ASB-A-143230980

See a problem?
Import Source
https://storage.googleapis.com/android-osv/ASB-A-143230980.json
JSON Data
https://api.osv.dev/v1/vulns/ASB-A-143230980
Aliases
Published
2021-07-01T00:00:00Z
Modified
2026-04-17T15:55:28.020024Z
Summary
[none]
Details

In queryInternal of CallLogProvider.java, there is a possible permission bypass due to improper input validation. This could lead to local information disclosure of voicemail metadata with User execution privileges needed. User interaction is not needed for exploitation.

References

Affected packages

Android / platform/frameworks/base

Package

Name
platform/frameworks/base

Affected ranges

Type
ECOSYSTEM
Events
Introduced
11:0
Fixed
11:2021-07-05

Affected versions

Other
11

Ecosystem specific 

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 381.0,
                "function_hash": "243577943529210183658225489362143767496"
            },
            "id": "ASB-A-143230980-13fe7e03",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/6e1dc4f73597467f0895b9abe186dafd7ea23f2e",
            "target": {
                "function": "getLastOutgoingCall",
                "file": "core/java/android/provider/CallLog.java"
            }
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "167943536484440368284640684903005144419",
                    "88975112140562803490622136464619689594",
                    "177052677309344726792500136065671562789",
                    "181562959741234650330855493112216272006"
                ]
            },
            "id": "ASB-A-143230980-cc2e03b7",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Line",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/02b4a387aa85f3a084b22716c1221bc2b2ad9133",
            "target": {
                "file": "core/java/android/database/sqlite/SQLiteQueryBuilder.java"
            }
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "50428772908630929488001246425327088739",
                    "55150776784164778373540527941906524255",
                    "293736895579162532924440257144895041804",
                    "84329363243419339319955492616616171406",
                    "274663662291183179225696621580873416242",
                    "164944255278781854580662433622137323883",
                    "228014237971832009562656199285204868344",
                    "201173472687214082052071698990996339145",
                    "78342307389441675659700421772270178081",
                    "52152552155839912661368790527001164213",
                    "156281475283858460274769409993363619664"
                ]
            },
            "id": "ASB-A-143230980-d3f1d392",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Line",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/6e1dc4f73597467f0895b9abe186dafd7ea23f2e",
            "target": {
                "file": "core/java/android/provider/CallLog.java"
            }
        },
        {
            "digest": {
                "length": 511.0,
                "function_hash": "190931567886367991920293425054198084670"
            },
            "id": "ASB-A-143230980-e697a17c",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/02b4a387aa85f3a084b22716c1221bc2b2ad9133",
            "target": {
                "function": "enforceStrictToken",
                "file": "core/java/android/database/sqlite/SQLiteQueryBuilder.java"
            }
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/base/+/02b4a387aa85f3a084b22716c1221bc2b2ad9133",
        "https://android.googlesource.com/platform/frameworks/base/+/6e1dc4f73597467f0895b9abe186dafd7ea23f2e"
    ],
    "types": [
        "ID"
    ],
    "spl": "2021-07-05",
    "severity": "High"
}

Database specific

source 
"https://storage.googleapis.com/android-osv/ASB-A-143230980.json"

Android / platform/packages/providers/ContactsProvider

Package

Name
platform/packages/providers/ContactsProvider

Affected ranges

Type
ECOSYSTEM
Events
Introduced
11:0
Fixed
11:2021-07-05

Affected versions

Other
11

Ecosystem specific 

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 715.0,
                "function_hash": "264576237726595650887705223528953321897"
            },
            "id": "ASB-A-143230980-17f93940",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/packages/providers/ContactsProvider/+/1b5f99d14234bd92ce3a40d1e267f8b8a1bbe3dd",
            "target": {
                "function": "deleteInternal",
                "file": "src/com/android/providers/contacts/CallLogProvider.java"
            }
        },
        {
            "digest": {
                "length": 1897.0,
                "function_hash": "293099696361844818597976039091575017108"
            },
            "id": "ASB-A-143230980-a1236a8f",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/packages/providers/ContactsProvider/+/1b5f99d14234bd92ce3a40d1e267f8b8a1bbe3dd",
            "target": {
                "function": "queryInternal",
                "file": "src/com/android/providers/contacts/CallLogProvider.java"
            }
        },
        {
            "digest": {
                "length": 957.0,
                "function_hash": "125439238430240601382931982922531287603"
            },
            "id": "ASB-A-143230980-d9cd1907",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/packages/providers/ContactsProvider/+/1b5f99d14234bd92ce3a40d1e267f8b8a1bbe3dd",
            "target": {
                "function": "updateInternal",
                "file": "src/com/android/providers/contacts/CallLogProvider.java"
            }
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "106644019312073845655984668024151909291",
                    "64800742481851107802405913854460607400",
                    "239963095560727400973340794405138837632",
                    "85576252990887061447484782348234904663",
                    "255991450326838143900334801343293146354",
                    "126707294435488434288156590852769369805",
                    "36948501330905214543762762802327015750",
                    "152221335107425749313179684226736345887",
                    "12558825698757157313814857132518525610",
                    "266227819577318429353890695815731274413",
                    "288766343364638629640793730780990964811",
                    "287559143745587618305399838269606648732",
                    "81774158029451417419069484757056864807",
                    "180612124011276798595241076826134972616",
                    "167192138794513326793851295566243698357",
                    "232530658847801189356996578936233394988",
                    "41744940072694375250216716975833257854",
                    "266227819577318429353890695815731274413",
                    "288766343364638629640793730780990964811",
                    "284813807822875896483681818980955783203",
                    "280172972529112716794192147385117664446",
                    "318486439967898191561339324149599709590",
                    "10615750858419314198680381901961654544",
                    "174094468482269905173280371592327981547",
                    "148203312493574468672471217258430693232"
                ]
            },
            "id": "ASB-A-143230980-e3d84135",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Line",
            "source": "https://android.googlesource.com/platform/packages/providers/ContactsProvider/+/1b5f99d14234bd92ce3a40d1e267f8b8a1bbe3dd",
            "target": {
                "file": "src/com/android/providers/contacts/CallLogProvider.java"
            }
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/packages/providers/ContactsProvider/+/1b5f99d14234bd92ce3a40d1e267f8b8a1bbe3dd"
    ],
    "types": [
        "ID"
    ],
    "spl": "2021-07-05",
    "severity": "High"
}

Database specific

source 
"https://storage.googleapis.com/android-osv/ASB-A-143230980.json"