ASB-A-219015884
See a problem?- Import Source
- https://storage.googleapis.com/android-osv/ASB-A-219015884.json
- JSON Data
- https://api.osv.dev/v1/vulns/ASB-A-219015884
- Aliases
-
- A-219015884
- CVE-2022-20220
- Published
- 2022-07-01T00:00:00Z
- Modified
- 2026-04-17T15:55:28.020024Z
- Summary
- [none]
- Details
-
In openFile of CallLogProvider.java, there is a possible permission bypass due to a path traversal error. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.
- References
Affected packages
Android / platform/packages/providers/ContactsProvider
Package
Ecosystem specific
{
"vanir_signatures": [
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"80556162895880792831603875551434641542",
"261713554497495016265945414111035963751",
"223484236778549619715047498372853515431",
"212727300813294272073991136558766830669",
"145291450032720118371994974066181749592",
"83206619313910695128548435682764265229",
"84957994418400661474662027988111971266",
"160199517177949618493828767468458340714",
"306667458784816265871724482886101199225",
"165472891104289477114417372168957371229",
"148501115818883676817113523476465475572",
"279890213913258310656874654355957680438",
"258179191018602781453434504890871419424",
"261990686389993149118546137426451388807",
"157793474918727384552935276709041265292",
"303394727368492633530529340784274426657",
"18965481648146670354266081386648002232",
"251697982678667641201019146966373741689",
"39973034611118046241533072751258587783",
"264085753851315626503573994444377012027",
"98091311131399214891666419273000917671",
"216220454372179139125795804482220632779",
"47401923675628117697947464933786772299",
"84548400442674366318118914823687679270",
"287859958430371281590258505168553971026",
"159810972737882846981070977960741004821",
"102462974237692409826427485140294425528",
"2281476316063599756271812216418645963",
"302497987735875217573044640396691592319",
"123583553300097912274155540290893791864",
"109127505205732677383334803609398725149"
]
},
"id": "ASB-A-219015884-0507dcee",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/packages/providers/ContactsProvider/+/74cf86e9b493220c5b3ecc0817eeb7e7188199c8",
"target": {
"file": "src/com/android/providers/contacts/CallLogProvider.java"
}
},
{
"digest": {
"length": 1646.0,
"function_hash": "309386010514092342042245267834131134851"
},
"id": "ASB-A-219015884-3065edf8",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/packages/providers/ContactsProvider/+/74cf86e9b493220c5b3ecc0817eeb7e7188199c8",
"target": {
"function": "syncCallComposerPics",
"file": "src/com/android/providers/contacts/CallLogProvider.java"
}
},
{
"digest": {
"length": 351.0,
"function_hash": "192327671234739927967485161192599275251"
},
"id": "ASB-A-219015884-445b4252",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/packages/providers/ContactsProvider/+/74cf86e9b493220c5b3ecc0817eeb7e7188199c8",
"target": {
"function": "deleteCallComposerPicture",
"file": "src/com/android/providers/contacts/CallLogProvider.java"
}
},
{
"digest": {
"length": 774.0,
"function_hash": "59884867351264151132995485155170850686"
},
"id": "ASB-A-219015884-6a160514",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/packages/providers/ContactsProvider/+/74cf86e9b493220c5b3ecc0817eeb7e7188199c8",
"target": {
"function": "allocateNewCallComposerPicture",
"file": "src/com/android/providers/contacts/CallLogProvider.java"
}
},
{
"digest": {
"length": 983.0,
"function_hash": "231545673366050250262952693884714281968"
},
"id": "ASB-A-219015884-e0539cbd",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/packages/providers/ContactsProvider/+/74cf86e9b493220c5b3ecc0817eeb7e7188199c8",
"target": {
"function": "openFile",
"file": "src/com/android/providers/contacts/CallLogProvider.java"
}
}
],
"fixes": [
"https://android.googlesource.com/platform/packages/providers/ContactsProvider/+/74cf86e9b493220c5b3ecc0817eeb7e7188199c8"
],
"types": [
"EoP"
],
"spl": "2022-07-05",
"severity": "High"
}
Android / platform/packages/providers/ContactsProvider
Package
Ecosystem specific
{
"vanir_signatures": [
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"80556162895880792831603875551434641542",
"261713554497495016265945414111035963751",
"223484236778549619715047498372853515431",
"212727300813294272073991136558766830669",
"145291450032720118371994974066181749592",
"83206619313910695128548435682764265229",
"84957994418400661474662027988111971266",
"160199517177949618493828767468458340714",
"306667458784816265871724482886101199225",
"165472891104289477114417372168957371229",
"148501115818883676817113523476465475572",
"279890213913258310656874654355957680438",
"258179191018602781453434504890871419424",
"261990686389993149118546137426451388807",
"157793474918727384552935276709041265292",
"303394727368492633530529340784274426657",
"18965481648146670354266081386648002232",
"251697982678667641201019146966373741689",
"39973034611118046241533072751258587783",
"264085753851315626503573994444377012027",
"98091311131399214891666419273000917671",
"216220454372179139125795804482220632779",
"47401923675628117697947464933786772299",
"84548400442674366318118914823687679270",
"287859958430371281590258505168553971026",
"159810972737882846981070977960741004821",
"102462974237692409826427485140294425528",
"2281476316063599756271812216418645963",
"302497987735875217573044640396691592319",
"123583553300097912274155540290893791864",
"109127505205732677383334803609398725149"
]
},
"id": "ASB-A-219015884-08c99980",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/packages/providers/ContactsProvider/+/5fd7ebb59d6c2b64255a4aad484d5f2217d4f4af",
"target": {
"file": "src/com/android/providers/contacts/CallLogProvider.java"
}
},
{
"digest": {
"length": 351.0,
"function_hash": "192327671234739927967485161192599275251"
},
"id": "ASB-A-219015884-2f846196",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/packages/providers/ContactsProvider/+/5fd7ebb59d6c2b64255a4aad484d5f2217d4f4af",
"target": {
"function": "deleteCallComposerPicture",
"file": "src/com/android/providers/contacts/CallLogProvider.java"
}
},
{
"digest": {
"length": 1646.0,
"function_hash": "309386010514092342042245267834131134851"
},
"id": "ASB-A-219015884-8d1df9d1",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/packages/providers/ContactsProvider/+/5fd7ebb59d6c2b64255a4aad484d5f2217d4f4af",
"target": {
"function": "syncCallComposerPics",
"file": "src/com/android/providers/contacts/CallLogProvider.java"
}
},
{
"digest": {
"length": 774.0,
"function_hash": "59884867351264151132995485155170850686"
},
"id": "ASB-A-219015884-a1f8b29a",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/packages/providers/ContactsProvider/+/5fd7ebb59d6c2b64255a4aad484d5f2217d4f4af",
"target": {
"function": "allocateNewCallComposerPicture",
"file": "src/com/android/providers/contacts/CallLogProvider.java"
}
},
{
"digest": {
"length": 983.0,
"function_hash": "231545673366050250262952693884714281968"
},
"id": "ASB-A-219015884-e47050ac",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/packages/providers/ContactsProvider/+/5fd7ebb59d6c2b64255a4aad484d5f2217d4f4af",
"target": {
"function": "openFile",
"file": "src/com/android/providers/contacts/CallLogProvider.java"
}
}
],
"fixes": [
"https://android.googlesource.com/platform/packages/providers/ContactsProvider/+/5fd7ebb59d6c2b64255a4aad484d5f2217d4f4af"
],
"types": [
"EoP"
],
"spl": "2022-07-05",
"severity": "High"
}