ASB-A-235850634
See a problem?- Import Source
- https://storage.googleapis.com/android-osv/ASB-A-235850634.json
- JSON Data
- https://api.osv.dev/v1/vulns/ASB-A-235850634
- Aliases
-
- A-235850634
- CVE-2022-20413
- Published
- 2022-10-01T00:00:00Z
- Modified
- 2026-04-20T15:37:26.169566Z
- Summary
- [none]
- Details
-
In start of Threads.cpp, there is a possible way to record audio during a phone call due to a logic error in the code. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.
- References
Affected packages
Android
platform/frameworks/av
Package
- Name
- platform/frameworks/av
Ecosystem specific
{
"vanir_signatures": [
{
"digest": {
"length": 2785.0,
"function_hash": "81181394698423272454874642256699488090"
},
"id": "ASB-A-235850634-2b583ce7",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/frameworks/av/+/5ee382438971b303a63d07aab40bbdb5a5b88520",
"target": {
"function": "AudioFlinger::MmapThread::start",
"file": "services/audioflinger/Threads.cpp"
}
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"201988523389593385061007374122406249898",
"271471977421997628405962829937757768094",
"185676650678369235215480043063267900644",
"198933167022081666281538109705389226537",
"76083410214893130432690246935998647333",
"157707774218318497405772292249999366591",
"330606488169128530148873227927409930061",
"21922544428062808396490850597937065882",
"126783701507331834985037104720605811960",
"182330296286554160107550692368105885182",
"10890587252539407938447069612080456170",
"167587873789583617279380746060849404855",
"156880479271703966195861458915152762045",
"216268526825132457805594427701425644691",
"251341222208445686204282603005286287539",
"307806665057571096281850491342015702526",
"164228875517811981932807249790601871289",
"308848917979864834755193765057325423811",
"234011055780484902780767594436605529455",
"165869260923137633933753749554490102301"
]
},
"id": "ASB-A-235850634-7a335352",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/frameworks/av/+/5ee382438971b303a63d07aab40bbdb5a5b88520",
"target": {
"file": "services/audioflinger/Threads.cpp"
}
},
{
"digest": {
"length": 866.0,
"function_hash": "68796141465345685940563667153922411095"
},
"id": "ASB-A-235850634-9ef710be",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/frameworks/av/+/5ee382438971b303a63d07aab40bbdb5a5b88520",
"target": {
"function": "AudioFlinger::MmapThread::stop",
"file": "services/audioflinger/Threads.cpp"
}
},
{
"digest": {
"length": 305.0,
"function_hash": "181196753431051838006019915285123295268"
},
"id": "ASB-A-235850634-e14352a6",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/frameworks/av/+/5ee382438971b303a63d07aab40bbdb5a5b88520",
"target": {
"function": "AudioFlinger::MmapCaptureThread::setRecordSilenced",
"file": "services/audioflinger/Threads.cpp"
}
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"75921022813139541503686174051271348367",
"29248364145583206918322435520830821556",
"88498981957272264380731117662209253740",
"87325438604622953908049999513708932423",
"155838997843059346861057275852138653956",
"168778868802633039982327665461234916745",
"29681316594126690081018132777348418954"
]
},
"id": "ASB-A-235850634-e433009e",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/frameworks/av/+/5ee382438971b303a63d07aab40bbdb5a5b88520",
"target": {
"file": "services/audioflinger/Threads.h"
}
}
],
"fixes": [
"https://android.googlesource.com/platform/frameworks/av/+/5ee382438971b303a63d07aab40bbdb5a5b88520"
],
"types": [
"ID"
],
"spl": "2022-10-01",
"severity": "High"
}platform/frameworks/av
Package
- Name
- platform/frameworks/av
Ecosystem specific
{
"vanir_signatures": [
{
"digest": {
"length": 2888.0,
"function_hash": "299276747474085596058797203112702422615"
},
"id": "ASB-A-235850634-55349446",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/frameworks/av/+/a2f00f95e0e74efe439a591b236afb598dbf8972",
"target": {
"function": "AudioFlinger::MmapThread::start",
"file": "services/audioflinger/Threads.cpp"
}
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"324901151813731196240508223413722623934",
"285531171118598633213671603613472087528",
"336038215384601795986123558978427341951",
"87325438604622953908049999513708932423",
"155838997843059346861057275852138653956",
"168778868802633039982327665461234916745",
"29681316594126690081018132777348418954"
]
},
"id": "ASB-A-235850634-61237a49",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/frameworks/av/+/a2f00f95e0e74efe439a591b236afb598dbf8972",
"target": {
"file": "services/audioflinger/Threads.h"
}
},
{
"digest": {
"length": 305.0,
"function_hash": "181196753431051838006019915285123295268"
},
"id": "ASB-A-235850634-6b5003f2",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/frameworks/av/+/a2f00f95e0e74efe439a591b236afb598dbf8972",
"target": {
"function": "AudioFlinger::MmapCaptureThread::setRecordSilenced",
"file": "services/audioflinger/Threads.cpp"
}
},
{
"digest": {
"length": 866.0,
"function_hash": "68796141465345685940563667153922411095"
},
"id": "ASB-A-235850634-8b94caff",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/frameworks/av/+/a2f00f95e0e74efe439a591b236afb598dbf8972",
"target": {
"function": "AudioFlinger::MmapThread::stop",
"file": "services/audioflinger/Threads.cpp"
}
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"201988523389593385061007374122406249898",
"271471977421997628405962829937757768094",
"185676650678369235215480043063267900644",
"198933167022081666281538109705389226537",
"76083410214893130432690246935998647333",
"157707774218318497405772292249999366591",
"330606488169128530148873227927409930061",
"38071816232882080880499290686887897055",
"199394340052008221672398655275824975160",
"246136062329852722277547819238866407649",
"180330506421263529894918950697246167606",
"5439363204307583563230901158222031723",
"156880479271703966195861458915152762045",
"216268526825132457805594427701425644691",
"251341222208445686204282603005286287539",
"307806665057571096281850491342015702526",
"164228875517811981932807249790601871289",
"308848917979864834755193765057325423811",
"234011055780484902780767594436605529455",
"165869260923137633933753749554490102301"
]
},
"id": "ASB-A-235850634-d56cd483",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/frameworks/av/+/a2f00f95e0e74efe439a591b236afb598dbf8972",
"target": {
"file": "services/audioflinger/Threads.cpp"
}
}
],
"fixes": [
"https://android.googlesource.com/platform/frameworks/av/+/a2f00f95e0e74efe439a591b236afb598dbf8972"
],
"types": [
"ID"
],
"spl": "2022-10-01",
"severity": "High"
}platform/frameworks/av
Package
- Name
- platform/frameworks/av
Ecosystem specific
{
"vanir_signatures": [
{
"digest": {
"length": 2912.0,
"function_hash": "323799684551059076427516059709482107823"
},
"id": "ASB-A-235850634-09d3b1c5",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/frameworks/av/+/cfc10a47f66b2864350aa31a9bf96b76f35b366b",
"target": {
"function": "AudioFlinger::MmapThread::start",
"file": "services/audioflinger/Threads.cpp"
}
},
{
"digest": {
"length": 881.0,
"function_hash": "243371791769163726436477391793551069062"
},
"id": "ASB-A-235850634-52570b44",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/frameworks/av/+/cfc10a47f66b2864350aa31a9bf96b76f35b366b",
"target": {
"function": "AudioFlinger::MmapThread::stop",
"file": "services/audioflinger/Threads.cpp"
}
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"201988523389593385061007374122406249898",
"271471977421997628405962829937757768094",
"185676650678369235215480043063267900644",
"198933167022081666281538109705389226537",
"76083410214893130432690246935998647333",
"157707774218318497405772292249999366591",
"330606488169128530148873227927409930061",
"38071816232882080880499290686887897055",
"88908128385796590820152069511025280460",
"305774215448492971648576359454280994060",
"58723290763809158926092537558918602986",
"167587873789583617279380746060849404855",
"156880479271703966195861458915152762045",
"216268526825132457805594427701425644691",
"251341222208445686204282603005286287539",
"307806665057571096281850491342015702526",
"164228875517811981932807249790601871289",
"308848917979864834755193765057325423811",
"234011055780484902780767594436605529455",
"165869260923137633933753749554490102301"
]
},
"id": "ASB-A-235850634-57ea2f66",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/frameworks/av/+/cfc10a47f66b2864350aa31a9bf96b76f35b366b",
"target": {
"file": "services/audioflinger/Threads.cpp"
}
},
{
"digest": {
"length": 305.0,
"function_hash": "181196753431051838006019915285123295268"
},
"id": "ASB-A-235850634-ba40f5c8",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/frameworks/av/+/cfc10a47f66b2864350aa31a9bf96b76f35b366b",
"target": {
"function": "AudioFlinger::MmapCaptureThread::setRecordSilenced",
"file": "services/audioflinger/Threads.cpp"
}
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"295449459720035709819482335231942038436",
"114069076096002077919365661304866957402",
"294420004732231599841618571868709500941",
"87325438604622953908049999513708932423",
"155838997843059346861057275852138653956",
"168778868802633039982327665461234916745",
"29681316594126690081018132777348418954"
]
},
"id": "ASB-A-235850634-ec7be045",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/frameworks/av/+/cfc10a47f66b2864350aa31a9bf96b76f35b366b",
"target": {
"file": "services/audioflinger/Threads.h"
}
}
],
"fixes": [
"https://android.googlesource.com/platform/frameworks/av/+/cfc10a47f66b2864350aa31a9bf96b76f35b366b"
],
"types": [
"ID"
],
"spl": "2022-10-01",
"severity": "High"
}platform/frameworks/av
Package
- Name
- platform/frameworks/av
Ecosystem specific
{
"vanir_signatures": [
{
"digest": {
"length": 881.0,
"function_hash": "243371791769163726436477391793551069062"
},
"id": "ASB-A-235850634-74c8ee59",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/frameworks/av/+/cfc10a47f66b2864350aa31a9bf96b76f35b366b",
"target": {
"function": "AudioFlinger::MmapThread::stop",
"file": "services/audioflinger/Threads.cpp"
}
},
{
"digest": {
"length": 305.0,
"function_hash": "181196753431051838006019915285123295268"
},
"id": "ASB-A-235850634-77d4c651",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/frameworks/av/+/cfc10a47f66b2864350aa31a9bf96b76f35b366b",
"target": {
"function": "AudioFlinger::MmapCaptureThread::setRecordSilenced",
"file": "services/audioflinger/Threads.cpp"
}
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"295449459720035709819482335231942038436",
"114069076096002077919365661304866957402",
"294420004732231599841618571868709500941",
"87325438604622953908049999513708932423",
"155838997843059346861057275852138653956",
"168778868802633039982327665461234916745",
"29681316594126690081018132777348418954"
]
},
"id": "ASB-A-235850634-7b1eddea",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/frameworks/av/+/cfc10a47f66b2864350aa31a9bf96b76f35b366b",
"target": {
"file": "services/audioflinger/Threads.h"
}
},
{
"digest": {
"length": 2912.0,
"function_hash": "323799684551059076427516059709482107823"
},
"id": "ASB-A-235850634-7ff6ceb8",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/frameworks/av/+/cfc10a47f66b2864350aa31a9bf96b76f35b366b",
"target": {
"function": "AudioFlinger::MmapThread::start",
"file": "services/audioflinger/Threads.cpp"
}
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"201988523389593385061007374122406249898",
"271471977421997628405962829937757768094",
"185676650678369235215480043063267900644",
"198933167022081666281538109705389226537",
"76083410214893130432690246935998647333",
"157707774218318497405772292249999366591",
"330606488169128530148873227927409930061",
"38071816232882080880499290686887897055",
"88908128385796590820152069511025280460",
"305774215448492971648576359454280994060",
"58723290763809158926092537558918602986",
"167587873789583617279380746060849404855",
"156880479271703966195861458915152762045",
"216268526825132457805594427701425644691",
"251341222208445686204282603005286287539",
"307806665057571096281850491342015702526",
"164228875517811981932807249790601871289",
"308848917979864834755193765057325423811",
"234011055780484902780767594436605529455",
"165869260923137633933753749554490102301"
]
},
"id": "ASB-A-235850634-e9533f33",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/frameworks/av/+/cfc10a47f66b2864350aa31a9bf96b76f35b366b",
"target": {
"file": "services/audioflinger/Threads.cpp"
}
}
],
"fixes": [
"https://android.googlesource.com/platform/frameworks/av/+/cfc10a47f66b2864350aa31a9bf96b76f35b366b"
],
"types": [
"ID"
],
"spl": "2022-10-01",
"severity": "High"
}platform/frameworks/av
Package
- Name
- platform/frameworks/av
Ecosystem specific
{
"vanir_signatures": [
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"295449459720035709819482335231942038436",
"114069076096002077919365661304866957402",
"294420004732231599841618571868709500941",
"87325438604622953908049999513708932423",
"155838997843059346861057275852138653956",
"168778868802633039982327665461234916745",
"29681316594126690081018132777348418954"
]
},
"id": "ASB-A-235850634-0ad91ec8",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/frameworks/av/+/cfc10a47f66b2864350aa31a9bf96b76f35b366b",
"target": {
"file": "services/audioflinger/Threads.h"
}
},
{
"digest": {
"length": 2912.0,
"function_hash": "323799684551059076427516059709482107823"
},
"id": "ASB-A-235850634-279bc265",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/frameworks/av/+/cfc10a47f66b2864350aa31a9bf96b76f35b366b",
"target": {
"function": "AudioFlinger::MmapThread::start",
"file": "services/audioflinger/Threads.cpp"
}
},
{
"digest": {
"length": 881.0,
"function_hash": "243371791769163726436477391793551069062"
},
"id": "ASB-A-235850634-5f0d4473",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/frameworks/av/+/cfc10a47f66b2864350aa31a9bf96b76f35b366b",
"target": {
"function": "AudioFlinger::MmapThread::stop",
"file": "services/audioflinger/Threads.cpp"
}
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"201988523389593385061007374122406249898",
"271471977421997628405962829937757768094",
"185676650678369235215480043063267900644",
"198933167022081666281538109705389226537",
"76083410214893130432690246935998647333",
"157707774218318497405772292249999366591",
"330606488169128530148873227927409930061",
"38071816232882080880499290686887897055",
"88908128385796590820152069511025280460",
"305774215448492971648576359454280994060",
"58723290763809158926092537558918602986",
"167587873789583617279380746060849404855",
"156880479271703966195861458915152762045",
"216268526825132457805594427701425644691",
"251341222208445686204282603005286287539",
"307806665057571096281850491342015702526",
"164228875517811981932807249790601871289",
"308848917979864834755193765057325423811",
"234011055780484902780767594436605529455",
"165869260923137633933753749554490102301"
]
},
"id": "ASB-A-235850634-83ee9342",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/frameworks/av/+/cfc10a47f66b2864350aa31a9bf96b76f35b366b",
"target": {
"file": "services/audioflinger/Threads.cpp"
}
},
{
"digest": {
"length": 305.0,
"function_hash": "181196753431051838006019915285123295268"
},
"id": "ASB-A-235850634-add07363",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/frameworks/av/+/cfc10a47f66b2864350aa31a9bf96b76f35b366b",
"target": {
"function": "AudioFlinger::MmapCaptureThread::setRecordSilenced",
"file": "services/audioflinger/Threads.cpp"
}
}
],
"fixes": [
"https://android.googlesource.com/platform/frameworks/av/+/cfc10a47f66b2864350aa31a9bf96b76f35b366b"
],
"types": [
"ID"
],
"spl": "2022-10-01",
"severity": "High"
}