ASB-A-205570663
See a problem?- Import Source
- https://storage.googleapis.com/android-osv/ASB-A-205570663.json
- JSON Data
- https://api.osv.dev/v1/vulns/ASB-A-205570663
- Aliases
-
- A-205570663
- CVE-2022-20410
- Published
- 2022-10-01T00:00:00Z
- Modified
- 2026-04-17T15:55:28.020024Z
- Summary
- [none]
- Details
-
In avrcctrlparsvendorrsp of avrcparsct.cc, there is a possible out of bounds read due to an integer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
- References
Affected packages
Android / platform/system/bt
Package
Ecosystem specific
{
"vanir_signatures": [
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"53851562581457439053319150279614511705",
"28371810934832898202729681298911626759",
"1038927059233479462940346190604856113"
]
},
"id": "ASB-A-205570663-5091fa9b",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/system/bt/+/96ef1fc9cbe38f1224b4e4a2dca3ecfb44a6aece",
"target": {
"file": "stack/test/stack_avrcp_test.cc"
}
},
{
"digest": {
"length": 7320.0,
"function_hash": "92219160472489548622221663059819042208"
},
"id": "ASB-A-205570663-813159a3",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/system/bt/+/96ef1fc9cbe38f1224b4e4a2dca3ecfb44a6aece",
"target": {
"function": "avrc_pars_browse_rsp",
"file": "stack/avrc/avrc_pars_ct.cc"
}
},
{
"digest": {
"length": 9897.0,
"function_hash": "292198416997601795162240660694263142047"
},
"id": "ASB-A-205570663-b881c95f",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/system/bt/+/96ef1fc9cbe38f1224b4e4a2dca3ecfb44a6aece",
"target": {
"function": "avrc_ctrl_pars_vendor_rsp",
"file": "stack/avrc/avrc_pars_ct.cc"
}
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"63583063595761140445482535452589672429",
"68410126764287957455050860694611700816",
"259940881132413122271356701085610463946",
"256589493414692726532016141215428481876",
"191780761388653028100331694163962438138",
"227368121575231130679150458873269756327",
"284618433328015474291936650139298165875",
"201856332268137352919152824968009853259",
"89865430647722801759415086903173574258",
"316722222297529422587946003080859842411",
"133836755153463298081038162834729496614",
"7669396494182478580668665439355794079",
"36341816297097638823385752921161426396",
"268282454438475565898807743029970304883",
"239866384995723808097547875075006491138",
"51381993229652904914554255928572124248",
"112727163075927763606166442381030959436",
"301463966112709557639663298463362444321",
"107852372975393639626537855372490326713"
]
},
"id": "ASB-A-205570663-f8ae376b",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/system/bt/+/96ef1fc9cbe38f1224b4e4a2dca3ecfb44a6aece",
"target": {
"file": "stack/avrc/avrc_pars_ct.cc"
}
}
],
"fixes": [
"https://android.googlesource.com/platform/system/bt/+/96ef1fc9cbe38f1224b4e4a2dca3ecfb44a6aece"
],
"types": [
"ID"
],
"spl": "2022-10-01",
"severity": "High"
}
Android / platform/system/bt
Package
Ecosystem specific
{
"vanir_signatures": [
{
"digest": {
"length": 9902.0,
"function_hash": "212237906486955620618367297289880682168"
},
"id": "ASB-A-205570663-05723f9e",
"deprecated": true,
"target": {
"function": "avrc_ctrl_pars_vendor_rsp",
"file": "stack/avrc/avrc_pars_ct.cc"
},
"signature_type": "Function",
"match_only_versions": [
"11"
],
"source": "https://android.googlesource.com/platform/system/bt/+/53aff7d1e018c5d5f4eb5d09eecfaad760e92ec4",
"signature_version": "v1"
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"63583063595761140445482535452589672429",
"68410126764287957455050860694611700816",
"259940881132413122271356701085610463946",
"256589493414692726532016141215428481876",
"191780761388653028100331694163962438138",
"227368121575231130679150458873269756327",
"284618433328015474291936650139298165875",
"201856332268137352919152824968009853259",
"89865430647722801759415086903173574258",
"316722222297529422587946003080859842411",
"191780761388653028100331694163962438138",
"227368121575231130679150458873269756327",
"284618433328015474291936650139298165875",
"59531908524829764323093178824293519953",
"89865430647722801759415086903173574258",
"74044567333134222198116207824982572185",
"133836755153463298081038162834729496614",
"7669396494182478580668665439355794079",
"36341816297097638823385752921161426396",
"268282454438475565898807743029970304883",
"239866384995723808097547875075006491138",
"51381993229652904914554255928572124248",
"112727163075927763606166442381030959436",
"301463966112709557639663298463362444321",
"107852372975393639626537855372490326713"
]
},
"id": "ASB-A-205570663-29a3abcc",
"deprecated": true,
"signature_version": "v1",
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/system/bt/+/53aff7d1e018c5d5f4eb5d09eecfaad760e92ec4",
"target": {
"file": "stack/avrc/avrc_pars_ct.cc"
}
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"53851562581457439053319150279614511705",
"28371810934832898202729681298911626759",
"1038927059233479462940346190604856113"
]
},
"id": "ASB-A-205570663-36345f6f",
"deprecated": true,
"signature_version": "v1",
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/system/bt/+/53aff7d1e018c5d5f4eb5d09eecfaad760e92ec4",
"target": {
"file": "stack/test/stack_avrcp_test.cc"
}
},
{
"digest": {
"length": 8324.0,
"function_hash": "133510049867979634507106659682574747103"
},
"id": "ASB-A-205570663-3ae3978f",
"deprecated": true,
"target": {
"function": "avrc_pars_browse_rsp",
"file": "stack/avrc/avrc_pars_ct.cc"
},
"signature_type": "Function",
"match_only_versions": [
"11"
],
"source": "https://android.googlesource.com/platform/system/bt/+/53aff7d1e018c5d5f4eb5d09eecfaad760e92ec4",
"signature_version": "v1"
}
],
"fixes": [
"https://android.googlesource.com/platform/system/bt/+/53aff7d1e018c5d5f4eb5d09eecfaad760e92ec4"
],
"types": [
"ID"
],
"spl": "2022-10-01",
"severity": "High"
}
Android / platform/system/bt
Package
Ecosystem specific
{
"vanir_signatures": [
{
"digest": {
"length": 8324.0,
"function_hash": "133510049867979634507106659682574747103"
},
"id": "ASB-A-205570663-07b48cdd",
"deprecated": true,
"target": {
"function": "avrc_pars_browse_rsp",
"file": "stack/avrc/avrc_pars_ct.cc"
},
"signature_type": "Function",
"match_only_versions": [
"12"
],
"source": "https://android.googlesource.com/platform/system/bt/+/e2c21c42444943be338d943cc8fbc5b88a5b9f3a",
"signature_version": "v1"
},
{
"digest": {
"length": 9902.0,
"function_hash": "212237906486955620618367297289880682168"
},
"id": "ASB-A-205570663-4a742b84",
"deprecated": true,
"target": {
"function": "avrc_ctrl_pars_vendor_rsp",
"file": "stack/avrc/avrc_pars_ct.cc"
},
"signature_type": "Function",
"match_only_versions": [
"12"
],
"source": "https://android.googlesource.com/platform/system/bt/+/e2c21c42444943be338d943cc8fbc5b88a5b9f3a",
"signature_version": "v1"
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"63583063595761140445482535452589672429",
"68410126764287957455050860694611700816",
"259940881132413122271356701085610463946",
"256589493414692726532016141215428481876",
"191780761388653028100331694163962438138",
"227368121575231130679150458873269756327",
"284618433328015474291936650139298165875",
"201856332268137352919152824968009853259",
"89865430647722801759415086903173574258",
"316722222297529422587946003080859842411",
"191780761388653028100331694163962438138",
"227368121575231130679150458873269756327",
"284618433328015474291936650139298165875",
"59531908524829764323093178824293519953",
"89865430647722801759415086903173574258",
"74044567333134222198116207824982572185",
"133836755153463298081038162834729496614",
"7669396494182478580668665439355794079",
"36341816297097638823385752921161426396",
"268282454438475565898807743029970304883",
"239866384995723808097547875075006491138",
"51381993229652904914554255928572124248",
"112727163075927763606166442381030959436",
"301463966112709557639663298463362444321",
"107852372975393639626537855372490326713"
]
},
"id": "ASB-A-205570663-80d2d33d",
"deprecated": true,
"signature_version": "v1",
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/system/bt/+/e2c21c42444943be338d943cc8fbc5b88a5b9f3a",
"target": {
"file": "stack/avrc/avrc_pars_ct.cc"
}
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"53851562581457439053319150279614511705",
"28371810934832898202729681298911626759",
"1038927059233479462940346190604856113"
]
},
"id": "ASB-A-205570663-d2cdfb3c",
"deprecated": true,
"signature_version": "v1",
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/system/bt/+/e2c21c42444943be338d943cc8fbc5b88a5b9f3a",
"target": {
"file": "stack/test/stack_avrcp_test.cc"
}
}
],
"fixes": [
"https://android.googlesource.com/platform/system/bt/+/e2c21c42444943be338d943cc8fbc5b88a5b9f3a"
],
"types": [
"ID"
],
"spl": "2022-10-01",
"severity": "High"
}
Android / platform/packages/modules/Bluetooth
Package
Ecosystem specific
{
"vanir_signatures": [
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"63583063595761140445482535452589672429",
"68410126764287957455050860694611700816",
"259940881132413122271356701085610463946",
"256589493414692726532016141215428481876",
"191780761388653028100331694163962438138",
"227368121575231130679150458873269756327",
"284618433328015474291936650139298165875",
"201856332268137352919152824968009853259",
"89865430647722801759415086903173574258",
"316722222297529422587946003080859842411",
"191780761388653028100331694163962438138",
"227368121575231130679150458873269756327",
"284618433328015474291936650139298165875",
"59531908524829764323093178824293519953",
"89865430647722801759415086903173574258",
"74044567333134222198116207824982572185",
"133836755153463298081038162834729496614",
"7669396494182478580668665439355794079",
"36341816297097638823385752921161426396",
"268282454438475565898807743029970304883",
"239866384995723808097547875075006491138",
"51381993229652904914554255928572124248",
"112727163075927763606166442381030959436",
"301463966112709557639663298463362444321",
"107852372975393639626537855372490326713"
]
},
"id": "ASB-A-205570663-2e57a38f",
"deprecated": true,
"target": {
"file": "system/stack/avrc/avrc_pars_ct.cc"
},
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/packages/modules/Bluetooth/+/62e29ee6f52d995cdace2d1ef8880c11831135fc",
"exact_target_file_match_only": true,
"signature_version": "v1"
},
{
"digest": {
"length": 9902.0,
"function_hash": "212237906486955620618367297289880682168"
},
"id": "ASB-A-205570663-6381efcb",
"deprecated": true,
"target": {
"function": "avrc_ctrl_pars_vendor_rsp",
"file": "system/stack/avrc/avrc_pars_ct.cc"
},
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/packages/modules/Bluetooth/+/62e29ee6f52d995cdace2d1ef8880c11831135fc",
"exact_target_file_match_only": true,
"signature_version": "v1"
},
{
"digest": {
"length": 8324.0,
"function_hash": "133510049867979634507106659682574747103"
},
"id": "ASB-A-205570663-8a24dd48",
"deprecated": true,
"target": {
"function": "avrc_pars_browse_rsp",
"file": "system/stack/avrc/avrc_pars_ct.cc"
},
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/packages/modules/Bluetooth/+/62e29ee6f52d995cdace2d1ef8880c11831135fc",
"exact_target_file_match_only": true,
"signature_version": "v1"
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"53851562581457439053319150279614511705",
"28371810934832898202729681298911626759",
"1038927059233479462940346190604856113"
]
},
"id": "ASB-A-205570663-b93a306f",
"deprecated": true,
"target": {
"file": "system/stack/test/stack_avrcp_test.cc"
},
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/packages/modules/Bluetooth/+/62e29ee6f52d995cdace2d1ef8880c11831135fc",
"exact_target_file_match_only": true,
"signature_version": "v1"
}
],
"fixes": [
"https://android.googlesource.com/platform/packages/modules/Bluetooth/+/62e29ee6f52d995cdace2d1ef8880c11831135fc"
],
"types": [
"ID"
],
"spl": "2022-10-01",
"severity": "High"
}