ASB-A-147358092

See a problem?
Import Source
https://storage.googleapis.com/android-osv/ASB-A-147358092.json
JSON Data
https://api.osv.dev/v1/vulns/ASB-A-147358092
Aliases
  • A-147358092
  • CVE-2020-0442
Published
2020-11-01T00:00:00Z
Modified
2026-06-11T14:59:52.052110020Z
Summary
[none]
Details

In Message and toBundle of Notification.java, there is a possible UI slowdown or crash due to improper input validation. This could lead to remote denial of service if a malicious contact file is received, with no additional execution privileges needed. User interaction is not needed for exploitation.

References

Affected packages

Android
platform/frameworks/base

Package

Name
platform/frameworks/base

Affected ranges

Type
ECOSYSTEM
Events
Introduced
11-next:0
Fixed
11-next:2020-11-01

Affected versions

Other
11-next

Ecosystem specific 

{
    "types": [
        "DoS"
    ],
    "spl": "2020-11-01",
    "vanir_signatures": [
        {
            "id": "ASB-A-147358092-397edf27",
            "target": {
                "file": "core/java/android/app/Notification.java"
            },
            "deprecated": false,
            "digest": {
                "line_hashes": [
                    "25693081011143403965924570554327340062",
                    "145135667773462807188212350943050247915",
                    "103801210461441284299338172224434577144",
                    "268695753093872796919241450464110276483",
                    "46261083463634891044944826171838452135",
                    "176910514098118386474826865368856580128",
                    "98526589191053999908616954323828412117",
                    "128177431757207050536224790976428229825",
                    "319607130368601865965098141551601944972",
                    "107251892173742551941786143315072969027",
                    "275639386799706093579977400228926095134",
                    "310687014227499283566324898602218088852"
                ],
                "threshold": 0.9
            },
            "signature_type": "Line",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/c953fdf6bc498ca791aed49df04e5a07c935b63a",
            "signature_version": "v1"
        },
        {
            "id": "ASB-A-147358092-761f8b42",
            "target": {
                "file": "core/java/android/app/Notification.java",
                "function": "Message"
            },
            "deprecated": false,
            "digest": {
                "function_hash": "884783211642599066431883859307243095",
                "length": 176.0
            },
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/c953fdf6bc498ca791aed49df04e5a07c935b63a",
            "signature_version": "v1"
        },
        {
            "signature_type": "Function",
            "target": {
                "file": "core/java/android/app/Notification.java",
                "function": "toBundle"
            },
            "deprecated": false,
            "digest": {
                "function_hash": "222671025270688948635880737328659672300",
                "length": 644.0
            },
            "id": "ASB-A-147358092-7a94299d",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/c953fdf6bc498ca791aed49df04e5a07c935b63a",
            "signature_version": "v1"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/base/+/c953fdf6bc498ca791aed49df04e5a07c935b63a"
    ],
    "severity": "Critical"
}

Database specific

source 
"https://storage.googleapis.com/android-osv/ASB-A-147358092.json"
platform/frameworks/base

Package

Name
platform/frameworks/base

Affected ranges

Type
ECOSYSTEM
Events
Introduced
8.0:0
Fixed
8.0:2020-11-01

Affected versions

8.*
8.0

Ecosystem specific 

{
    "types": [
        "DoS"
    ],
    "spl": "2020-11-01",
    "vanir_signatures": [
        {
            "id": "ASB-A-147358092-c2d4c3ea",
            "target": {
                "file": "core/java/android/app/Notification.java",
                "function": "toBundle"
            },
            "deprecated": false,
            "digest": {
                "function_hash": "249850538892017593367435450928172592955",
                "length": 481.0
            },
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/db023fcd738bb054402b771e5de5d758db526e30",
            "signature_version": "v1"
        },
        {
            "id": "ASB-A-147358092-c5c39679",
            "target": {
                "file": "core/java/android/app/Notification.java",
                "function": "Message"
            },
            "deprecated": false,
            "digest": {
                "function_hash": "130325885489704397750759730523257976396",
                "length": 111.0
            },
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/db023fcd738bb054402b771e5de5d758db526e30",
            "signature_version": "v1"
        },
        {
            "id": "ASB-A-147358092-f7e2d9e4",
            "target": {
                "file": "core/java/android/app/Notification.java"
            },
            "deprecated": false,
            "digest": {
                "line_hashes": [
                    "25693081011143403965924570554327340062",
                    "145135667773462807188212350943050247915",
                    "78086377271289137333884542052049714539",
                    "56200141793655099869644449185924752249",
                    "313030175786482230069013616059698900122",
                    "27246985446692965280412607529203410146",
                    "223230047906985161320695007039713239736",
                    "82166126420729959545926416641025738484",
                    "104985517583945412739508227244376745054",
                    "54005927267847672694205859340955290389",
                    "223193595611124957030305446690472011801",
                    "303687947021586481106450517505084892623"
                ],
                "threshold": 0.9
            },
            "signature_type": "Line",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/db023fcd738bb054402b771e5de5d758db526e30",
            "signature_version": "v1"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/base/+/db023fcd738bb054402b771e5de5d758db526e30"
    ],
    "severity": "Critical"
}

Database specific

source 
"https://storage.googleapis.com/android-osv/ASB-A-147358092.json"
platform/frameworks/base

Package

Name
platform/frameworks/base

Affected ranges

Type
ECOSYSTEM
Events
Introduced
8.1:0
Fixed
8.1:2020-11-01

Affected versions

8.*
8.1

Ecosystem specific 

{
    "types": [
        "DoS"
    ],
    "spl": "2020-11-01",
    "vanir_signatures": [
        {
            "id": "ASB-A-147358092-b892d1fe",
            "target": {
                "file": "core/java/android/app/Notification.java",
                "function": "Message"
            },
            "deprecated": false,
            "digest": {
                "function_hash": "130325885489704397750759730523257976396",
                "length": 111.0
            },
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/f6f287a1efc76ef90e8caea952fffee862359015",
            "signature_version": "v1"
        },
        {
            "id": "ASB-A-147358092-ccf5e19c",
            "target": {
                "file": "core/java/android/app/Notification.java"
            },
            "deprecated": false,
            "digest": {
                "line_hashes": [
                    "25693081011143403965924570554327340062",
                    "145135667773462807188212350943050247915",
                    "78086377271289137333884542052049714539",
                    "56200141793655099869644449185924752249",
                    "313030175786482230069013616059698900122",
                    "27246985446692965280412607529203410146",
                    "223230047906985161320695007039713239736",
                    "82166126420729959545926416641025738484",
                    "104985517583945412739508227244376745054",
                    "54005927267847672694205859340955290389",
                    "223193595611124957030305446690472011801",
                    "303687947021586481106450517505084892623"
                ],
                "threshold": 0.9
            },
            "signature_type": "Line",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/f6f287a1efc76ef90e8caea952fffee862359015",
            "signature_version": "v1"
        },
        {
            "id": "ASB-A-147358092-f48bf02f",
            "target": {
                "file": "core/java/android/app/Notification.java",
                "function": "toBundle"
            },
            "deprecated": false,
            "digest": {
                "function_hash": "249850538892017593367435450928172592955",
                "length": 481.0
            },
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/f6f287a1efc76ef90e8caea952fffee862359015",
            "signature_version": "v1"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/base/+/f6f287a1efc76ef90e8caea952fffee862359015"
    ],
    "severity": "Critical"
}

Database specific

source 
"https://storage.googleapis.com/android-osv/ASB-A-147358092.json"
platform/frameworks/base

Package

Name
platform/frameworks/base

Affected ranges

Type
ECOSYSTEM
Events
Introduced
9:0
Fixed
9:2020-11-01

Affected versions

Other
9

Ecosystem specific 

{
    "types": [
        "DoS"
    ],
    "spl": "2020-11-01",
    "vanir_signatures": [
        {
            "id": "ASB-A-147358092-35738ed9",
            "target": {
                "file": "core/java/android/app/Notification.java",
                "function": "toBundle"
            },
            "deprecated": false,
            "digest": {
                "function_hash": "222671025270688948635880737328659672300",
                "length": 644.0
            },
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/7857da643150e9b29f729632c68e705d7ba1ad48",
            "signature_version": "v1"
        },
        {
            "id": "ASB-A-147358092-5774d460",
            "target": {
                "file": "core/java/android/app/Notification.java",
                "function": "Message"
            },
            "deprecated": false,
            "digest": {
                "function_hash": "884783211642599066431883859307243095",
                "length": 176.0
            },
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/7857da643150e9b29f729632c68e705d7ba1ad48",
            "signature_version": "v1"
        },
        {
            "id": "ASB-A-147358092-b4d29889",
            "target": {
                "file": "core/java/android/app/Notification.java"
            },
            "deprecated": false,
            "signature_type": "Line",
            "digest": {
                "line_hashes": [
                    "25693081011143403965924570554327340062",
                    "145135667773462807188212350943050247915",
                    "123844992865351715585790036542023721288",
                    "270179343523045032144507667929111654064",
                    "46261083463634891044944826171838452135",
                    "176910514098118386474826865368856580128",
                    "98526589191053999908616954323828412117",
                    "128177431757207050536224790976428229825",
                    "319607130368601865965098141551601944972",
                    "107251892173742551941786143315072969027",
                    "275639386799706093579977400228926095134",
                    "310687014227499283566324898602218088852"
                ],
                "threshold": 0.9
            },
            "source": "https://android.googlesource.com/platform/frameworks/base/+/7857da643150e9b29f729632c68e705d7ba1ad48",
            "signature_version": "v1"
        }
    ],
    "severity": "Critical",
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/base/+/7857da643150e9b29f729632c68e705d7ba1ad48"
    ]
}

Database specific

source 
"https://storage.googleapis.com/android-osv/ASB-A-147358092.json"
platform/frameworks/base

Package

Name
platform/frameworks/base

Affected ranges

Type
ECOSYSTEM
Events
Introduced
10:0
Fixed
10:2020-11-01

Affected versions

Other
10

Ecosystem specific 

{
    "types": [
        "DoS"
    ],
    "spl": "2020-11-01",
    "vanir_signatures": [
        {
            "id": "ASB-A-147358092-7e5960e5",
            "target": {
                "file": "core/java/android/app/Notification.java",
                "function": "toBundle"
            },
            "deprecated": false,
            "digest": {
                "function_hash": "222671025270688948635880737328659672300",
                "length": 644.0
            },
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/978d31e45a67dba9d57d45a26c1d521300ba1b6f",
            "signature_version": "v1"
        },
        {
            "id": "ASB-A-147358092-c6d6ecb4",
            "target": {
                "file": "core/java/android/app/Notification.java",
                "function": "Message"
            },
            "deprecated": false,
            "digest": {
                "function_hash": "884783211642599066431883859307243095",
                "length": 176.0
            },
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/978d31e45a67dba9d57d45a26c1d521300ba1b6f",
            "signature_version": "v1"
        },
        {
            "signature_type": "Line",
            "target": {
                "file": "core/java/android/app/Notification.java"
            },
            "deprecated": false,
            "digest": {
                "line_hashes": [
                    "25693081011143403965924570554327340062",
                    "145135667773462807188212350943050247915",
                    "103801210461441284299338172224434577144",
                    "268695753093872796919241450464110276483",
                    "46261083463634891044944826171838452135",
                    "176910514098118386474826865368856580128",
                    "98526589191053999908616954323828412117",
                    "128177431757207050536224790976428229825",
                    "319607130368601865965098141551601944972",
                    "107251892173742551941786143315072969027",
                    "275639386799706093579977400228926095134",
                    "310687014227499283566324898602218088852"
                ],
                "threshold": 0.9
            },
            "id": "ASB-A-147358092-f2a524d2",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/978d31e45a67dba9d57d45a26c1d521300ba1b6f",
            "signature_version": "v1"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/base/+/978d31e45a67dba9d57d45a26c1d521300ba1b6f"
    ],
    "severity": "Critical"
}

Database specific

source 
"https://storage.googleapis.com/android-osv/ASB-A-147358092.json"
platform/frameworks/base

Package

Name
platform/frameworks/base

Affected ranges

Type
ECOSYSTEM
Events
Introduced
11:0
Fixed
11:2020-11-01

Affected versions

Other
11

Ecosystem specific 

{
    "types": [
        "DoS"
    ],
    "spl": "2020-11-01",
    "vanir_signatures": [
        {
            "id": "ASB-A-147358092-647226a5",
            "target": {
                "file": "core/java/android/app/Notification.java",
                "function": "Message"
            },
            "deprecated": false,
            "digest": {
                "function_hash": "884783211642599066431883859307243095",
                "length": 176.0
            },
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/a19f9ed2b1c04fe7e73bab1a8ca51400dbf8a07a",
            "signature_version": "v1"
        },
        {
            "id": "ASB-A-147358092-6c7fbe17",
            "target": {
                "file": "core/java/android/app/Notification.java"
            },
            "deprecated": false,
            "digest": {
                "line_hashes": [
                    "25693081011143403965924570554327340062",
                    "145135667773462807188212350943050247915",
                    "103801210461441284299338172224434577144",
                    "268695753093872796919241450464110276483",
                    "46261083463634891044944826171838452135",
                    "176910514098118386474826865368856580128",
                    "98526589191053999908616954323828412117",
                    "128177431757207050536224790976428229825",
                    "319607130368601865965098141551601944972",
                    "107251892173742551941786143315072969027",
                    "275639386799706093579977400228926095134",
                    "310687014227499283566324898602218088852"
                ],
                "threshold": 0.9
            },
            "signature_type": "Line",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/a19f9ed2b1c04fe7e73bab1a8ca51400dbf8a07a",
            "signature_version": "v1"
        },
        {
            "id": "ASB-A-147358092-6f727d4d",
            "target": {
                "file": "core/java/android/app/Notification.java",
                "function": "toBundle"
            },
            "deprecated": false,
            "digest": {
                "function_hash": "222671025270688948635880737328659672300",
                "length": 644.0
            },
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/a19f9ed2b1c04fe7e73bab1a8ca51400dbf8a07a",
            "signature_version": "v1"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/base/+/a19f9ed2b1c04fe7e73bab1a8ca51400dbf8a07a"
    ],
    "severity": "Critical"
}

Database specific

source 
"https://storage.googleapis.com/android-osv/ASB-A-147358092.json"