])
• Remote Denial of Service Vulnerability in Qualcomm Hardware Codec [CVE-2016-2454] (rated:High) [CVE-2016-6758 -61 High]
• Elevation of Privilege Vulnerability in Qualcomm Video Driver [CVE-2016-2465] (rated:Critical) (additionally ANDROID-27407629 rated:high)
• Elevation of Privilege Vulnerability in Qualcomm Sound Driver [CVE-2016-2467] (rated:Critical; access:Remote) [and (ANDROID-26876409), (ANDROID-27531992) and [CVE-2016-2068] rated:High], [CVE-2016-6791 High], [CVE-2016-8391 High], [CVE-2016-8392 High]
• Elevation of Privilege Vulnerability in Qualcomm GPU Driver [CVE-2016-2468] [CVE-2016-2067] [cve-2016-5340 quadrooter] (rated:Critical)
• Elevation of privilege vulnerability in Qualcomm camera driver [CVE-2016-2501 High] [CVE-2016-6755 High]
• Denial of service vulnerability in Qualcomm GPS driver [CVE-2016-5341 High]
• Information disclosure vulnerability in Qualcomm USB driver [CVE-2016-3813 Moderate]
• Denial of service vulnerability in Qualcomm bootloader [CVE-2016-3850 High][CVE-2014-9798, CVE-2015-8893 Moderate] [CVE-2016-6729 critical]
• Remote code execution vulnerability in Qualcomm crypto driver [CVE-2016-6725 critical]
• Elevation of privilege vulnerability in Qualcomm components (Device specific: some may affect Jolla1/C, some not) CVE-2014-9863, CVE-2016-8411 critical, CVE-2014-9794, CVE-2014-9795, CVE-2013-7457, CVE-2014-9781, CVE-2014-9786, CVE-2014-9788, CVE-2014-9779, CVE-2014-9780, CVE-2014-9789, CVE-2014-9793, CVE-2014-9782, CVE-2014-9783, CVE-2014-9785, CVE-2014-9787, CVE-2014-9784, CVE-2014-9777, CVE-2014-9778, CVE-2014-9790, CVE-2014-9792, CVE-2014-9797, CVE-2014-9791, CVE-2014-9796, CVE-2014-9800, CVE-2014-9799, CVE-2014-9801, CVE-2014-9802, CVE-2015-8891, CVE-2015-8888, CVE-2015-8890 High
• one or more of CVE-2016-8398 CVE-2016-8437 CVE-2016-8438 CVE-2016-8439 CVE-2016-8440 CVE-2016-8441 CVE-2016-8442 CVE-2016-8443 CVE-2016-8459 CVE-2017-0431
• • a lot of high & moderate vulnerabilities Sep'16 & Oct'16 & Nov'16 & Dec'16 & Jan'17 & Feb'17

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires: kernel 3.4 in the case of Galaxy S4 mini featuring Android4.4.2 although this KitKat version normally requires kernel 3.10 [so in principle you are able to release new Android API while sticking to old Linux Kernel] ) and alien-dalvik level-upgrade (more likely NOT required because jolla1 already seems to use API ≥ 17 drivers but provides API16 for aliendalvik), too!

Andoid version available for MSM8930Ax devices [ link ] : 4.4.2 with Android security patch level: 01.09.2016

x=A (e.g. Jolla1) x=B (e.g. Galaxy S4 mini)

Info about the WLAN host device driver installed on Jolla1: modinfo wlan returns a value vermagic: 3.4.108.20161101.1 SMP (2.0.5.6)

Edit 20160502: topic in next SailfishOS, open source, collaboration meeting 05. May 16 13.30h (UTC) Edit 20160505: meeting @sledges : <sledges> #info Jolla will look at the scope of this task

Edit 20160620: there are some changes in SFOS 2.0.2.45. It looks like kernel is updated 3.4.108.20150901 -> 3.4.108.20160401 and modules, too [wlan: sbj-wlan 0.2.6 -> 0.2.6.1 , policy-settings, pulseaudio-modules, preinit-plugin-sbj, jolla-recovery-sbj etc...].
Edit 20160713: But dmesg is still saying wlan: loading driver v3.2.1.74 in 2.0.2.45 as in SFOS2.0.1.7
Edit 20160806: still the same on 2.0.3.14
Edit 20161007: still the same on 2.0.4.14: wlan: loading driver v3.2.1.74/modinfo wlan: vermagic: 3.4.108.20160401.1 SMP / sbj-wlan-0.2.6.1-10.21.14.jolla.armv7hl.rpm
Edit 20161127: 2.0.5.6: still wlan: loading driver v3.2.1.74/modinfo wlan: vermagic: 3.4.108.20161101.1 SMP / sbj-wlan-0.2.6.1-10.22.2.jolla.armv7hl.rpm

• [cve-2016-2059 quadrooter], [CVE-2016-2504 quadrooter], [CVE-2016-4008 libtasn1] fixed in Haapajoki(2.0.5)

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] [CVE-2016-0843] [CVE-2015-0569] [CVE-2015-0570] [CVE-2016-2465] [CVE-2016-2467] [CVE-2016-2468] Oct'16:[CVE-2016-3926] [CVE-2016-3927] Nov'16: [CVE-2016-6725] [CVE-2016-6729] many critical bugs discovered in qualcomm drivers, so an upgrade of Jolla1 (JollaC / aquafish affected too, but different bugs) drivers is needed.

• cve-2016-5080 asn.1: Objective Systems ASN1C generates code that contains a heap overflow vulnerability
• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453), (ANDROID-26754117 access:Remote), (ANDROID-26764809 access:Remote) and (ANDROID-26425765) and [CVE-2014-9902] [additionally (ANDROID-26763920 , 27662174 , 27773913 , 27776888 , 27777501, CVE-2016-3792 severity:High) and 27777162 severity:moderate] (maybe high CVE-2017-0437 -> -0439 and CVE-2016-8419 -> -8421 and CVE-2017-0440 -> -0443 and CVE-2016-8476)
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204), (ANDROID-25364034)) and (ANDROID-25801197), [CVE-2016-3768]
• (maybe Qualcomm Tethering controller [CVE-2016-2060])
• (maybe Elevation of Privilege Vulnerability in Qualcomm Buspm Driver [CVE-2016-2441],[CVE-2016-2442])
• (maybe Elevation of Privilege Vulnerability in Qualcomm TrustZone [CVE-2016-2431] or [CVE-2016-2432])
• Remote Denial of Service Vulnerability in Qualcomm Hardware Codec [CVE-2016-2454] (rated:High) [CVE-2016-6758 -61 High]
• Elevation of Privilege Vulnerability in Qualcomm Video Driver [CVE-2016-2465] (rated:Critical) (additionally ANDROID-27407629 rated:high)
• Elevation of Privilege Vulnerability in Qualcomm Sound Driver [CVE-2016-2467] (rated:Critical; access:Remote) [and (ANDROID-26876409), (ANDROID-27531992) and [CVE-2016-2068] rated:High], [CVE-2016-6791 High], [CVE-2016-8391 High], [CVE-2016-8392 High]
• Elevation of Privilege Vulnerability in Qualcomm GPU Driver [CVE-2016-2468] [CVE-2016-2067] [cve-2016-5340 quadrooter] (rated:Critical)
• Elevation of privilege vulnerability in Qualcomm camera driver [CVE-2016-2501 High] [CVE-2016-6755 High]
• Denial of service vulnerability in Qualcomm GPS driver [CVE-2016-5341 High]
• Information disclosure vulnerability in Qualcomm USB driver [CVE-2016-3813 Moderate]
• Denial of service vulnerability in Qualcomm bootloader [CVE-2016-3850 High][CVE-2014-9798, CVE-2015-8893 Moderate] [CVE-2016-6729 critical]
• Remote code execution vulnerability in Qualcomm crypto driver [CVE-2016-6725 critical]
• Elevation of privilege vulnerability in Qualcomm components (Device specific: some may affect Jolla1/C, some not) CVE-2014-9863, CVE-2016-8411 critical, CVE-2014-9794, CVE-2014-9795, CVE-2013-7457, CVE-2014-9781, CVE-2014-9786, CVE-2014-9788, CVE-2014-9779, CVE-2014-9780, CVE-2014-9789, CVE-2014-9793, CVE-2014-9782, CVE-2014-9783, CVE-2014-9785, CVE-2014-9787, CVE-2014-9784, CVE-2014-9777, CVE-2014-9778, CVE-2014-9790, CVE-2014-9792, CVE-2014-9797, CVE-2014-9791, CVE-2014-9796, CVE-2014-9800, CVE-2014-9799, CVE-2014-9801, CVE-2014-9802, CVE-2015-8891, CVE-2015-8888, CVE-2015-8890 High
• one or more of CVE-2016-8398 CVE-2016-8437 CVE-2016-8438 CVE-2016-8439 CVE-2016-8440 CVE-2016-8441 CVE-2016-8442 CVE-2016-8443 CVE-2016-8459 CVE-2017-0431
• one or more of CVE-2016-8484 CVE-2016-8486 CVE-2016-8487 CVE-2016-8485 CVE-2016-8488
• • a lot of high & moderate vulnerabilities Sep'16 & Oct'16 & Nov'16 & Dec'16 & Jan'17 & Feb'17 & Mar'17

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires: kernel 3.4 in the case of Galaxy S4 mini featuring Android4.4.2 although this KitKat version normally requires kernel 3.10 [so in principle you are able to release new Android API while sticking to old Linux Kernel] ) and alien-dalvik level-upgrade (more likely NOT required because jolla1 already seems to use API ≥ 17 drivers but provides API16 for aliendalvik), too!

Andoid version available for MSM8930Ax devices [ link ] : 4.4.2 with Android security patch level: 01.09.2016
x=A (e.g. Jolla1) x=B (e.g. Galaxy S4 mini)

Info about the WLAN host device driver installed on Jolla1: modinfo wlan returns a value vermagic: 3.4.108.20161101.1 SMP (2.0.5.6)

Edit 20160502: topic in next SailfishOS, open source, collaboration meeting 05. May 16 13.30h (UTC) Edit 20160505: meeting @sledges : <sledges> #info Jolla will look at the scope of this task

Edit 20160620: there are some changes in SFOS 2.0.2.45. It looks like kernel is updated 3.4.108.20150901 -> 3.4.108.20160401 and modules, too [wlan: sbj-wlan 0.2.6 -> 0.2.6.1 , policy-settings, pulseaudio-modules, preinit-plugin-sbj, jolla-recovery-sbj etc...].
Edit 20160713: But dmesg is still saying wlan: loading driver v3.2.1.74 in 2.0.2.45 as in SFOS2.0.1.7
Edit 20160806: still the same on 2.0.3.14
Edit 20161007: still the same on 2.0.4.14: wlan: loading driver v3.2.1.74/modinfo wlan: vermagic: 3.4.108.20160401.1 SMP / sbj-wlan-0.2.6.1-10.21.14.jolla.armv7hl.rpm
Edit 20161127: 2.0.5.6: still wlan: loading driver v3.2.1.74/modinfo wlan: vermagic: 3.4.108.20161101.1 SMP / sbj-wlan-0.2.6.1-10.22.2.jolla.armv7hl.rpm
Edit 20170320: 2.1.0.9ea: still wlan: loading driver v3.2.1.74/modinfo wlan: vermagic: 3.4.108.20161101.1 SMP / sbj-wlan-0.2.6.1-10.22.2.jolla.armv7hl.rpm

• [cve-2016-2059 quadrooter], [CVE-2016-2504 quadrooter], [CVE-2016-4008 libtasn1] fixed in Haapajoki(2.0.5)

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] [CVE-2016-0843] [CVE-2015-0569] [CVE-2015-0570] [CVE-2016-2465] [CVE-2016-2467] [CVE-2016-2468] Oct'16:[CVE-2016-3926] [CVE-2016-3927] Nov'16: [CVE-2016-6725] [CVE-2016-6729] many critical bugs discovered in qualcomm drivers, so an upgrade of Jolla1 (JollaC / aquafish affected too, but different bugs) drivers is needed.

• cve-2016-5080 asn.1: Objective Systems ASN1C generates code that contains a heap overflow vulnerability
• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453), (ANDROID-26754117 access:Remote), (ANDROID-26764809 access:Remote) and (ANDROID-26425765) and [CVE-2014-9902] [additionally (ANDROID-26763920 , 27662174 , 27773913 , 27776888 , 27777501, CVE-2016-3792 severity:High) and 27777162 severity:moderate] (maybe high CVE-2017-0437 -> -0439 and CVE-2016-8419 -> -8421 and CVE-2017-0440 -> -0443 and CVE-2016-8476)
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204), (ANDROID-25364034)) and (ANDROID-25801197), [CVE-2016-3768]
• (maybe Qualcomm Tethering controller [CVE-2016-2060])
• (maybe Elevation of Privilege Vulnerability in Qualcomm Buspm Driver [CVE-2016-2441],[CVE-2016-2442])
• (maybe Elevation of Privilege Vulnerability in Qualcomm TrustZone [CVE-2016-2431] or [CVE-2016-2432])
• Remote Denial of Service Vulnerability in Qualcomm Hardware Codec [CVE-2016-2454] (rated:High) [CVE-2016-6758 -61 High]
• Elevation of Privilege Vulnerability in Qualcomm Video Driver [CVE-2016-2465] (rated:Critical) (additionally ANDROID-27407629 rated:high)
• Elevation of Privilege Vulnerability in Qualcomm Sound Driver [CVE-2016-2467] (rated:Critical; access:Remote) [and (ANDROID-26876409), (ANDROID-27531992) and [CVE-2016-2068] rated:High], [CVE-2016-6791 High], [CVE-2016-8391 High], [CVE-2016-8392 High]
• Elevation of Privilege Vulnerability in Qualcomm GPU Driver [CVE-2016-2468] [CVE-2016-2067] [cve-2016-5340 quadrooter] (rated:Critical)
• Elevation of privilege vulnerability in Qualcomm camera driver [CVE-2016-2501 High] [CVE-2016-6755 High]
• Denial of service vulnerability in Qualcomm GPS driver [CVE-2016-5341 High]
• Information disclosure vulnerability in Qualcomm USB driver [CVE-2016-3813 Moderate]
• Denial of service vulnerability in Qualcomm bootloader [CVE-2016-3850 High][CVE-2014-9798, CVE-2015-8893 Moderate] [CVE-2016-6729 critical]
• Remote code execution vulnerability in Qualcomm crypto driver [CVE-2016-6725 critical]
• Elevation of privilege vulnerability in Qualcomm components (Device specific: some may affect Jolla1/C, some not) CVE-2014-9863, CVE-2016-8411 critical, CVE-2014-9794, CVE-2014-9795, CVE-2013-7457, CVE-2014-9781, CVE-2014-9786, CVE-2014-9788, CVE-2014-9779, CVE-2014-9780, CVE-2014-9789, CVE-2014-9793, CVE-2014-9782, CVE-2014-9783, CVE-2014-9785, CVE-2014-9787, CVE-2014-9784, CVE-2014-9777, CVE-2014-9778, CVE-2014-9790, CVE-2014-9792, CVE-2014-9797, CVE-2014-9791, CVE-2014-9796, CVE-2014-9800, CVE-2014-9799, CVE-2014-9801, CVE-2014-9802, CVE-2015-8891, CVE-2015-8888, CVE-2015-8890 High
• one or more of CVE-2016-8398 CVE-2016-8437 CVE-2016-8438 CVE-2016-8439 CVE-2016-8440 CVE-2016-8441 CVE-2016-8442 CVE-2016-8443 CVE-2016-8459 CVE-2017-0431
• one or more of CVE-2016-8484 CVE-2016-8486 CVE-2016-8487 CVE-2016-8485 CVE-2016-8488
• • a lot of high & moderate vulnerabilities Sep'16 & Oct'16 & Nov'16 & Dec'16 & Jan'17 & Feb'17 & Mar'17

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires: kernel 3.4 in the case of Galaxy S4 mini featuring Android4.4.2 although this KitKat version normally requires kernel 3.10 [so in principle you are able to release new Android API while sticking to old Linux Kernel] ) and alien-dalvik level-upgrade (more likely NOT required because jolla1 already seems to use API ≥ 17 drivers but provides API16 for aliendalvik), too!

Andoid version available for MSM8930Ax devices [ link ] : 4.4.2 with Android security patch level: 01.09.2016 01.09.2016+ BUILD DATE: 31.01.2017
x=A (e.g. Jolla1) x=B (e.g. Galaxy S4 mini)

Info about the WLAN host device driver installed on Jolla1: modinfo wlan returns a value vermagic: 3.4.108.20161101.1 SMP (2.0.5.6)

Edit 20160502: topic in next SailfishOS, open source, collaboration meeting 05. May 16 13.30h (UTC) Edit 20160505: meeting @sledges : <sledges> #info Jolla will look at the scope of this task

Edit 20160620: there are some changes in SFOS 2.0.2.45. It looks like kernel is updated 3.4.108.20150901 -> 3.4.108.20160401 and modules, too [wlan: sbj-wlan 0.2.6 -> 0.2.6.1 , policy-settings, pulseaudio-modules, preinit-plugin-sbj, jolla-recovery-sbj etc...].
Edit 20160713: But dmesg is still saying wlan: loading driver v3.2.1.74 in 2.0.2.45 as in SFOS2.0.1.7
Edit 20160806: still the same on 2.0.3.14
Edit 20161007: still the same on 2.0.4.14: wlan: loading driver v3.2.1.74/modinfo wlan: vermagic: 3.4.108.20160401.1 SMP / sbj-wlan-0.2.6.1-10.21.14.jolla.armv7hl.rpm
Edit 20161127: 2.0.5.6: still wlan: loading driver v3.2.1.74/modinfo wlan: vermagic: 3.4.108.20161101.1 SMP / sbj-wlan-0.2.6.1-10.22.2.jolla.armv7hl.rpm
Edit 20170320: 2.1.0.9ea: still wlan: loading driver v3.2.1.74/modinfo wlan: vermagic: 3.4.108.20161101.1 SMP / sbj-wlan-0.2.6.1-10.22.2.jolla.armv7hl.rpm

• [cve-2016-2059 quadrooter], [CVE-2016-2504 quadrooter], [CVE-2016-4008 libtasn1] fixed in Haapajoki(2.0.5)

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] [CVE-2016-0843] [CVE-2015-0569] [CVE-2015-0570] [CVE-2016-2465] [CVE-2016-2467] [CVE-2016-2468] Oct'16:[CVE-2016-3926] [CVE-2016-3927] Nov'16: [CVE-2016-6725] [CVE-2016-6729] many critical bugs discovered in qualcomm drivers, so an upgrade of Jolla1 (JollaC / aquafish affected too, but different bugs) drivers is needed.

• cve-2016-5080 asn.1: Objective Systems ASN1C generates code that contains a heap overflow vulnerability
• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453), (ANDROID-26754117 access:Remote), (ANDROID-26764809 access:Remote) and (ANDROID-26425765) and [CVE-2014-9902] [additionally (ANDROID-26763920 , 27662174 , 27773913 , 27776888 , 27777501, CVE-2016-3792 severity:High) and 27777162 severity:moderate] (maybe high CVE-2017-0437 -> -0439 and CVE-2016-8419 -> -8421 and CVE-2017-0440 -> -0443 and CVE-2016-8476)
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204), (ANDROID-25364034)) and (ANDROID-25801197), [CVE-2016-3768]
• (maybe Qualcomm Tethering controller [CVE-2016-2060])
• (maybe Elevation of Privilege Vulnerability in Qualcomm Buspm Driver [CVE-2016-2441],[CVE-2016-2442])
• (maybe Elevation of Privilege Vulnerability in Qualcomm TrustZone [CVE-2016-2431] or [CVE-2016-2432])
• Remote Denial of Service Vulnerability in Qualcomm Hardware Codec [CVE-2016-2454] (rated:High) [CVE-2016-6758 -61 High]
• Elevation of Privilege Vulnerability in Qualcomm Video Driver [CVE-2016-2465] (rated:Critical) (additionally ANDROID-27407629 rated:high)
• Elevation of Privilege Vulnerability in Qualcomm Sound Driver [CVE-2016-2467] (rated:Critical; access:Remote) [and (ANDROID-26876409), (ANDROID-27531992) and [CVE-2016-2068] rated:High], [CVE-2016-6791 High], [CVE-2016-8391 High], [CVE-2016-8392 High]
• Elevation of Privilege Vulnerability in Qualcomm GPU Driver [CVE-2016-2468] [CVE-2016-2067] [cve-2016-5340 quadrooter] (rated:Critical)
• Elevation of privilege vulnerability in Qualcomm camera driver [CVE-2016-2501 High] [CVE-2016-6755 High]
• Denial of service vulnerability in Qualcomm GPS driver [CVE-2016-5341 High]
• Information disclosure vulnerability in Qualcomm USB driver [CVE-2016-3813 Moderate]
• Denial of service vulnerability in Qualcomm bootloader [CVE-2016-3850 High][CVE-2014-9798, CVE-2015-8893 Moderate] [CVE-2016-6729 critical]
• Remote code execution vulnerability in Qualcomm crypto driver [CVE-2016-6725 critical]
• Elevation of privilege vulnerability in Qualcomm components (Device specific: some may affect Jolla1/C, some not) CVE-2014-9863, CVE-2016-8411 critical, CVE-2014-9794, CVE-2014-9795, CVE-2013-7457, CVE-2014-9781, CVE-2014-9786, CVE-2014-9788, CVE-2014-9779, CVE-2014-9780, CVE-2014-9789, CVE-2014-9793, CVE-2014-9782, CVE-2014-9783, CVE-2014-9785, CVE-2014-9787, CVE-2014-9784, CVE-2014-9777, CVE-2014-9778, CVE-2014-9790, CVE-2014-9792, CVE-2014-9797, CVE-2014-9791, CVE-2014-9796, CVE-2014-9800, CVE-2014-9799, CVE-2014-9801, CVE-2014-9802, CVE-2015-8891, CVE-2015-8888, CVE-2015-8890 High
• one or more of CVE-2016-8398 CVE-2016-8437 CVE-2016-8438 CVE-2016-8439 CVE-2016-8440 CVE-2016-8441 CVE-2016-8442 CVE-2016-8443 CVE-2016-8459 CVE-2017-0431
• one or more of CVE-2016-8484 CVE-2016-8486 CVE-2016-8487 CVE-2016-8485 CVE-2016-8488
• • a lot of high & moderate vulnerabilities Sep'16 & Oct'16 & Nov'16 & Dec'16 & Jan'17 & Feb'17 & Mar'17

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires: kernel 3.4 in the case of Galaxy S4 mini featuring Android4.4.2 although this KitKat version normally requires kernel 3.10 [so in principle you are able to release new Android API while sticking to old Linux Kernel] ) and alien-dalvik level-upgrade (more likely NOT required because jolla1 already seems to use API ≥ 17 drivers but provides API16 for aliendalvik), too!

Andoid version available for MSM8930Ax devices [ link ] : 4.4.2 with Android security patch level: 01.09.2016+ 01.07.2017 BUILD DATE: 31.01.2017 13.07.2017
x=A (e.g. Jolla1) x=B (e.g. Galaxy S4 mini)

Info about the WLAN host device driver installed on Jolla1: modinfo wlan returns a value vermagic: 3.4.108.20161101.1 SMP (2.0.5.6)

Edit 20160502: topic in next SailfishOS, open source, collaboration meeting 05. May 16 13.30h (UTC) Edit 20160505: meeting @sledges : <sledges> #info Jolla will look at the scope of this task

Edit 20160620: there are some changes in SFOS 2.0.2.45. It looks like kernel is updated 3.4.108.20150901 -> 3.4.108.20160401 and modules, too [wlan: sbj-wlan 0.2.6 -> 0.2.6.1 , policy-settings, pulseaudio-modules, preinit-plugin-sbj, jolla-recovery-sbj etc...].
Edit 20160713: But dmesg is still saying wlan: loading driver v3.2.1.74 in 2.0.2.45 as in SFOS2.0.1.7
Edit 20160806: still the same on 2.0.3.14
Edit 20161007: still the same on 2.0.4.14: wlan: loading driver v3.2.1.74/modinfo wlan: vermagic: 3.4.108.20160401.1 SMP / sbj-wlan-0.2.6.1-10.21.14.jolla.armv7hl.rpm
Edit 20161127: 2.0.5.6: still wlan: loading driver v3.2.1.74/modinfo wlan: vermagic: 3.4.108.20161101.1 SMP / sbj-wlan-0.2.6.1-10.22.2.jolla.armv7hl.rpm
Edit 20170320: 2.1.0.9ea: still wlan: loading driver v3.2.1.74/modinfo wlan: vermagic: 3.4.108.20161101.1 SMP / sbj-wlan-0.2.6.1-10.22.2.jolla.armv7hl.rpm
Edit 20170819: 2.1.1.24ea: wlan: loading driver v3.2.1.74/modinfo wlan: vermagic: 3.4.108.20170530.1 SMP / sbj-wlan-0.2.6.1-10.22.11.jolla.armv7hl.rpm

• [CVE-2014-9781], [CVE-2014-9785], [CVE-2014-9864] [CVE-2014-9865] [CVE-2014-9884] [CVE-2014-9887] [CVE-2014-9894] , [CVE-2014-9787], [CVE-2014-9778], [CVE-2014-9876], [CVE-2016-5340], [CVE-2014-4323], [CVE-2016-8480] are currently marked as "tracked by jolla"

• [cve-2016-2059 quadrooter], [CVE-2016-2504 quadrooter], [CVE-2016-4008 libtasn1] fixed in Haapajoki(2.0.5)

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] [CVE-2016-0843] [CVE-2015-0569] [CVE-2015-0570] [CVE-2016-2465] [CVE-2016-2467] [CVE-2016-2468] Oct'16:[CVE-2016-3926] [CVE-2016-3927] Nov'16: [CVE-2016-6725] [CVE-2016-6729] many critical bugs discovered in qualcomm drivers, so an upgrade of Jolla1 (JollaC / aquafish affected too, but different bugs) drivers is needed.

• cve-2016-5080 asn.1: Objective Systems ASN1C generates code that contains a heap overflow vulnerability
• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453), (ANDROID-26754117 access:Remote), (ANDROID-26764809 access:Remote) and (ANDROID-26425765) and [CVE-2014-9902] [additionally (ANDROID-26763920 , 27662174 , 27773913 , 27776888 , 27777501, CVE-2016-3792 severity:High) and 27777162 severity:moderate] (maybe high CVE-2017-0437 -> -0439 and CVE-2016-8419 -> -8421 and CVE-2017-0440 -> -0443 and CVE-2016-8476)
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204), (ANDROID-25364034)) and (ANDROID-25801197), [CVE-2016-3768]
• (maybe Qualcomm Tethering controller [CVE-2016-2060])
• (maybe Elevation of Privilege Vulnerability in Qualcomm Buspm Driver [CVE-2016-2441],[CVE-2016-2442])
• (maybe Elevation of Privilege Vulnerability in Qualcomm TrustZone [CVE-2016-2431] or [CVE-2016-2432])
• Remote Denial of Service Vulnerability in Qualcomm Hardware Codec [CVE-2016-2454] (rated:High) [CVE-2016-6758 -61 High]
• Elevation of Privilege Vulnerability in Qualcomm Video Driver [CVE-2016-2465] (rated:Critical) (additionally ANDROID-27407629 rated:high)
• Elevation of Privilege Vulnerability in Qualcomm Sound Driver [CVE-2016-2467] (rated:Critical; access:Remote) [and (ANDROID-26876409), (ANDROID-27531992) and [CVE-2016-2068] rated:High], [CVE-2016-6791 High], [CVE-2016-8391 High], [CVE-2016-8392 High]
• Elevation of Privilege Vulnerability in Qualcomm GPU Driver [CVE-2016-2468] [CVE-2016-2067] [cve-2016-5340 quadrooter] (rated:Critical)
• Elevation of privilege vulnerability in Qualcomm camera driver [CVE-2016-2501 High] [CVE-2016-6755 High]
• Denial of service vulnerability in Qualcomm GPS driver [CVE-2016-5341 High]
• Information disclosure vulnerability in Qualcomm USB driver [CVE-2016-3813 Moderate]
• Denial of service vulnerability in Qualcomm bootloader [CVE-2016-3850 High][CVE-2014-9798, CVE-2015-8893 Moderate] [CVE-2016-6729 critical]
• Remote code execution vulnerability in Qualcomm crypto driver [CVE-2016-6725 critical]
• Elevation of privilege vulnerability in Qualcomm components (Device specific: some may affect Jolla1/C, some not) CVE-2014-9863, CVE-2016-8411 critical, CVE-2014-9794, CVE-2014-9795, CVE-2013-7457, CVE-2014-9781, CVE-2014-9786, CVE-2014-9788, CVE-2014-9779, CVE-2014-9780, CVE-2014-9789, CVE-2014-9793, CVE-2014-9782, CVE-2014-9783, CVE-2014-9785, CVE-2014-9787, CVE-2014-9784, CVE-2014-9777, CVE-2014-9778, CVE-2014-9790, CVE-2014-9792, CVE-2014-9797, CVE-2014-9791, CVE-2014-9796, CVE-2014-9800, CVE-2014-9799, CVE-2014-9801, CVE-2014-9802, CVE-2015-8891, CVE-2015-8888, CVE-2015-8890 High
• one or more of CVE-2016-8398 CVE-2016-8437 CVE-2016-8438 CVE-2016-8439 CVE-2016-8440 CVE-2016-8441 CVE-2016-8442 CVE-2016-8443 CVE-2016-8459 CVE-2017-0431
• one or more of CVE-2016-8484 CVE-2016-8486 CVE-2016-8487 CVE-2016-8485 CVE-2016-8488
• • a lot of high & moderate vulnerabilities Sep'16 & Oct'16 & Nov'16 & Dec'16 & Jan'17 & Feb'17 & Mar'17

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires: kernel 3.4 in the case of Galaxy S4 mini featuring Android4.4.2 although this KitKat version normally requires kernel 3.10 [so in principle you are able to release new Android API while sticking to old Linux Kernel] ) and alien-dalvik level-upgrade (more likely NOT required because jolla1 already seems to use API ≥ 17 drivers but provides API16 for aliendalvik), too!

Andoid version available for MSM8930Ax devices [ link ] : 4.4.2 with Android security patch level: 01.07.2017 BUILD DATE: 13.07.2017
x=A (e.g. Jolla1) x=B (e.g. Galaxy S4 mini)

Info about the WLAN host device driver installed on Jolla1: modinfo wlan returns a value vermagic: 3.4.108.20161101.1 3.4.108.20170530.1 SMP (2.0.5.6)(2.1.1.24)

Edit 20160502: topic in next SailfishOS, open source, collaboration meeting 05. May 16 13.30h (UTC) Edit 20160505: meeting @sledges : <sledges> #info Jolla will look at the scope of this task

Edit 20160620: there are some changes in SFOS 2.0.2.45. It looks like kernel is updated 3.4.108.20150901 -> 3.4.108.20160401 and modules, too [wlan: sbj-wlan 0.2.6 -> 0.2.6.1 , policy-settings, pulseaudio-modules, preinit-plugin-sbj, jolla-recovery-sbj etc...].
Edit 20160713: But dmesg is still saying wlan: loading driver v3.2.1.74 in 2.0.2.45 as in SFOS2.0.1.7
Edit 20160806: still the same on 2.0.3.14
Edit 20161007: still the same on 2.0.4.14: wlan: loading driver v3.2.1.74/modinfo wlan: vermagic: 3.4.108.20160401.1 SMP / sbj-wlan-0.2.6.1-10.21.14.jolla.armv7hl.rpm
Edit 20161127: 2.0.5.6: still wlan: loading driver v3.2.1.74/modinfo wlan: vermagic: 3.4.108.20161101.1 SMP / sbj-wlan-0.2.6.1-10.22.2.jolla.armv7hl.rpm
Edit 20170320: 2.1.0.9ea: still wlan: loading driver v3.2.1.74/modinfo wlan: vermagic: 3.4.108.20161101.1 SMP / sbj-wlan-0.2.6.1-10.22.2.jolla.armv7hl.rpm
Edit 20170819: 2.1.1.24ea: wlan: loading driver v3.2.1.74/modinfo wlan: vermagic: 3.4.108.20170530.1 SMP / sbj-wlan-0.2.6.1-10.22.11.jolla.armv7hl.rpm

• [CVE-2014-9781], [CVE-2014-9785], [CVE-2014-9864] [CVE-2014-9865] [CVE-2014-9884] [CVE-2014-9887] [CVE-2014-9894] , [CVE-2014-9787], [CVE-2014-9778], [CVE-2014-9876], [CVE-2016-5340], [CVE-2014-4323], [CVE-2016-8480] are currently marked as "tracked by jolla"

• [cve-2016-2059 quadrooter], [CVE-2016-2504 quadrooter], [CVE-2016-4008 libtasn1] fixed in Haapajoki(2.0.5)

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] [CVE-2016-0843] [CVE-2015-0569] [CVE-2015-0570] [CVE-2016-2465] [CVE-2016-2467] [CVE-2016-2468] Oct'16:[CVE-2016-3926] [CVE-2016-3927] Nov'16: [CVE-2016-6725] [CVE-2016-6729] many critical bugs discovered in qualcomm drivers, so an upgrade of Jolla1 (JollaC / aquafish affected too, but different bugs) drivers is needed.

• cve-2016-5080 asn.1: Objective Systems ASN1C generates code that contains a heap overflow vulnerability
• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453), (ANDROID-26754117 access:Remote), (ANDROID-26764809 access:Remote) and (ANDROID-26425765) and [CVE-2014-9902] [additionally (ANDROID-26763920 , 27662174 , 27773913 , 27776888 , 27777501, CVE-2016-3792 severity:High) and 27777162 severity:moderate] (maybe high CVE-2017-0437 -> -0439 and CVE-2016-8419 -> -8421 and CVE-2017-0440 -> -0443 and CVE-2016-8476)
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204), (ANDROID-25364034)) and (ANDROID-25801197), [CVE-2016-3768]
• (maybe Qualcomm Tethering controller [CVE-2016-2060])
• (maybe Elevation of Privilege Vulnerability in Qualcomm Buspm Driver [CVE-2016-2441],[CVE-2016-2442])
• (maybe Elevation of Privilege Vulnerability in Qualcomm TrustZone [CVE-2016-2431] or [CVE-2016-2432])
• Remote Denial of Service Vulnerability in Qualcomm Hardware Codec [CVE-2016-2454] (rated:High) [CVE-2016-6758 -61 High]
• Elevation of Privilege Vulnerability in Qualcomm Video Driver [CVE-2016-2465] (rated:Critical) (additionally ANDROID-27407629 rated:high)
• Elevation of Privilege Vulnerability in Qualcomm Sound Driver [CVE-2016-2467] (rated:Critical; access:Remote) [and (ANDROID-26876409), (ANDROID-27531992) and [CVE-2016-2068] rated:High], [CVE-2016-6791 High], [CVE-2016-8391 High], [CVE-2016-8392 High]
• Elevation of Privilege Vulnerability in Qualcomm GPU Driver [CVE-2016-2468] [CVE-2016-2067] [cve-2016-5340 quadrooter] (rated:Critical)
• Elevation of privilege vulnerability in Qualcomm camera driver [CVE-2016-2501 High] [CVE-2016-6755 High]
• Denial of service vulnerability in Qualcomm GPS driver [CVE-2016-5341 High]
• Information disclosure vulnerability in Qualcomm USB driver [CVE-2016-3813 Moderate]
• Denial of service vulnerability in Qualcomm bootloader [CVE-2016-3850 High][CVE-2014-9798, CVE-2015-8893 Moderate] [CVE-2016-6729 critical]
• Remote code execution vulnerability in Qualcomm crypto driver [CVE-2016-6725 critical]
• Elevation of privilege vulnerability in Qualcomm components (Device specific: some may affect Jolla1/C, some not) CVE-2014-9863, CVE-2016-8411 critical, CVE-2014-9794, CVE-2014-9795, CVE-2013-7457, CVE-2014-9781, CVE-2014-9786, CVE-2014-9788, CVE-2014-9779, CVE-2014-9780, CVE-2014-9789, CVE-2014-9793, CVE-2014-9782, CVE-2014-9783, CVE-2014-9785, CVE-2014-9787, CVE-2014-9784, CVE-2014-9777, CVE-2014-9778, CVE-2014-9790, CVE-2014-9792, CVE-2014-9797, CVE-2014-9791, CVE-2014-9796, CVE-2014-9800, CVE-2014-9799, CVE-2014-9801, CVE-2014-9802, CVE-2015-8891, CVE-2015-8888, CVE-2015-8890 High
• one or more of CVE-2016-8398 CVE-2016-8437 CVE-2016-8438 CVE-2016-8439 CVE-2016-8440 CVE-2016-8441 CVE-2016-8442 CVE-2016-8443 CVE-2016-8459 CVE-2017-0431
• one or more of CVE-2016-8484 CVE-2016-8486 CVE-2016-8487 CVE-2016-8485 CVE-2016-8488
• • a lot of high & moderate vulnerabilities Sep'16 & Oct'16 & Nov'16 & Dec'16 & Jan'17 & Feb'17 & Mar'17

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires: kernel 3.4 in the case of Galaxy S4 mini featuring Android4.4.2 although this KitKat version normally requires kernel 3.10 [so in principle you are able to release new Android API while sticking to old Linux Kernel] ) and alien-dalvik level-upgrade (more likely NOT required because jolla1 already seems to use API ≥ 17 drivers but provides API16 for aliendalvik), too!

Andoid version available for MSM8930Ax devices [ link ] : 4.4.2 with Android security patch level: 01.07.2017 BUILD DATE: 13.07.2017
x=A (e.g. Jolla1) x=B (e.g. Galaxy S4 mini)

Info about the WLAN host device driver installed on Jolla1: modinfo wlan returns a value vermagic: 3.4.108.20170530.1 SMP (2.1.1.24)

Edit 20160502: topic in next SailfishOS, open source, collaboration meeting 05. May 16 13.30h (UTC) Edit 20160505: meeting @sledges : <sledges> #info Jolla will look at the scope of this task

Edit 20160620: there are some changes in SFOS 2.0.2.45. It looks like kernel is updated 3.4.108.20150901 -> 3.4.108.20160401 and modules, too [wlan: sbj-wlan 0.2.6 -> 0.2.6.1 , policy-settings, pulseaudio-modules, preinit-plugin-sbj, jolla-recovery-sbj etc...].
Edit 20160713: But dmesg is still saying wlan: loading driver v3.2.1.74 in 2.0.2.45 as in SFOS2.0.1.7
Edit 20160806: still the same on 2.0.3.14
Edit 20161007: still the same on 2.0.4.14: wlan: loading driver v3.2.1.74/modinfo wlan: vermagic: 3.4.108.20160401.1 SMP / sbj-wlan-0.2.6.1-10.21.14.jolla.armv7hl.rpm
Edit 20161127: 2.0.5.6: still wlan: loading driver v3.2.1.74/modinfo wlan: vermagic: 3.4.108.20161101.1 SMP / sbj-wlan-0.2.6.1-10.22.2.jolla.armv7hl.rpm
Edit 20170320: 2.1.0.9ea: still wlan: loading driver v3.2.1.74/modinfo wlan: vermagic: 3.4.108.20161101.1 SMP / sbj-wlan-0.2.6.1-10.22.2.jolla.armv7hl.rpm
Edit 20170819: 2.1.1.24ea: wlan: loading driver v3.2.1.74/modinfo wlan: vermagic: 3.4.108.20170530.1 SMP / sbj-wlan-0.2.6.1-10.22.11.jolla.armv7hl.rpm

• [CVE-2014-9781], [CVE-2014-9785], [CVE-2014-9864] [CVE-2014-9865] [CVE-2014-9884] [CVE-2014-9887] [CVE-2014-9894] , [CVE-2014-9787], [CVE-2014-9778], [CVE-2014-9876], [CVE-2016-5340], [CVE-2014-4323], [CVE-2016-8480] are currently marked as "tracked by jolla"

• [cve-2016-2059 quadrooter], [CVE-2016-2504 quadrooter], [CVE-2016-4008 libtasn1] fixed in Haapajoki(2.0.5)

• [CVE-2014-4323] is fixed in Nurmonjoki (2.2.1)

[CVE-2016-0805] [CVE-2016-0806] [CVE-2016-0819] [CVE-2016-0843] [CVE-2015-0569] [CVE-2015-0570] [CVE-2016-2465] [CVE-2016-2467] [CVE-2016-2468] Oct'16:[CVE-2016-3926] [CVE-2016-3927] Nov'16: [CVE-2016-6725] [CVE-2016-6729] many critical bugs discovered in qualcomm drivers, so an upgrade of Jolla1 (JollaC / aquafish affected too, but different bugs) drivers is needed.

• cve-2016-5080 asn.1: Objective Systems ASN1C generates code that contains a heap overflow vulnerability
• Elevation of Privilege Vulnerability in Qualcomm Wi-Fi Driver (ANDROID-25344453), (ANDROID-26754117 access:Remote), (ANDROID-26764809 access:Remote) and (ANDROID-26425765) and [CVE-2014-9902] [additionally (ANDROID-26763920 , 27662174 , 27773913 , 27776888 , 27777501, CVE-2016-3792 severity:High) and 27777162 severity:moderate] (maybe high CVE-2017-0437 -> -0439 and CVE-2016-8419 -> -8421 and CVE-2017-0440 -> -0443 and CVE-2016-8476)
• Elevation of Privilege Vulnerability in Qualcomm Performance Module (ANDROID-25773204), (ANDROID-25364034)) and (ANDROID-25801197), [CVE-2016-3768]
• (maybe Qualcomm Tethering controller [CVE-2016-2060])
• (maybe Elevation of Privilege Vulnerability in Qualcomm Buspm Driver [CVE-2016-2441],[CVE-2016-2442])
• (maybe Elevation of Privilege Vulnerability in Qualcomm TrustZone [CVE-2016-2431] or [CVE-2016-2432])
• Remote Denial of Service Vulnerability in Qualcomm Hardware Codec [CVE-2016-2454] (rated:High) [CVE-2016-6758 -61 High]
• Elevation of Privilege Vulnerability in Qualcomm Video Driver [CVE-2016-2465] (rated:Critical) (additionally ANDROID-27407629 rated:high)
• Elevation of Privilege Vulnerability in Qualcomm Sound Driver [CVE-2016-2467] (rated:Critical; access:Remote) [and (ANDROID-26876409), (ANDROID-27531992) and [CVE-2016-2068] rated:High], [CVE-2016-6791 High], [CVE-2016-8391 High], [CVE-2016-8392 High]
• Elevation of Privilege Vulnerability in Qualcomm GPU Driver [CVE-2016-2468] [CVE-2016-2067] [cve-2016-5340 quadrooter] (rated:Critical)
• Elevation of privilege vulnerability in Qualcomm camera driver [CVE-2016-2501 High] [CVE-2016-6755 High]
• Denial of service vulnerability in Qualcomm GPS driver [CVE-2016-5341 High]
• Information disclosure vulnerability in Qualcomm USB driver [CVE-2016-3813 Moderate]
• Denial of service vulnerability in Qualcomm bootloader [CVE-2016-3850 High][CVE-2014-9798, CVE-2015-8893 Moderate] [CVE-2016-6729 critical]
• Remote code execution vulnerability in Qualcomm crypto driver [CVE-2016-6725 critical]
• Elevation of privilege vulnerability in Qualcomm components (Device specific: some may affect Jolla1/C, some not) CVE-2014-9863, CVE-2016-8411 critical, CVE-2014-9794, CVE-2014-9795, CVE-2013-7457, CVE-2014-9781, CVE-2014-9786, CVE-2014-9788, CVE-2014-9779, CVE-2014-9780, CVE-2014-9789, CVE-2014-9793, CVE-2014-9782, CVE-2014-9783, CVE-2014-9785, CVE-2014-9787, CVE-2014-9784, CVE-2014-9777, CVE-2014-9778, CVE-2014-9790, CVE-2014-9792, CVE-2014-9797, CVE-2014-9791, CVE-2014-9796, CVE-2014-9800, CVE-2014-9799, CVE-2014-9801, CVE-2014-9802, CVE-2015-8891, CVE-2015-8888, CVE-2015-8890 High
• one or more of CVE-2016-8398 CVE-2016-8437 CVE-2016-8438 CVE-2016-8439 CVE-2016-8440 CVE-2016-8441 CVE-2016-8442 CVE-2016-8443 CVE-2016-8459 CVE-2017-0431
• one or more of CVE-2016-8484 CVE-2016-8486 CVE-2016-8487 CVE-2016-8485 CVE-2016-8488
• • a lot of high & moderate vulnerabilities Sep'16 & Oct'16 & Nov'16 & Dec'16 & Jan'17 & Feb'17 & Mar'17

Using API19 drivers may allow/require linux-kernel upgrade (less likely, you have to use the kernel the driver requires: kernel 3.4 in the case of Galaxy S4 mini featuring Android4.4.2 although this KitKat version normally requires kernel 3.10 [so in principle you are able to release new Android API while sticking to old Linux Kernel] ) and alien-dalvik level-upgrade (more likely NOT required because jolla1 already seems to use API ≥ 17 drivers but provides API16 for aliendalvik), too!

Andoid version available for MSM8930Ax devices [ link ] : 4.4.2 with Android security patch level: 01.07.2017 BUILD DATE: 13.07.2017
x=A (e.g. Jolla1) x=B (e.g. Galaxy S4 mini)

Info about the WLAN host device driver installed on Jolla1: modinfo wlan returns a value vermagic: 3.4.108.20170530.1 SMP (2.1.1.24)

Edit 20160502: topic in next SailfishOS, open source, collaboration meeting 05. May 16 13.30h (UTC) Edit 20160505: meeting @sledges : <sledges> #info Jolla will look at the scope of this task

Edit 20160620: there are some changes in SFOS 2.0.2.45. It looks like kernel is updated 3.4.108.20150901 -> 3.4.108.20160401 and modules, too [wlan: sbj-wlan 0.2.6 -> 0.2.6.1 , policy-settings, pulseaudio-modules, preinit-plugin-sbj, jolla-recovery-sbj etc...].
Edit 20160713: But dmesg is still saying wlan: loading driver v3.2.1.74 in 2.0.2.45 as in SFOS2.0.1.7
Edit 20160806: still the same on 2.0.3.14
Edit 20161007: still the same on 2.0.4.14: wlan: loading driver v3.2.1.74/modinfo wlan: vermagic: 3.4.108.20160401.1 SMP / sbj-wlan-0.2.6.1-10.21.14.jolla.armv7hl.rpm
Edit 20161127: 2.0.5.6: still wlan: loading driver v3.2.1.74/modinfo wlan: vermagic: 3.4.108.20161101.1 SMP / sbj-wlan-0.2.6.1-10.22.2.jolla.armv7hl.rpm
Edit 20170320: 2.1.0.9ea: still wlan: loading driver v3.2.1.74/modinfo wlan: vermagic: 3.4.108.20161101.1 SMP / sbj-wlan-0.2.6.1-10.22.2.jolla.armv7hl.rpm
Edit 20170819: 2.1.1.24ea: wlan: loading driver v3.2.1.74/modinfo wlan: vermagic: 3.4.108.20170530.1 SMP / sbj-wlan-0.2.6.1-10.22.11.jolla.armv7hl.rpm

• [CVE-2014-9781], [CVE-2014-9785], [CVE-2014-9864] [CVE-2014-9865] [CVE-2014-9884] [CVE-2014-9887] [CVE-2014-9894] , [CVE-2014-9787], [CVE-2014-9778], [CVE-2014-9876], [CVE-2016-5340], [CVE-2016-8480] are currently marked as "tracked by jolla"

• [cve-2016-2059 quadrooter], [CVE-2016-2504 quadrooter], [CVE-2016-4008 libtasn1] fixed in Haapajoki(2.0.5)

• [CVE-2014-4323] is and [CVE-2017-10790 libtasn1] are fixed in Nurmonjoki (2.2.1)