ASB-A-291299076
See a problem?- Import Source
- https://storage.googleapis.com/android-osv/ASB-A-291299076.json
- JSON Data
- https://api.osv.dev/v1/vulns/ASB-A-291299076
- Aliases
-
- A-291299076
- CVE-2023-40109
- Published
- 2023-11-01T00:00:00Z
- Modified
- 2024-08-07T19:29:50.623150Z
- Summary
- [none]
- Details
-
In createFromParcel of UsbConfiguration.java, there is a possible background activity launch (BAL) due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.
- References
Affected packages
Android / platform/frameworks/base
Package
Ecosystem specific
{
"vanir_signatures": [
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"64032869180274739073190422895623655539",
"262484176442339311704902322087541112136",
"116613418940402835663978091473829914079",
"230443252710839433367481878379959720256"
]
},
"id": "ASB-A-291299076-971e97d3",
"source": "https://android.googlesource.com/platform/frameworks/base/+/85d7e6712a9eeeed3bdd68ea3c3862c7e88bfe70",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "core/java/android/hardware/usb/UsbConfiguration.java"
},
"signature_type": "Line"
},
{
"digest": {
"length": 326.0,
"function_hash": "269662731154042863602055335981907143040"
},
"id": "ASB-A-291299076-ad22709a",
"source": "https://android.googlesource.com/platform/frameworks/base/+/85d7e6712a9eeeed3bdd68ea3c3862c7e88bfe70",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "core/java/android/hardware/usb/UsbConfiguration.java",
"function": "createFromParcel"
},
"signature_type": "Function"
}
],
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/85d7e6712a9eeeed3bdd68ea3c3862c7e88bfe70"
],
"spl": "2023-11-01",
"severity": "High",
"types": [
"EoP"
]
}
Android / platform/frameworks/base
Package
Ecosystem specific
{
"vanir_signatures": [
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"64032869180274739073190422895623655539",
"262484176442339311704902322087541112136",
"116613418940402835663978091473829914079",
"230443252710839433367481878379959720256"
]
},
"id": "ASB-A-291299076-2ba921b1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/60bfbde79f2ffb012abced55d358fdf6380c0bae",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "core/java/android/hardware/usb/UsbConfiguration.java"
},
"signature_type": "Line"
},
{
"digest": {
"length": 326.0,
"function_hash": "269662731154042863602055335981907143040"
},
"id": "ASB-A-291299076-d64521eb",
"source": "https://android.googlesource.com/platform/frameworks/base/+/60bfbde79f2ffb012abced55d358fdf6380c0bae",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "core/java/android/hardware/usb/UsbConfiguration.java",
"function": "createFromParcel"
},
"signature_type": "Function"
}
],
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/60bfbde79f2ffb012abced55d358fdf6380c0bae"
],
"spl": "2023-11-01",
"severity": "High",
"types": [
"EoP"
]
}
Android / platform/frameworks/base
Package
Ecosystem specific
{
"vanir_signatures": [
{
"digest": {
"length": 326.0,
"function_hash": "269662731154042863602055335981907143040"
},
"id": "ASB-A-291299076-999f3f39",
"source": "https://android.googlesource.com/platform/frameworks/base/+/0362efc06e5e3987270b452f6e2ee8fcd78e2b5a",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "core/java/android/hardware/usb/UsbConfiguration.java",
"function": "createFromParcel"
},
"signature_type": "Function"
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"64032869180274739073190422895623655539",
"262484176442339311704902322087541112136",
"116613418940402835663978091473829914079",
"230443252710839433367481878379959720256"
]
},
"id": "ASB-A-291299076-d45f92e5",
"source": "https://android.googlesource.com/platform/frameworks/base/+/0362efc06e5e3987270b452f6e2ee8fcd78e2b5a",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "core/java/android/hardware/usb/UsbConfiguration.java"
},
"signature_type": "Line"
}
],
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/0362efc06e5e3987270b452f6e2ee8fcd78e2b5a"
],
"spl": "2023-11-01",
"severity": "High",
"types": [
"EoP"
]
}
Android / platform/frameworks/base
Package
Ecosystem specific
{
"vanir_signatures": [
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"64032869180274739073190422895623655539",
"262484176442339311704902322087541112136",
"116613418940402835663978091473829914079",
"230443252710839433367481878379959720256"
]
},
"id": "ASB-A-291299076-7df7f1b8",
"source": "https://android.googlesource.com/platform/frameworks/base/+/7491a49b633e4eaa4f01d9b12ea4bce15b8dce00",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "core/java/android/hardware/usb/UsbConfiguration.java"
},
"signature_type": "Line"
},
{
"digest": {
"length": 326.0,
"function_hash": "269662731154042863602055335981907143040"
},
"id": "ASB-A-291299076-ee8a556b",
"source": "https://android.googlesource.com/platform/frameworks/base/+/7491a49b633e4eaa4f01d9b12ea4bce15b8dce00",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "core/java/android/hardware/usb/UsbConfiguration.java",
"function": "createFromParcel"
},
"signature_type": "Function"
}
],
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/7491a49b633e4eaa4f01d9b12ea4bce15b8dce00"
],
"spl": "2023-11-01",
"severity": "High",
"types": [
"EoP"
]
}
Android / platform/frameworks/base
Package
Ecosystem specific
{
"vanir_signatures": [
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"64032869180274739073190422895623655539",
"262484176442339311704902322087541112136",
"116613418940402835663978091473829914079",
"230443252710839433367481878379959720256"
]
},
"id": "ASB-A-291299076-ae658c1f",
"source": "https://android.googlesource.com/platform/frameworks/base/+/8c55c8ca3f3646ba15e5f4bda4e28f713860e3f0",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "core/java/android/hardware/usb/UsbConfiguration.java"
},
"signature_type": "Line"
},
{
"digest": {
"length": 326.0,
"function_hash": "269662731154042863602055335981907143040"
},
"id": "ASB-A-291299076-e9347b54",
"source": "https://android.googlesource.com/platform/frameworks/base/+/8c55c8ca3f3646ba15e5f4bda4e28f713860e3f0",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "core/java/android/hardware/usb/UsbConfiguration.java",
"function": "createFromParcel"
},
"signature_type": "Function"
}
],
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/8c55c8ca3f3646ba15e5f4bda4e28f713860e3f0"
],
"spl": "2023-11-01",
"severity": "High",
"types": [
"EoP"
]
}
Android / platform/frameworks/base
Package
Ecosystem specific
{
"vanir_signatures": [
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"64032869180274739073190422895623655539",
"262484176442339311704902322087541112136",
"116613418940402835663978091473829914079",
"230443252710839433367481878379959720256"
]
},
"id": "ASB-A-291299076-77133695",
"source": "https://android.googlesource.com/platform/frameworks/base/+/2c9931533cf8f85de9feb1db0b9ad38b8837f3b8",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "core/java/android/hardware/usb/UsbConfiguration.java"
},
"signature_type": "Line"
},
{
"digest": {
"length": 326.0,
"function_hash": "269662731154042863602055335981907143040"
},
"id": "ASB-A-291299076-cc103027",
"source": "https://android.googlesource.com/platform/frameworks/base/+/2c9931533cf8f85de9feb1db0b9ad38b8837f3b8",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "core/java/android/hardware/usb/UsbConfiguration.java",
"function": "createFromParcel"
},
"signature_type": "Function"
}
],
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/2c9931533cf8f85de9feb1db0b9ad38b8837f3b8"
],
"spl": "2023-11-01",
"severity": "High",
"types": [
"EoP"
]
}