ASB-A-292104015

See a problem?

Import Source

https://storage.googleapis.com/android-osv/ASB-A-292104015.json

JSON Data

https://api.osv.dev/v1/vulns/ASB-A-292104015

Aliases

CVE-2024-0037

Published

2024-02-01T00:00:00Z

Modified

2024-07-26T15:04:28Z

Summary

Dataset.mInlinePresentation` can contains cross user slice, which will lead to cross user image render

Details

In applyCustomDescription of SaveUi.java, there is a possible way to view images belonging to a different user due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.

References

Affected packages

Android / platform/frameworks/base

Package

Name: platform/frameworks/base

Affected ranges

Type: ECOSYSTEM
Events: Introduced

14-next:0

Fixed

14-next:2024-02-01

Affected versions

Other

14-next

Ecosystem specific

{
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/base/+/ed132ae5552fb7080e4c9f73ab32d42bccae7849"
    ],
    "spl": "2024-02-01",
    "types": [
        "ID"
    ],
    "severity": "High"
}

Android / platform/frameworks/base

Package

Name: platform/frameworks/base

Affected ranges

Type: ECOSYSTEM
Events: Introduced

11:0

Fixed

11:2024-02-01

Affected versions

Other

Ecosystem specific

{
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/base/+/91fb94942778c8907575a0eed674187dde854a5b"
    ],
    "spl": "2024-02-01",
    "types": [
        "ID"
    ],
    "severity": "High"
}

Android / platform/frameworks/base

Package

Name: platform/frameworks/base

Affected ranges

Type: ECOSYSTEM
Events: Introduced

12:0

Fixed

12:2024-02-01

Affected versions

Other

Ecosystem specific

{
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/base/+/36875556fca3a0e9715d1cbd6cebff8e5720b2a0"
    ],
    "spl": "2024-02-01",
    "types": [
        "ID"
    ],
    "severity": "High"
}

Android / platform/frameworks/base

Package

Name: platform/frameworks/base

Affected ranges

Type: ECOSYSTEM
Events: Introduced

12L:0

Fixed

12L:2024-02-01

Affected versions

Other

12L

Ecosystem specific

{
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/base/+/c5846894b27b4a1d8e7753611352844f31679158"
    ],
    "spl": "2024-02-01",
    "types": [
        "ID"
    ],
    "severity": "High"
}

Android / platform/frameworks/base

Package

Name: platform/frameworks/base

Affected ranges

Type: ECOSYSTEM
Events: Introduced

13:0

Fixed

13:2024-02-01

Affected versions

Other

Ecosystem specific

{
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/base/+/046cc236501e4f12bfc4a26948b5b6b76695afb9"
    ],
    "spl": "2024-02-01",
    "types": [
        "ID"
    ],
    "severity": "High"
}

Android / platform/frameworks/base

Package

Name: platform/frameworks/base

Affected ranges

Type: ECOSYSTEM
Events: Introduced

14:0

Fixed

14:2024-02-01

Affected versions

Other

Ecosystem specific

{
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/base/+/df893defcf8cc6e1e223111e79ad3daf0ec7cd8b"
    ],
    "spl": "2024-02-01",
    "types": [
        "ID"
    ],
    "severity": "High"
}