ASB-A-195962697
See a problem?- Import Source
- https://storage.googleapis.com/android-osv/ASB-A-195962697.json
- JSON Data
- https://api.osv.dev/v1/vulns/ASB-A-195962697
- Aliases
-
- A-195962697
- CVE-2021-0921
- Published
- 2021-11-01T00:00:00Z
- Modified
- 2026-05-01T15:24:27.653932Z
- Summary
- [none]
- Details
-
In ParsingPackageImpl of ParsingPackageImpl.java, there is a possible parcel serialization/deserialization mismatch due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
- References
Affected packages
Android / platform/frameworks/base
Package
Ecosystem specific
{
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/37a0b6de89f7fb321fbeac02ec1a012817b8e682"
],
"severity": "High",
"spl": "2021-11-01",
"vanir_signatures": [
{
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-195962697-170ed122",
"digest": {
"length": 8115.0,
"function_hash": "99100697387140839554966702934242077285"
},
"source": "https://android.googlesource.com/platform/frameworks/base/+/37a0b6de89f7fb321fbeac02ec1a012817b8e682",
"signature_type": "Function",
"target": {
"file": "core/java/android/content/pm/parsing/ParsingPackageImpl.java",
"function": "ParsingPackageImpl"
}
},
{
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-195962697-3b426bfb",
"digest": {
"line_hashes": [
"68896256394410199598413605213761244301",
"217009120226524868252066078517746715740",
"93629877243590214160948290486212397867",
"52327039998346520930140804119495652956",
"78338779693442238923096934458057188476",
"336210896519298546841556745773074056774",
"318705937697210214821082097925467310906",
"323816308728497968662577184529289135060",
"85186955688304431731143572044404897618",
"21888774256786285171950660888063437462",
"193009650628039144781995821182891316220",
"4391955342863366787914820282888738252"
],
"threshold": 0.9
},
"source": "https://android.googlesource.com/platform/frameworks/base/+/37a0b6de89f7fb321fbeac02ec1a012817b8e682",
"signature_type": "Line",
"target": {
"file": "core/java/android/content/pm/parsing/ParsingPackageImpl.java"
}
},
{
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-195962697-537087fd",
"digest": {
"line_hashes": [
"29679118256754993236176310721150695790",
"322258887350876419067175094266234239393",
"206871791855760028647029641554666676000",
"103335789839369259862298907790943317853",
"312954562133464252866431607033718140141",
"60305359041782497121913040503948066749",
"279386003929800785714870412801894137635"
],
"threshold": 0.9
},
"source": "https://android.googlesource.com/platform/frameworks/base/+/37a0b6de89f7fb321fbeac02ec1a012817b8e682",
"signature_type": "Line",
"target": {
"file": "core/java/android/content/pm/parsing/ParsingPackageUtils.java"
}
},
{
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-195962697-731e07b2",
"digest": {
"length": 7776.0,
"function_hash": "285737106146630588615380589794033057518"
},
"source": "https://android.googlesource.com/platform/frameworks/base/+/37a0b6de89f7fb321fbeac02ec1a012817b8e682",
"signature_type": "Function",
"target": {
"file": "core/java/android/content/pm/parsing/ParsingPackageImpl.java",
"function": "writeToParcel"
}
}
],
"types": [
"EoP"
]
}