ASB-A-209966086
See a problem?- Import Source
- https://storage.googleapis.com/android-osv/ASB-A-209966086.json
- JSON Data
- https://api.osv.dev/v1/vulns/ASB-A-209966086
- Aliases
-
- A-209966086
- CVE-2021-39808
- Published
- 2022-04-01T00:00:00Z
- Modified
- 2026-05-01T15:24:27.653932Z
- Summary
- [none]
- Details
-
In createNotificationChannelGroup of PreferencesHelper.java, there is a possible way for a service to run in foreground without user notification due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
- References
Affected packages
Android / platform/frameworks/base
Package
Ecosystem specific
{
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/b993531c0da0b2f2076bc83af7591c7df8bfb2cb"
],
"severity": "High",
"spl": "2022-04-01",
"vanir_signatures": [
{
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-209966086-1d10ebfb",
"digest": {
"line_hashes": [
"8034113556860625068291420687499382141",
"239666131919380600346909992204352177892",
"72580951798790837860818645827444303746",
"315998510452549566250257768656486569262"
],
"threshold": 0.9
},
"source": "https://android.googlesource.com/platform/frameworks/base/+/b993531c0da0b2f2076bc83af7591c7df8bfb2cb",
"signature_type": "Line",
"target": {
"file": "services/core/java/com/android/server/notification/PreferencesHelper.java"
}
},
{
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-209966086-60cd024a",
"digest": {
"length": 1037.0,
"function_hash": "31639584228568034920351185014605141412"
},
"source": "https://android.googlesource.com/platform/frameworks/base/+/b993531c0da0b2f2076bc83af7591c7df8bfb2cb",
"signature_type": "Function",
"target": {
"file": "services/core/java/com/android/server/notification/PreferencesHelper.java",
"function": "createNotificationChannelGroup"
}
}
],
"types": [
"EoP"
]
}
Android / platform/frameworks/base
Package
Ecosystem specific
{
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/c5b545329fad3da10a6640995f6110013ad8ff5a"
],
"severity": "High",
"spl": "2022-04-01",
"vanir_signatures": [
{
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-209966086-2abbc688",
"digest": {
"length": 1133.0,
"function_hash": "176254787725988691653872241621671528991"
},
"source": "https://android.googlesource.com/platform/frameworks/base/+/c5b545329fad3da10a6640995f6110013ad8ff5a",
"signature_type": "Function",
"target": {
"file": "services/core/java/com/android/server/notification/PreferencesHelper.java",
"function": "createNotificationChannelGroup"
}
},
{
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-209966086-c21af7b9",
"digest": {
"line_hashes": [
"8034113556860625068291420687499382141",
"239666131919380600346909992204352177892",
"21565954296713538785385233326448754542",
"128689527619691914233002559843408420120"
],
"threshold": 0.9
},
"source": "https://android.googlesource.com/platform/frameworks/base/+/c5b545329fad3da10a6640995f6110013ad8ff5a",
"signature_type": "Line",
"target": {
"file": "services/core/java/com/android/server/notification/PreferencesHelper.java"
}
}
],
"types": [
"EoP"
]
}
Android / platform/frameworks/base
Package
Ecosystem specific
{
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/119d8e1b284964e9934c073dcf4d750daed78b1a"
],
"severity": "High",
"spl": "2022-04-01",
"vanir_signatures": [
{
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-209966086-83929a37",
"digest": {
"length": 1109.0,
"function_hash": "233863245938784713369862393652011606556"
},
"source": "https://android.googlesource.com/platform/frameworks/base/+/119d8e1b284964e9934c073dcf4d750daed78b1a",
"signature_type": "Function",
"target": {
"file": "services/core/java/com/android/server/notification/PreferencesHelper.java",
"function": "createNotificationChannelGroup"
}
},
{
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-209966086-be771c85",
"digest": {
"line_hashes": [
"8034113556860625068291420687499382141",
"239666131919380600346909992204352177892",
"21565954296713538785385233326448754542",
"128689527619691914233002559843408420120"
],
"threshold": 0.9
},
"source": "https://android.googlesource.com/platform/frameworks/base/+/119d8e1b284964e9934c073dcf4d750daed78b1a",
"signature_type": "Line",
"target": {
"file": "services/core/java/com/android/server/notification/PreferencesHelper.java"
}
}
],
"types": [
"EoP"
]
}