***************************************************************
***************************************************************
  53 file changed, 635 insertions(+), 233 deletions(-)
***************************************************************
***************************************************************
========platform/bionic between android-7.1.1_r13..android-7.1.1_r22=========
 libc/dns/net/getaddrinfo.c | 18 ++++++++++++++++--
 libc/dns/net/gethnamaddr.c |  5 ++---
 2 files changed, 18 insertions(+), 5 deletions(-)
dba3df6 Check for bad packets in getaddrinfo.c's getanswer.

========platform/build between android-7.1.1_r13..android-7.1.1_r22=========
 core/build_id.mk         | 2 +-
 core/version_defaults.mk | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)
71f1ec8 NMF26X
03feb26 Update Security String to 2017-02-05 on nyc-dev
6f4f4fa Update Security String to 2017-02-01 on nyc-dev
8cac1a1 NMF26W
1304762 NMF26V
e98b48f NMF26U
741d0af NMF26U
7e8e52f NMF26U
36e4dae NMF26T
66eb7cc NMF69
b2dccb4 Revert Security String to December
373adac NMF26S
1988cd3 NMF26R
cbb44f2 Updating Security String to 2017-01-05 on nyc-dev
ec0073a Updating Security String to 2017-01-01 on nyc-dev
6fe5e98 NMF62
64b6ca0 NMF26Q
f653420 NMF62

========device/asus/fugu between android-7.1.1_r13..android-7.1.1_r22=========
 libaudio/ATVAudioPolicyManager.cpp | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)
e385000 Support AUDIO_SOURCE_REMOTE_SUBMIX use case

========device/asus/fugu-kernel between android-7.1.1_r13..android-7.1.1_r22=========
 bzImage | Bin 5386880 -> 5386576 bytes
 1 file changed, 0 insertions(+), 0 deletions(-)
5e3e84f fugu: update prebuilt kernel

========device/google/marlin between android-7.1.1_r13..android-7.1.1_r22=========
0585f2e DO NOT MERGE. Remove Spaces in front of APN Types
f4d0878 DO NOT MERGE. Remove Spaces in front of APN Types
accbb7e DO NOT MERGE. Remove Spaces in front of APN Types

========device/google/marlin-kernel between android-7.1.1_r13..android-7.1.1_r22=========
 Image.gz-dtb | Bin 18708374 -> 18688510 bytes
 1 file changed, 0 insertions(+), 0 deletions(-)
0d33204 marlin: update prebuilt kernel [ DO NOT MERGE ]

========device/htc/flounder between android-7.1.1_r13..android-7.1.1_r22=========
 audio/Android.mk | 2 +-
 device.mk        | 3 +--
 2 files changed, 2 insertions(+), 3 deletions(-)
d172f8b Fix security issue in Visualizer effect

========device/huawei/angler-kernel between android-7.1.1_r13..android-7.1.1_r22=========
f44d95c merge in nyc-mr1-release history after reset to c1f3197fc6ce4f5d62d8fb6d74344bb157f57516

========device/moto/shamu-kernel between android-7.1.1_r13..android-7.1.1_r22=========
 zImage-dtb | Bin 7215487 -> 7215207 bytes
 1 file changed, 0 insertions(+), 0 deletions(-)
741ddb4 merge in nyc-mr1-release history after reset to nyc-mr1-dev

========platform/external/icu between android-7.1.1_r13..android-7.1.1_r22=========
5d54fde docs: Fixing bad unicode sequence in Javadocs.

========platform/external/libavc between android-7.1.1_r13..android-7.1.1_r22=========
 decoder/ih264d_defs.h          |  1 +
 decoder/ih264d_parse_headers.c | 18 +++++++-----------
 2 files changed, 8 insertions(+), 11 deletions(-)
72886b6 Decoder: Fix in checking for valid profile flags

========platform/external/libgdx between android-7.1.1_r13..android-7.1.1_r22=========
 gdx/jni/gdx2d/jpgd.cpp | 4 ++++
 1 file changed, 4 insertions(+)
e6da772 Fix security vulnerability

========platform/external/libhevc between android-7.1.1_r13..android-7.1.1_r22=========
 common/arm/ihevc_sao_edge_offset_class3_chroma.s   |  2 +-
 common/arm64/ihevc_sao_edge_offset_class3_chroma.s |  2 +-
 decoder/ihevcd_iquant_itrans_recon_ctb.c           | 11 +++++++++--
 decoder/ihevcd_sao.c                               |  9 +++++----
 4 files changed, 16 insertions(+), 8 deletions(-)
df7b564 Fixed handling invalid chroma tu size for error clips
fed7027 Fixed out of bound reads in stack variables
7546c10 Fix in Chroma SAO for non-multiple of 8 height
a33f672 Handle invalid slice_address in slice header

========platform/external/libnl between android-7.1.1_r13..android-7.1.1_r22=========
f0b4019 libnl: Check data length in nla_reserve / nla_put

========platform/external/libopus between android-7.1.1_r13..android-7.1.1_r22=========
0d052d6 Ensure that NLSF cannot be negative when computing a min distance between them

========platform/external/libvpx between android-7.1.1_r13..android-7.1.1_r22=========
6886e8e vp8:fix threading issues

========platform/external/tremolo between android-7.1.1_r13..android-7.1.1_r22=========
5dc9923 Tremolo: fix ARM assembly code for decode_map type 3 case

========platform/frameworks/av between android-7.1.1_r13..android-7.1.1_r22=========
 .../libeffects/lvm/wrapper/Bundle/EffectBundle.cpp | 27 ++++++--
 media/libmedia/IEffect.cpp                         | 12 ++++
 services/audioflinger/Effects.cpp                  | 73 ++++++++++++++++------
 3 files changed, 87 insertions(+), 25 deletions(-)
b0bcddb Fix security vulnerability: potential OOB write in audioserver
a155de4 Effect: Use local cached data for Effect commit
321ea52 Fix security vulnerability: Effect command might allow negative indexes
453b351 Make VBRISeeker more robust
26965db Effects: Check get parameter command size
7a3246b DO NOT MERGE: defensive parsing of mp3 album art information
c66c43a Fix security vulnerability: Equalizer command might allow negative indexes
781bd81 stagefright: remove allottedSize equality check in IOMX::useBuffer
557bd7b Visualizer: Check capture size and latency parameters

========platform/frameworks/base between android-7.1.1_r13..android-7.1.1_r22=========
 core/java/android/app/ActivityManagerInternal.java |  5 ++
 core/java/android/provider/Downloads.java          |  2 +
 core/java/android/util/MemoryIntArray.java         | 58 ++++++---------
 core/jni/android_util_MemoryIntArray.cpp           | 32 ++++++--
 core/tests/utiltests/Android.mk                    |  4 +
 core/tests/utiltests/jni/Android.mk                | 32 ++++++++
 .../jni/android_util_MemoryIntArrayTest.cpp        | 66 +++++++++++++++++
 core/tests/utiltests/jni/registration.cpp          | 43 +++++++++++
 .../src/android/util/IRemoteMemoryIntArray.aidl    |  3 +-
 .../src/android/util/MemoryIntArrayTest.java       | 86 +++++++++++++++++++---
 .../utiltests/src/android/util/RemoteIntArray.java | 12 ++-
 .../android/util/RemoteMemoryIntArrayService.java  | 13 +++-
 .../providers/settings/GenerationRegistry.java     |  2 +-
 .../com/android/server/LockSettingsService.java    | 11 ---
 .../android/server/am/ActivityManagerService.java  | 52 +++++++++++++
 .../com/android/server/content/ContentService.java | 72 +++++++++---------
 .../src/android/net/dhcp/DhcpPacketTest.java       | 52 +------------
 17 files changed, 389 insertions(+), 156 deletions(-)
31a0601 [DO NOT MERGE] Fix vulnerability in MemoryIntArray - fix build file
203725e Fix vulnerability in MemoryIntArray
90a6312 DO NOT MERGE. Retain DownloadManager Uri grants when clearing.
858064e DO NOT MERGE: Check provider access for content changes.
a014b6b Catch runtime exceptions when parsing DHCP packets
0041a76 Zygote : Block SIGCHLD during fork.
423a70c Fix idmap leak in zygote process
296f6d5 Zygote: Additional whitelisting for legacy devices.
6b650e8 Zygote: Additional whitelists for runtime overlay / other static resources.
47e62b7 Public volumes belong to a single user.
47e81a2 Add SafetyNet logging to DHCP packet parsing

========platform/frameworks/ex between android-7.1.1_r13..android-7.1.1_r22=========
7f0e3da resolve merge conflicts of 3802db4 to mnc-dev

========platform/frameworks/native between android-7.1.1_r13..android-7.1.1_r22=========
 libs/binder/Parcel.cpp           | 4 ++--
 libs/gui/BufferQueueCore.cpp     | 1 +
 libs/gui/BufferQueueProducer.cpp | 1 +
 3 files changed, 4 insertions(+), 2 deletions(-)
16110b8 Fix security vulneratibly 31960359
2e16d5f Fix SF security vulnerability: 32706020
b4d6b29 Correct overflow check in Parcel resize code
675e212 Fix SF security vulnerability: 32660278
e5753ba Fix integer overflow in unsafeReadTypedVector

========platform/hardware/libhardware between android-7.1.1_r13..android-7.1.1_r22=========
 include/hardware/audio_effect.h | 3 +++
 1 file changed, 3 insertions(+)
534098c Fix security vulnerability: potential OOB write in audioserver

========platform/hardware/qcom/audio between android-7.1.1_r13..android-7.1.1_r22=========
ed79f2c Fix security vulnerability: Effect command might allow negative indexes
d72ea85 Fix security vulnerability: Equalizer command might allow negative indexes

========platform/libcore between android-7.1.1_r13..android-7.1.1_r22=========
 luni/src/test/java/libcore/java/net/URLTest.java   | 22 ++++++++++++++++++++++
 .../src/main/java/java/net/URLStreamHandler.java   |  8 ++++++++
 2 files changed, 30 insertions(+)
4b3f2c6 Fix URL parser may return wrong host name

========platform/packages/apps/Bluetooth between android-7.1.1_r13..android-7.1.1_r22=========
 AndroidManifest.xml | 1 -
 1 file changed, 1 deletion(-)
4c1f39e Remove MANAGE_DOCUMENTS permission as it isn't needed

========platform/packages/apps/ContactsCommon between android-7.1.1_r13..android-7.1.1_r22=========
d47661a resolve merge conflicts of 9f523b4 to nyc-dev

========platform/packages/apps/Messaging between android-7.1.1_r13..android-7.1.1_r22=========
 AndroidManifest.xml                                   |  6 ++++--
 jni/GifTranscoder.cpp                                 |  5 +++++
 .../messaging/datamodel/MediaScratchFileProvider.java | 18 +++++++++++++++++-
 .../android/messaging/datamodel/MmsFileProvider.java  | 19 ++++++++++++++++++-
 .../messaging/ui/mediapicker/DocumentImagePicker.java | 13 +++++++++++++
 5 files changed, 57 insertions(+), 4 deletions(-)
74059eb resolve merge conflicts of eafd58a to nyc-dev
30ab77f 32807795  Security Vulnerability - AOSP Messaging App: thirdparty can attach private files from "/data/data/com.android.messaging/" directory to the messaging app.
e9b7e3a 32322450 Security Vulnerability - heap buffer overflow in libgiftranscode.so

========platform/packages/apps/UnifiedEmail between android-7.1.1_r13..android-7.1.1_r22=========
 src/com/android/mail/compose/ComposeActivity.java | 18 +++++++-----------
 1 file changed, 7 insertions(+), 11 deletions(-)
2073799 Don't allow file attachment from /data through GET_CONTENT.

========platform/packages/services/Telephony between android-7.1.1_r13..android-7.1.1_r22=========
1cdced5 Catch SIP exceptions which can crash Phone process on answer.

========platform/system/core between android-7.1.1_r13..android-7.1.1_r22=========
 rootdir/Android.mk | 1 +
 rootdir/init.rc    | 4 ----
 2 files changed, 1 insertion(+), 4 deletions(-)
0e7324e change /data/bugreports to /bugreports

========platform/system/sepolicy between android-7.1.1_r13..android-7.1.1_r22=========
 file_contexts | 1 +
 1 file changed, 1 insertion(+)
ae46511 label /bugreports