[ROM][UNOFFICIAL][4.4.4] CyanogenMod 11 + Nexus Security Fixes [2016-08-05]

[dookie23]

This is UNOFFICIAL build of CyanogenMod 11 + Monthly Nexus Security Fixes. I made this ROM for myself because I haven't found any rom newer than KK that doesn't freeze. Just want to share this with everyone on XDA.

Because of my busy schedule, there are no other tweaks in this ROM but the monthly Nexus Security Fixes (https://groups.google.com/forum/#!forum/android-security-updates)

Current:
2016-08-05: Download: Mirror1, Mirror2

Older:
2016-07-14: Download: Mirror1, Mirror2
2016-06-10: Download: Mirror1, Mirror2
2016-05-09: Download: Mirror1, Mirror2
2016-04-11: Download: Mirror1, Mirror2
2016-03-10: Download: Mirror1, Mirror2
2016-02-09: Download: Mirror1, Mirror2
2016-01-06: Download: Mirror1, Mirror2
2015-12-22: Download: Mirror1, Mirror2
2015-11-07: Download: Mirror1, Mirror2
2015-11-04: Download, Mirror1 , Mirror2 (Stagefright 2.0 fixes)

 

[dookie23]

2016-08-05 fixed:
Nexus Security Bulletin—Aug 2016
Remote code execution vulnerability in Mediaserver (Critical)
Remote code execution vulnerability in libjhead (High)
Elevation of privilege vulnerability in Mediaserver (High)
Denial of service vulnerability in system clock (High)
Elevation of privilege vulnerability in framework APIs (Moderate)

2016-07-14 fixed:
Nexus Security Bulletin—July 2016
Remote code execution vulnerability in OpenSSL & BoringSSL (Critical)
Remote code execution vulnerability in Mediaserver (Critical)
Denial of service vulnerability in Mediaserver (High)
Elevation of privilege vulnerability in Framework APIs (High)
Elevation of privilege vulnerability in Mediaserver (High)
Information disclosure vulnerability in Mediaserver (Moderate)
Information disclosure vulnerability in Proxy Auto-Config (Moderate)
Elevation of privilege vulnerability in DexClassLoader (Moderate)
Elevation of privilege vulnerability in lsof (Moderate)

2016-06-10 fixed:
Nexus Security Bulletin—Jun 2016
Remote Code Execution Vulnerability in Mediaserver (Critical)
Elevation of Privilege Vulnerability in Mediaserver (High)
Elevation of Privilege Vulnerability in SD Card Emulation Layer (High)
Remote Denial of Service Vulnerability in Mediaserver (High)
Information Disclosure Vulnerability in Mediaserver (Moderate)

2016-05-09 fixed:
Nexus Security Bulletin—May 2016
Remote Code Execution Vulnerability in Mediaserver (Critical)
Elevation of Privilege Vulnerability in Wi-Fi (High)
Elevation of Privilege Vulnerability in Mediaserver (High)
Information Disclosure Vulnerability in Mediaserver (Moderate)

2016-04-11 fixed:
Nexus Security Bulletin—April 2016
Remote Code Execution Vulnerability in DHCPCD (Critical)
Remote Code Execution Vulnerability in Mediaserver (Critical)
Elevation of Privilege Vulnerability in IMemory Native Interface (High)
Elevation of Privilege Vulnerability in Bluetooth (High)
Elevation of Privilege Vulnerability in System_server (High)
Information Disclosure Vulnerability in Mediaserver (High)
Elevation of Privilege Vulnerability in Wi-Fi (Moderate)
Denial of Service Vulnerability in SyncStorageEngine (Moderate)

2016-03-10 fixed:
Nexus Security Bulletin—March 2016
Remote Code Execution Vulnerability in Mediaserver (Critical)
Elevation of Privilege Vulnerability in Mediaserver (High)
Information Disclosure Vulnerability in Mediaserver (High)

2016-02-09 fixed:
Nexus Security Bulletin—February 2016
Elevation of Privilege Vulnerability in Mediaserver (High)

2016-01-06 fixed:
Nexus Security Bulletin—January 2016
Elevation of Privilege Vulnerability in Wi-Fi (Moderate)
Information Disclosure Vulnerability in Bouncy Castle (Moderate)
Denial of Service Vulnerability in SyncManager (Moderate)

2015-12-22 fixed:
Nexus Security Bulletin—December 2015
Remote Code Execution Vulnerabilities in Mediaserver (Critical)
Information Disclosure Vulnerabilities in libstagefright (High)
Information Disclosure Vulnerability in Media Framework (High)

2015-11-07 fixed:
Nexus Security Bulletin—October 2015
Remote Code Execution Vulnerability in Skia (Critical)
Remote Code Execution Vulnerability in libFLAC (Critical)
Elevation of Privilege Vulnerability in KeyStore (High)
Elevation of Privilege Vulnerability in Media Player Framework (High)
Elevation of Privilege Vulnerability in KeyStore (High)
Denial of Service Vulnerabilities in Mediaserver (Low)

Nexus Security Bulletin—November 2015
Remote Code Execution Vulnerabilities in Mediaserver (Critical)
Information Disclosure Vulnerabilities in Mediaserver (High)
Elevation of Privilege Vulnerability in libstagefright (High)
Elevation of Privilege Vulnerability in libmedia (High)


2015-11-04 fixed:
Nexus Security Bulletin—October 2015
Remote Code Execution Vulnerabilities in libstagefright (Critical)
Remote Code Execution Vulnerabilities in Sonivox (Critical)
Remote Code Execution Vulnerabilities in libutils (Critical)

 

[dookie23]

The rom is currently being hosted on dev-host. let me know if there are better free hosting solution. Thanks.

 

[biondi53]

The rom is currently being hosted on dev-host. let me know if there are better free hosting solution. Thanks.

Mirror pls, mediafire, mega or androidfilehost

 

[gsmyth]

Can anyone else mirror? No luck downloading from devhost or mega.

Sent from my Nexus 7 using Tapatalk

 

[biondi53]

Mega link don't work

 

[dookie23]

Added Mirror2 (AndroidFileHost).

Sorry I didn't realize Mega required a key for download.

 

[gsmyth]

Added Mirror2 (AndroidFileHost).

Sorry I didn't realize Mega required a key for download.

Thanks, I tried the mega link with the mega app installed but it still wouldn't work, weird.

Sent from my InFocus M810t using Tapatalk

 

[dookie23]

Thanks, I tried the mega link with the mega app installed but it still wouldn't work, weird.

Sent from my InFocus M810t using Tapatalk

Yeah, I am not sure how to make Mega work. I am just gonna host the files on AndroidFileHost from now on. Hope this will work better for you!

 

[gsmyth]

Yeah, I am not sure how to make Mega work. I am just gonna host the files on AndroidFileHost from now on. Hope this will work better for you!

I think mega is a bit up in the air at the mo, from what I read kimdotcom sold mega cloud storage and hes also going through his court case at the moment. But that's a whole other story! Thanks for your work.

Sent from my InFocus M810t using Tapatalk

 

[biondi53]

Yeah, I am not sure how to make Mega work. I am just gonna host the files on AndroidFileHost from now on. Hope this will work better for you!

 

[dookie23]

Thanks! I have updated the Mega link and it should work now.

 

[dookie23]

ROM Updated (2015-11-07)

2015-11-07 fixed:
Nexus Security Bulletin—October 2015
Remote Code Execution Vulnerability in Skia (Critical)
Remote Code Execution Vulnerability in libFLAC (Critical)
Elevation of Privilege Vulnerability in KeyStore (High)
Elevation of Privilege Vulnerability in Media Player Framework (High)
Elevation of Privilege Vulnerability in KeyStore (High)
Denial of Service Vulnerabilities in Mediaserver (Low)

Nexus Security Bulletin—November 2015
Remote Code Execution Vulnerabilities in Mediaserver (Critical)
Information Disclosure Vulnerabilities in Mediaserver (High)
Elevation of Privilege Vulnerability in libstagefright (High)
Elevation of Privilege Vulnerability in libmedia (High)

Download links updated in OP.

 

[KaoDome]

Thank you very much, your work is much appreciated.

I own a Nexus 7 from 2012 and still haven't found any Lollipop release that works without freezing, really heavy freezing making it unusable.

 

[dookie23]

Thank you very much, your work is much appreciated.

I own a Nexus 7 from 2012 and still haven't found any Lollipop release that works without freezing, really heavy freezing making it unusable.

You're welcome! That's exactly how I feel about the Lollipop and so I also decided to switch back to KitKat. I am going to try merging the monthly Nexus security patches into the CM11 build and we will have a more secured and usable tablet.

 

[mugsy77]

Thanks so much for keeping our old but fun tablet up to date Everything is working like a champ! =P

 

[iwjosi]

2015-11-07 fixed:
Nexus Security Bulletin—October 2015
Remote Code Execution Vulnerability in Skia (Critical)
Remote Code Execution Vulnerability in libFLAC (Critical)
Elevation of Privilege Vulnerability in KeyStore (High)
Elevation of Privilege Vulnerability in Media Player Framework (High)
Elevation of Privilege Vulnerability in KeyStore (High)
Denial of Service Vulnerabilities in Mediaserver (Low)

Nexus Security Bulletin—November 2015
Remote Code Execution Vulnerabilities in Mediaserver (Critical)
Information Disclosure Vulnerabilities in Mediaserver (High)
Elevation of Privilege Vulnerability in libstagefright (High)
Elevation of Privilege Vulnerability in libmedia (High)

Download links updated in OP.

Can you make it for tilapia?

 

[dookie23]

Can you make it for tilapia?

At this point, I don't have plan to build it for tilapia. My disk is nearly full and so I am just going to stick with grouper for now.

 

[Reiven89]

Thank you very much for this rom, kitkat speed with latest fixes.....great combo just wondering, can someone convert it to full f2fs? Thanks

Sent from my Nexus 7 using XDA Free mobile app

 

[dookie23]

New ROM Update with December 2015 Security Patches

2015-12-22 fixed:
Nexus Security Bulletin—December 2015
Remote Code Execution Vulnerabilities in Mediaserver (Critical)
Information Disclosure Vulnerabilities in libstagefright (High)
Information Disclosure Vulnerability in Media Framework (High)

Download links updated in OP.