CVE-2016-10229: Almost perfect score.
CVSS v3 Base Score 9.8 (Critical)
»udp.c in the Linux kernel before 4.5 allows remote attackers to execute arbitrary code via UDP traffic that triggers an unsafe second checksum calculation during execution of a recv system call with the MSG_PEEK flag.«
Affects your Linux, and hence all the unupdateable Android you own. Or “why did your Nexus need a reboot this morning?”