ASB-A-150946634

See a problem?

Import Source

https://storage.googleapis.com/android-osv/ASB-A-150946634.json

JSON Data

https://api.osv.dev/v1/vulns/ASB-A-150946634

Aliases

A-150946634
CVE-2020-0238

Published

2020-08-01T00:00:00Z

Modified

2026-04-17T15:55:28.020024Z

Summary

[none]

Details

In updatePreferenceIntents of AccountTypePreferenceLoader, there is a possible confused deputy attack due to a race condition. This could lead to local escalation of privilege and launching privileged activities with no additional execution privileges needed. User interaction is not needed for exploitation.

References

Affected packages

Android

platform/packages/apps/Settings

Package

Name: platform/packages/apps/Settings

Affected ranges

Type: ECOSYSTEM
Events: Introduced

8.0:0

Fixed

8.0:2020-08-01

Affected versions

8.*

8.0

Ecosystem specific

{
    "severity": "High",
    "fixes": [
        "https://android.googlesource.com/platform/packages/apps/Settings/+/33dd3187d0246a0425a41f76888a369c16dc9379"
    ],
    "spl": "2020-08-01",
    "vanir_signatures": [
        {
            "signature_version": "v1",
            "source": "https://android.googlesource.com/platform/packages/apps/Settings/+/33dd3187d0246a0425a41f76888a369c16dc9379",
            "target": {
                "function": "isSafeIntent",
                "file": "src/com/android/settings/accounts/AccountTypePreferenceLoader.java"
            },
            "deprecated": false,
            "digest": {
                "function_hash": "194139419052196073275125012701746824001",
                "length": 733.0
            },
            "signature_type": "Function",
            "id": "ASB-A-150946634-1d8dff61"
        },
        {
            "signature_version": "v1",
            "source": "https://android.googlesource.com/platform/packages/apps/Settings/+/33dd3187d0246a0425a41f76888a369c16dc9379",
            "target": {
                "file": "src/com/android/settings/accounts/AccountTypePreferenceLoader.java"
            },
            "deprecated": false,
            "digest": {
                "line_hashes": [
                    "192256806635405705760429236692378501758",
                    "296217076838803689189949546076507202147",
                    "61124897361319271505890093540008975355",
                    "285609962717365338226661824314501402235",
                    "171453915571489902331214173784844575923",
                    "28956094092032162204033690594434301567",
                    "87844448603462440184504678540482136957",
                    "226801093864952506277810669488504064194",
                    "30385862785679383196640388648514322406",
                    "168093535193904972278661312060028929840",
                    "146756299156924509265098936142266232835"
                ],
                "threshold": 0.9
            },
            "signature_type": "Line",
            "id": "ASB-A-150946634-3ee2631f"
        }
    ],
    "types": [
        "EoP"
    ]
}

Database specific

source

"https://storage.googleapis.com/android-osv/ASB-A-150946634.json"

platform/packages/apps/Settings

Package

Name: platform/packages/apps/Settings

Affected ranges

Type: ECOSYSTEM
Events: Introduced

8.1:0

Fixed

8.1:2020-08-01

Affected versions

8.*

8.1

Ecosystem specific

{
    "severity": "High",
    "fixes": [
        "https://android.googlesource.com/platform/packages/apps/Settings/+/33dd3187d0246a0425a41f76888a369c16dc9379"
    ],
    "spl": "2020-08-01",
    "vanir_signatures": [
        {
            "signature_version": "v1",
            "source": "https://android.googlesource.com/platform/packages/apps/Settings/+/33dd3187d0246a0425a41f76888a369c16dc9379",
            "target": {
                "function": "isSafeIntent",
                "file": "src/com/android/settings/accounts/AccountTypePreferenceLoader.java"
            },
            "deprecated": false,
            "digest": {
                "function_hash": "194139419052196073275125012701746824001",
                "length": 733.0
            },
            "signature_type": "Function",
            "id": "ASB-A-150946634-28f80100"
        },
        {
            "signature_version": "v1",
            "source": "https://android.googlesource.com/platform/packages/apps/Settings/+/33dd3187d0246a0425a41f76888a369c16dc9379",
            "target": {
                "file": "src/com/android/settings/accounts/AccountTypePreferenceLoader.java"
            },
            "deprecated": false,
            "digest": {
                "line_hashes": [
                    "192256806635405705760429236692378501758",
                    "296217076838803689189949546076507202147",
                    "61124897361319271505890093540008975355",
                    "285609962717365338226661824314501402235",
                    "171453915571489902331214173784844575923",
                    "28956094092032162204033690594434301567",
                    "87844448603462440184504678540482136957",
                    "226801093864952506277810669488504064194",
                    "30385862785679383196640388648514322406",
                    "168093535193904972278661312060028929840",
                    "146756299156924509265098936142266232835"
                ],
                "threshold": 0.9
            },
            "signature_type": "Line",
            "id": "ASB-A-150946634-ed1f1549"
        }
    ],
    "types": [
        "EoP"
    ]
}

Database specific

source

"https://storage.googleapis.com/android-osv/ASB-A-150946634.json"

platform/packages/apps/Settings

Package

Name: platform/packages/apps/Settings

Affected ranges

Type: ECOSYSTEM
Events: Introduced

9:0

Fixed

9:2020-08-01

Affected versions

Other

Ecosystem specific

{
    "severity": "High",
    "fixes": [
        "https://android.googlesource.com/platform/packages/apps/Settings/+/33dd3187d0246a0425a41f76888a369c16dc9379"
    ],
    "spl": "2020-08-01",
    "vanir_signatures": [
        {
            "signature_version": "v1",
            "source": "https://android.googlesource.com/platform/packages/apps/Settings/+/33dd3187d0246a0425a41f76888a369c16dc9379",
            "target": {
                "file": "src/com/android/settings/accounts/AccountTypePreferenceLoader.java"
            },
            "deprecated": false,
            "digest": {
                "line_hashes": [
                    "192256806635405705760429236692378501758",
                    "296217076838803689189949546076507202147",
                    "61124897361319271505890093540008975355",
                    "285609962717365338226661824314501402235",
                    "171453915571489902331214173784844575923",
                    "28956094092032162204033690594434301567",
                    "87844448603462440184504678540482136957",
                    "226801093864952506277810669488504064194",
                    "30385862785679383196640388648514322406",
                    "168093535193904972278661312060028929840",
                    "146756299156924509265098936142266232835"
                ],
                "threshold": 0.9
            },
            "signature_type": "Line",
            "id": "ASB-A-150946634-2b4249b7"
        },
        {
            "signature_version": "v1",
            "source": "https://android.googlesource.com/platform/packages/apps/Settings/+/33dd3187d0246a0425a41f76888a369c16dc9379",
            "target": {
                "function": "isSafeIntent",
                "file": "src/com/android/settings/accounts/AccountTypePreferenceLoader.java"
            },
            "deprecated": false,
            "digest": {
                "function_hash": "194139419052196073275125012701746824001",
                "length": 733.0
            },
            "signature_type": "Function",
            "id": "ASB-A-150946634-80e2ac12"
        }
    ],
    "types": [
        "EoP"
    ]
}

Database specific

source

"https://storage.googleapis.com/android-osv/ASB-A-150946634.json"

platform/packages/apps/Settings

Package

Name: platform/packages/apps/Settings

Affected ranges

Type: ECOSYSTEM
Events: Introduced

10:0

Fixed

10:2020-08-01

Affected versions

Other

Ecosystem specific

{
    "severity": "High",
    "fixes": [
        "https://android.googlesource.com/platform/packages/apps/Settings/+/33dd3187d0246a0425a41f76888a369c16dc9379"
    ],
    "spl": "2020-08-01",
    "vanir_signatures": [
        {
            "signature_version": "v1",
            "source": "https://android.googlesource.com/platform/packages/apps/Settings/+/33dd3187d0246a0425a41f76888a369c16dc9379",
            "target": {
                "file": "src/com/android/settings/accounts/AccountTypePreferenceLoader.java"
            },
            "deprecated": false,
            "digest": {
                "line_hashes": [
                    "192256806635405705760429236692378501758",
                    "296217076838803689189949546076507202147",
                    "61124897361319271505890093540008975355",
                    "285609962717365338226661824314501402235",
                    "171453915571489902331214173784844575923",
                    "28956094092032162204033690594434301567",
                    "87844448603462440184504678540482136957",
                    "226801093864952506277810669488504064194",
                    "30385862785679383196640388648514322406",
                    "168093535193904972278661312060028929840",
                    "146756299156924509265098936142266232835"
                ],
                "threshold": 0.9
            },
            "signature_type": "Line",
            "id": "ASB-A-150946634-459414e3"
        },
        {
            "signature_version": "v1",
            "source": "https://android.googlesource.com/platform/packages/apps/Settings/+/33dd3187d0246a0425a41f76888a369c16dc9379",
            "target": {
                "function": "isSafeIntent",
                "file": "src/com/android/settings/accounts/AccountTypePreferenceLoader.java"
            },
            "deprecated": false,
            "digest": {
                "function_hash": "194139419052196073275125012701746824001",
                "length": 733.0
            },
            "signature_type": "Function",
            "id": "ASB-A-150946634-c6eae670"
        }
    ],
    "types": [
        "EoP"
    ]
}

Database specific

source

"https://storage.googleapis.com/android-osv/ASB-A-150946634.json"