ASB-A-239210579
See a problem?- Import Source
- https://storage.googleapis.com/android-osv/ASB-A-239210579.json
- JSON Data
- https://api.osv.dev/v1/vulns/ASB-A-239210579
- Aliases
-
- A-239210579
- CVE-2022-20472
- Published
- 2022-12-01T00:00:00Z
- Modified
- 2026-04-30T15:48:46.890647Z
- Summary
- [none]
- Details
-
In toLanguageTag of LocaleListCache.cpp, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.
- References
Affected packages
Android
platform/frameworks/minikin
Package
- Name
- platform/frameworks/minikin
Ecosystem specific
{
"types": [
"RCE"
],
"spl": "2022-12-01",
"fixes": [
"https://android.googlesource.com/platform/frameworks/minikin/+/d8a427cc9c8a722b0911af5139b10b0a6aeb0e03"
],
"severity": "Critical",
"vanir_signatures": [
{
"signature_type": "Function",
"target": {
"function": "toLanguageTag",
"file": "libs/minikin/LocaleListCache.cpp"
},
"signature_version": "v1",
"id": "ASB-A-239210579-be0859dd",
"digest": {
"function_hash": "152948757818298646151844135874724150576",
"length": 1060.0
},
"deprecated": false,
"source": "https://android.googlesource.com/platform/frameworks/minikin/+/d8a427cc9c8a722b0911af5139b10b0a6aeb0e03"
},
{
"signature_type": "Line",
"target": {
"file": "libs/minikin/LocaleListCache.cpp"
},
"signature_version": "v1",
"id": "ASB-A-239210579-c3e08b40",
"digest": {
"line_hashes": [
"311606954623645014405006219303463805465",
"241199747390157345748406894549090239946",
"285900964479397606537853783197812129489",
"197897737091753768722222239047080504598",
"71759189750102407818191791820821522474",
"157532236812911576354397536908371080903",
"292516064325142511290277124646580853728",
"100923073751965899328259216077403220810"
],
"threshold": 0.9
},
"deprecated": false,
"source": "https://android.googlesource.com/platform/frameworks/minikin/+/d8a427cc9c8a722b0911af5139b10b0a6aeb0e03"
}
]
}platform/frameworks/minikin
Package
- Name
- platform/frameworks/minikin
Ecosystem specific
{
"types": [
"RCE"
],
"spl": "2022-12-01",
"fixes": [
"https://android.googlesource.com/platform/frameworks/minikin/+/df1b59a77619ce831d8e5078c125cc2557a9ea35"
],
"severity": "Critical",
"vanir_signatures": [
{
"signature_type": "Line",
"target": {
"file": "libs/minikin/LocaleListCache.cpp"
},
"signature_version": "v1",
"id": "ASB-A-239210579-5e49c3b5",
"digest": {
"line_hashes": [
"311606954623645014405006219303463805465",
"241199747390157345748406894549090239946",
"285900964479397606537853783197812129489",
"197897737091753768722222239047080504598",
"71759189750102407818191791820821522474",
"157532236812911576354397536908371080903",
"292516064325142511290277124646580853728",
"100923073751965899328259216077403220810"
],
"threshold": 0.9
},
"deprecated": false,
"source": "https://android.googlesource.com/platform/frameworks/minikin/+/df1b59a77619ce831d8e5078c125cc2557a9ea35"
},
{
"signature_type": "Function",
"target": {
"function": "toLanguageTag",
"file": "libs/minikin/LocaleListCache.cpp"
},
"signature_version": "v1",
"id": "ASB-A-239210579-9604c377",
"digest": {
"function_hash": "44544224249926763090065890534562730262",
"length": 1148.0
},
"deprecated": false,
"source": "https://android.googlesource.com/platform/frameworks/minikin/+/df1b59a77619ce831d8e5078c125cc2557a9ea35"
}
]
}platform/frameworks/minikin
Package
- Name
- platform/frameworks/minikin
Ecosystem specific
{
"types": [
"RCE"
],
"spl": "2022-12-01",
"fixes": [
"https://android.googlesource.com/platform/frameworks/minikin/+/fde7f4a25ca4f1405bea3816c71cea64d80a9c81"
],
"severity": "Critical",
"vanir_signatures": [
{
"signature_type": "Line",
"target": {
"file": "libs/minikin/LocaleListCache.cpp"
},
"signature_version": "v1",
"id": "ASB-A-239210579-28e85dc8",
"digest": {
"line_hashes": [
"311606954623645014405006219303463805465",
"241199747390157345748406894549090239946",
"285900964479397606537853783197812129489",
"197897737091753768722222239047080504598",
"71759189750102407818191791820821522474",
"157532236812911576354397536908371080903",
"292516064325142511290277124646580853728",
"100923073751965899328259216077403220810"
],
"threshold": 0.9
},
"deprecated": false,
"source": "https://android.googlesource.com/platform/frameworks/minikin/+/fde7f4a25ca4f1405bea3816c71cea64d80a9c81"
},
{
"signature_type": "Function",
"target": {
"function": "toLanguageTag",
"file": "libs/minikin/LocaleListCache.cpp"
},
"signature_version": "v1",
"id": "ASB-A-239210579-72f10ff2",
"digest": {
"function_hash": "44544224249926763090065890534562730262",
"length": 1148.0
},
"deprecated": false,
"source": "https://android.googlesource.com/platform/frameworks/minikin/+/fde7f4a25ca4f1405bea3816c71cea64d80a9c81"
}
]
}platform/frameworks/minikin
Package
- Name
- platform/frameworks/minikin
Ecosystem specific
{
"types": [
"RCE"
],
"spl": "2022-12-01",
"fixes": [
"https://android.googlesource.com/platform/frameworks/minikin/+/c2380d94c6ed84542dd201c039a079cbf927bd24"
],
"severity": "Critical",
"vanir_signatures": [
{
"signature_type": "Function",
"target": {
"function": "toLanguageTag",
"file": "libs/minikin/LocaleListCache.cpp"
},
"signature_version": "v1",
"id": "ASB-A-239210579-5f962a9b",
"digest": {
"function_hash": "44544224249926763090065890534562730262",
"length": 1148.0
},
"deprecated": false,
"source": "https://android.googlesource.com/platform/frameworks/minikin/+/c2380d94c6ed84542dd201c039a079cbf927bd24"
},
{
"signature_type": "Line",
"target": {
"file": "libs/minikin/LocaleListCache.cpp"
},
"signature_version": "v1",
"id": "ASB-A-239210579-a1d5b13c",
"digest": {
"line_hashes": [
"311606954623645014405006219303463805465",
"241199747390157345748406894549090239946",
"285900964479397606537853783197812129489",
"197897737091753768722222239047080504598",
"71759189750102407818191791820821522474",
"157532236812911576354397536908371080903",
"292516064325142511290277124646580853728",
"100923073751965899328259216077403220810"
],
"threshold": 0.9
},
"deprecated": false,
"source": "https://android.googlesource.com/platform/frameworks/minikin/+/c2380d94c6ed84542dd201c039a079cbf927bd24"
}
]
}platform/frameworks/minikin
Package
- Name
- platform/frameworks/minikin
Ecosystem specific
{
"types": [
"RCE"
],
"spl": "2022-12-01",
"fixes": [
"https://android.googlesource.com/platform/frameworks/minikin/+/d5d0c70c3c73167a6564dc3e8843ab1f567b4676"
],
"severity": "Critical",
"vanir_signatures": [
{
"signature_type": "Line",
"target": {
"file": "libs/minikin/LocaleListCache.cpp"
},
"signature_version": "v1",
"id": "ASB-A-239210579-248e174e",
"digest": {
"line_hashes": [
"311606954623645014405006219303463805465",
"241199747390157345748406894549090239946",
"285900964479397606537853783197812129489",
"197897737091753768722222239047080504598",
"71759189750102407818191791820821522474",
"157532236812911576354397536908371080903",
"292516064325142511290277124646580853728",
"100923073751965899328259216077403220810"
],
"threshold": 0.9
},
"deprecated": false,
"source": "https://android.googlesource.com/platform/frameworks/minikin/+/d5d0c70c3c73167a6564dc3e8843ab1f567b4676"
},
{
"signature_type": "Function",
"target": {
"function": "toLanguageTag",
"file": "libs/minikin/LocaleListCache.cpp"
},
"signature_version": "v1",
"id": "ASB-A-239210579-e3bb318f",
"digest": {
"function_hash": "44544224249926763090065890534562730262",
"length": 1148.0
},
"deprecated": false,
"source": "https://android.googlesource.com/platform/frameworks/minikin/+/d5d0c70c3c73167a6564dc3e8843ab1f567b4676"
}
]
}