ASB-A-294406604
See a problem?- Import Source
- https://storage.googleapis.com/android-osv/ASB-A-294406604.json
- JSON Data
- https://api.osv.dev/v1/vulns/ASB-A-294406604
- Aliases
-
- A-294406604
- CVE-2024-34721
- Published
- 2024-07-01T00:00:00Z
- Modified
- 2025-12-05T16:54:02.319431Z
- Summary
- [none]
- Details
-
In ensureFileColumns of MediaProvider.java, there is a possible disclosure of files owned by another user due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
- References
Affected packages
Android
platform/packages/providers/MediaProvider
Package
- Name
- platform/packages/providers/MediaProvider
Ecosystem specific
{
"spl": "2024-07-01",
"severity": "High",
"fixes": [
"https://android.googlesource.com/platform/packages/providers/MediaProvider/+/a296a6520bef303faedbe8b4489f36e0e2b09d16"
],
"types": [
"ID"
],
"vanir_signatures": [
{
"target": {
"file": "src/com/android/providers/media/MediaProvider.java"
},
"digest": {
"line_hashes": [
"57939264674174263502899728183470065665",
"156483739650783070040676283183882372427",
"43627227627199472868044543520274991244",
"165692613732677962069729788390091838178"
],
"threshold": 0.9
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/packages/providers/MediaProvider/+/a296a6520bef303faedbe8b4489f36e0e2b09d16",
"deprecated": false,
"id": "ASB-A-294406604-50d17e5d",
"signature_type": "Line"
},
{
"target": {
"function": "ensureFileColumns",
"file": "src/com/android/providers/media/MediaProvider.java"
},
"digest": {
"length": 9773.0,
"function_hash": "27241054463115702947468459533401732505"
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/packages/providers/MediaProvider/+/a296a6520bef303faedbe8b4489f36e0e2b09d16",
"deprecated": false,
"id": "ASB-A-294406604-83ab504b",
"signature_type": "Function"
}
]
}platform/packages/providers/MediaProvider
Package
- Name
- platform/packages/providers/MediaProvider
Ecosystem specific
{
"spl": "2024-07-01",
"severity": "High",
"fixes": [
"https://android.googlesource.com/platform/packages/providers/MediaProvider/+/df39f8486b25473d0bdbeed896ad917e3c793bf9"
],
"types": [
"ID"
],
"vanir_signatures": [
{
"target": {
"function": "ensureFileColumns",
"file": "src/com/android/providers/media/MediaProvider.java"
},
"digest": {
"length": 9340.0,
"function_hash": "237362771053526941016576314456550928596"
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/packages/providers/MediaProvider/+/df39f8486b25473d0bdbeed896ad917e3c793bf9",
"deprecated": false,
"id": "ASB-A-294406604-ccb8d240",
"signature_type": "Function"
},
{
"target": {
"file": "src/com/android/providers/media/MediaProvider.java"
},
"digest": {
"line_hashes": [
"57939264674174263502899728183470065665",
"156483739650783070040676283183882372427",
"43627227627199472868044543520274991244",
"165692613732677962069729788390091838178"
],
"threshold": 0.9
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/packages/providers/MediaProvider/+/df39f8486b25473d0bdbeed896ad917e3c793bf9",
"deprecated": false,
"id": "ASB-A-294406604-e2bc0314",
"signature_type": "Line"
}
]
}platform/packages/providers/MediaProvider
Package
- Name
- platform/packages/providers/MediaProvider
Ecosystem specific
{
"spl": "2024-07-01",
"severity": "High",
"fixes": [
"https://android.googlesource.com/platform/packages/providers/MediaProvider/+/df39f8486b25473d0bdbeed896ad917e3c793bf9"
],
"types": [
"ID"
],
"vanir_signatures": [
{
"target": {
"function": "ensureFileColumns",
"file": "src/com/android/providers/media/MediaProvider.java"
},
"digest": {
"length": 9340.0,
"function_hash": "237362771053526941016576314456550928596"
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/packages/providers/MediaProvider/+/df39f8486b25473d0bdbeed896ad917e3c793bf9",
"deprecated": false,
"id": "ASB-A-294406604-07c012ca",
"signature_type": "Function"
},
{
"target": {
"file": "src/com/android/providers/media/MediaProvider.java"
},
"digest": {
"line_hashes": [
"57939264674174263502899728183470065665",
"156483739650783070040676283183882372427",
"43627227627199472868044543520274991244",
"165692613732677962069729788390091838178"
],
"threshold": 0.9
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/packages/providers/MediaProvider/+/df39f8486b25473d0bdbeed896ad917e3c793bf9",
"deprecated": false,
"id": "ASB-A-294406604-c7bbc338",
"signature_type": "Line"
}
]
}platform/packages/providers/MediaProvider
Package
- Name
- platform/packages/providers/MediaProvider
Ecosystem specific
{
"spl": "2024-07-01",
"severity": "High",
"fixes": [
"https://android.googlesource.com/platform/packages/providers/MediaProvider/+/df39f8486b25473d0bdbeed896ad917e3c793bf9"
],
"types": [
"ID"
],
"vanir_signatures": [
{
"target": {
"file": "src/com/android/providers/media/MediaProvider.java"
},
"digest": {
"line_hashes": [
"57939264674174263502899728183470065665",
"156483739650783070040676283183882372427",
"43627227627199472868044543520274991244",
"165692613732677962069729788390091838178"
],
"threshold": 0.9
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/packages/providers/MediaProvider/+/df39f8486b25473d0bdbeed896ad917e3c793bf9",
"deprecated": false,
"id": "ASB-A-294406604-1cb6d073",
"signature_type": "Line"
},
{
"target": {
"function": "ensureFileColumns",
"file": "src/com/android/providers/media/MediaProvider.java"
},
"digest": {
"length": 9340.0,
"function_hash": "237362771053526941016576314456550928596"
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/packages/providers/MediaProvider/+/df39f8486b25473d0bdbeed896ad917e3c793bf9",
"deprecated": false,
"id": "ASB-A-294406604-e4dd6d28",
"signature_type": "Function"
}
]
}platform/packages/providers/MediaProvider
Package
- Name
- platform/packages/providers/MediaProvider
Ecosystem specific
{
"spl": "2024-07-01",
"severity": "High",
"fixes": [
"https://android.googlesource.com/platform/packages/providers/MediaProvider/+/df39f8486b25473d0bdbeed896ad917e3c793bf9"
],
"types": [
"ID"
],
"vanir_signatures": [
{
"target": {
"function": "ensureFileColumns",
"file": "src/com/android/providers/media/MediaProvider.java"
},
"digest": {
"length": 9340.0,
"function_hash": "237362771053526941016576314456550928596"
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/packages/providers/MediaProvider/+/df39f8486b25473d0bdbeed896ad917e3c793bf9",
"deprecated": false,
"id": "ASB-A-294406604-3c2c9d39",
"signature_type": "Function"
},
{
"target": {
"file": "src/com/android/providers/media/MediaProvider.java"
},
"digest": {
"line_hashes": [
"57939264674174263502899728183470065665",
"156483739650783070040676283183882372427",
"43627227627199472868044543520274991244",
"165692613732677962069729788390091838178"
],
"threshold": 0.9
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/packages/providers/MediaProvider/+/df39f8486b25473d0bdbeed896ad917e3c793bf9",
"deprecated": false,
"id": "ASB-A-294406604-ac6450ee",
"signature_type": "Line"
}
]
}