ASB-A-304983146
See a problem?- Import Source
- https://storage.googleapis.com/android-osv/ASB-A-304983146.json
- JSON Data
- https://api.osv.dev/v1/vulns/ASB-A-304983146
- Aliases
-
- A-304983146
- CVE-2024-23712
- Published
- 2024-04-01T00:00:00Z
- Modified
- 2025-11-21T16:23:56.435667Z
- Summary
- [none]
- Details
-
In multiple functions of AppOpsService.java, there is a possible way to saturate the content of /data/system/appops_accesses.xml due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.
- References
Affected packages
Android
platform/frameworks/base
Package
- Name
- platform/frameworks/base
Ecosystem specific
{
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/ed1b87a33bcf66976b05b81090734da8dff9db3f"
],
"types": [
"DoS"
],
"vanir_signatures": [
{
"signature_type": "Function",
"deprecated": false,
"digest": {
"length": 3640.0,
"function_hash": "232623836874949948695404678354883149009"
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/ed1b87a33bcf66976b05b81090734da8dff9db3f",
"target": {
"file": "services/core/java/com/android/server/appop/AppOpsService.java",
"function": "startOperationUnchecked"
},
"id": "ASB-A-304983146-27fa040e"
},
{
"signature_type": "Function",
"deprecated": false,
"digest": {
"length": 4389.0,
"function_hash": "176438859952732613860997864078958374481"
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/ed1b87a33bcf66976b05b81090734da8dff9db3f",
"target": {
"file": "services/core/java/com/android/server/appop/AppOpsService.java",
"function": "noteOperationUnchecked"
},
"id": "ASB-A-304983146-498581fd"
},
{
"signature_type": "Line",
"deprecated": false,
"digest": {
"line_hashes": [
"151850781126740994677930449484281180108",
"313967075586109161413622405829105309856",
"239297483431522647029712245679000921313",
"162379999363402918127079425003222547653"
],
"threshold": 0.9
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/ed1b87a33bcf66976b05b81090734da8dff9db3f",
"target": {
"file": "core/java/com/android/internal/pm/pkg/component/ParsedAttributionImpl.java"
},
"id": "ASB-A-304983146-c35e9823"
},
{
"signature_type": "Line",
"deprecated": false,
"digest": {
"line_hashes": [
"203692094594859179449492540381006822053",
"159170551258476534224530007494247430158",
"196262562010751014984167937821109658377",
"271206429704211916869545183247942580876",
"201760475806120286497210186673097628914",
"15490112073715494497703134835590621815",
"140619413272547040732471719730789088389",
"313704556565786266323605999066013151554",
"152195472887382778895676848893377324796",
"53188427883807805721307024530733871198",
"224197903772886391777787802984484344913"
],
"threshold": 0.9
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/ed1b87a33bcf66976b05b81090734da8dff9db3f",
"target": {
"file": "services/core/java/com/android/server/appop/AppOpsService.java"
},
"id": "ASB-A-304983146-cd4e81b8"
}
],
"spl": "2024-04-01",
"severity": "High"
}platform/frameworks/base
Package
- Name
- platform/frameworks/base
Ecosystem specific
{
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/d9dc82face08025e6ccacb0ac6f7266fce5d2ea6"
],
"types": [
"DoS"
],
"vanir_signatures": [
{
"signature_type": "Function",
"deprecated": false,
"digest": {
"length": 3350.0,
"function_hash": "266035093366289547032032226468968911596"
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/d9dc82face08025e6ccacb0ac6f7266fce5d2ea6",
"target": {
"file": "services/core/java/com/android/server/appop/AppOpsService.java",
"function": "noteOperationUnchecked"
},
"id": "ASB-A-304983146-53a7fb0c"
},
{
"signature_type": "Function",
"deprecated": false,
"digest": {
"length": 3512.0,
"function_hash": "136499699954469916850633007007494441375"
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/d9dc82face08025e6ccacb0ac6f7266fce5d2ea6",
"target": {
"file": "services/core/java/com/android/server/appop/AppOpsService.java",
"function": "startOperationUnchecked"
},
"id": "ASB-A-304983146-5aa363d6"
},
{
"signature_type": "Line",
"deprecated": false,
"digest": {
"line_hashes": [
"223118865913059091932845217710602264970",
"159170551258476534224530007494247430158",
"196262562010751014984167937821109658377",
"271206429704211916869545183247942580876",
"184716246159821520227140514504186886326",
"15490112073715494497703134835590621815",
"140619413272547040732471719730789088389",
"313704556565786266323605999066013151554",
"197018539196923796303820716691024091926",
"67351175576118803245401050395131482810",
"163464232503255870359481573973298738403"
],
"threshold": 0.9
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/d9dc82face08025e6ccacb0ac6f7266fce5d2ea6",
"target": {
"file": "services/core/java/com/android/server/appop/AppOpsService.java"
},
"id": "ASB-A-304983146-7867ea59"
},
{
"signature_type": "Line",
"deprecated": false,
"digest": {
"line_hashes": [
"36555045155363176485225358241182252053",
"289642366243729790070500570013536702372",
"92790997805144870383668633938705281770",
"26908623660400596420149864300185620885"
],
"threshold": 0.9
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/d9dc82face08025e6ccacb0ac6f7266fce5d2ea6",
"target": {
"file": "core/java/android/content/pm/parsing/component/ParsedAttribution.java"
},
"id": "ASB-A-304983146-a6152d8d"
}
],
"spl": "2024-04-01",
"severity": "High"
}platform/frameworks/base
Package
- Name
- platform/frameworks/base
Ecosystem specific
{
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/6219cbabc1e6eaefc0e3eab1e10f0d986d3ed546"
],
"types": [
"DoS"
],
"vanir_signatures": [
{
"signature_type": "Function",
"deprecated": false,
"digest": {
"length": 3350.0,
"function_hash": "266035093366289547032032226468968911596"
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/6219cbabc1e6eaefc0e3eab1e10f0d986d3ed546",
"target": {
"file": "services/core/java/com/android/server/appop/AppOpsService.java",
"function": "noteOperationUnchecked"
},
"id": "ASB-A-304983146-460229c2"
},
{
"signature_type": "Function",
"deprecated": false,
"digest": {
"length": 3512.0,
"function_hash": "136499699954469916850633007007494441375"
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/6219cbabc1e6eaefc0e3eab1e10f0d986d3ed546",
"target": {
"file": "services/core/java/com/android/server/appop/AppOpsService.java",
"function": "startOperationUnchecked"
},
"id": "ASB-A-304983146-936b43a2"
},
{
"signature_type": "Line",
"deprecated": false,
"digest": {
"line_hashes": [
"223118865913059091932845217710602264970",
"159170551258476534224530007494247430158",
"196262562010751014984167937821109658377",
"271206429704211916869545183247942580876",
"184716246159821520227140514504186886326",
"15490112073715494497703134835590621815",
"140619413272547040732471719730789088389",
"313704556565786266323605999066013151554",
"197018539196923796303820716691024091926",
"67351175576118803245401050395131482810",
"163464232503255870359481573973298738403"
],
"threshold": 0.9
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/6219cbabc1e6eaefc0e3eab1e10f0d986d3ed546",
"target": {
"file": "services/core/java/com/android/server/appop/AppOpsService.java"
},
"id": "ASB-A-304983146-9cd4d6b9"
},
{
"signature_type": "Line",
"deprecated": false,
"digest": {
"line_hashes": [
"36555045155363176485225358241182252053",
"289642366243729790070500570013536702372",
"92790997805144870383668633938705281770",
"26908623660400596420149864300185620885"
],
"threshold": 0.9
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/6219cbabc1e6eaefc0e3eab1e10f0d986d3ed546",
"target": {
"file": "core/java/android/content/pm/parsing/component/ParsedAttribution.java"
},
"id": "ASB-A-304983146-a3f0c35f"
}
],
"spl": "2024-04-01",
"severity": "High"
}platform/frameworks/base
Package
- Name
- platform/frameworks/base
Ecosystem specific
{
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/63d122cf0e18ff6d8e77b7bcc8f0f3f8d4e4a018"
],
"types": [
"DoS"
],
"vanir_signatures": [
{
"signature_type": "Function",
"deprecated": false,
"digest": {
"length": 3350.0,
"function_hash": "266035093366289547032032226468968911596"
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/63d122cf0e18ff6d8e77b7bcc8f0f3f8d4e4a018",
"target": {
"file": "services/core/java/com/android/server/appop/AppOpsService.java",
"function": "noteOperationUnchecked"
},
"id": "ASB-A-304983146-1a018a35"
},
{
"signature_type": "Function",
"deprecated": false,
"digest": {
"length": 3512.0,
"function_hash": "136499699954469916850633007007494441375"
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/63d122cf0e18ff6d8e77b7bcc8f0f3f8d4e4a018",
"target": {
"file": "services/core/java/com/android/server/appop/AppOpsService.java",
"function": "startOperationUnchecked"
},
"id": "ASB-A-304983146-1d6743e1"
},
{
"signature_type": "Line",
"deprecated": false,
"digest": {
"line_hashes": [
"151850781126740994677930449484281180108",
"313967075586109161413622405829105309856",
"239297483431522647029712245679000921313",
"162379999363402918127079425003222547653"
],
"threshold": 0.9
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/63d122cf0e18ff6d8e77b7bcc8f0f3f8d4e4a018",
"target": {
"file": "services/core/java/com/android/server/pm/pkg/component/ParsedAttributionImpl.java"
},
"id": "ASB-A-304983146-a251d244"
},
{
"signature_type": "Line",
"deprecated": false,
"digest": {
"line_hashes": [
"223118865913059091932845217710602264970",
"159170551258476534224530007494247430158",
"196262562010751014984167937821109658377",
"271206429704211916869545183247942580876",
"184716246159821520227140514504186886326",
"15490112073715494497703134835590621815",
"140619413272547040732471719730789088389",
"313704556565786266323605999066013151554",
"197018539196923796303820716691024091926",
"67351175576118803245401050395131482810",
"163464232503255870359481573973298738403"
],
"threshold": 0.9
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/63d122cf0e18ff6d8e77b7bcc8f0f3f8d4e4a018",
"target": {
"file": "services/core/java/com/android/server/appop/AppOpsService.java"
},
"id": "ASB-A-304983146-bba2a6fb"
}
],
"spl": "2024-04-01",
"severity": "High"
}platform/frameworks/base
Package
- Name
- platform/frameworks/base
Ecosystem specific
{
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/2806d263c0b74da36d6d2bcc1583ea641266fd43"
],
"types": [
"DoS"
],
"vanir_signatures": [
{
"signature_type": "Function",
"deprecated": false,
"digest": {
"length": 3526.0,
"function_hash": "119770699092160446334754408352295300192"
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/2806d263c0b74da36d6d2bcc1583ea641266fd43",
"target": {
"file": "services/core/java/com/android/server/appop/AppOpsService.java",
"function": "noteOperationUnchecked"
},
"id": "ASB-A-304983146-6aa6a348"
},
{
"signature_type": "Line",
"deprecated": false,
"digest": {
"line_hashes": [
"203692094594859179449492540381006822053",
"159170551258476534224530007494247430158",
"196262562010751014984167937821109658377",
"271206429704211916869545183247942580876",
"203692094594859179449492540381006822053",
"15490112073715494497703134835590621815",
"140619413272547040732471719730789088389",
"313704556565786266323605999066013151554",
"197018539196923796303820716691024091926",
"67351175576118803245401050395131482810",
"163464232503255870359481573973298738403"
],
"threshold": 0.9
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/2806d263c0b74da36d6d2bcc1583ea641266fd43",
"target": {
"file": "services/core/java/com/android/server/appop/AppOpsService.java"
},
"id": "ASB-A-304983146-a79726de"
},
{
"signature_type": "Function",
"deprecated": false,
"digest": {
"length": 3689.0,
"function_hash": "151293384462048927526513931103293469442"
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/2806d263c0b74da36d6d2bcc1583ea641266fd43",
"target": {
"file": "services/core/java/com/android/server/appop/AppOpsService.java",
"function": "startOperationUnchecked"
},
"id": "ASB-A-304983146-c37702ea"
},
{
"signature_type": "Line",
"deprecated": false,
"digest": {
"line_hashes": [
"151850781126740994677930449484281180108",
"313967075586109161413622405829105309856",
"239297483431522647029712245679000921313",
"162379999363402918127079425003222547653"
],
"threshold": 0.9
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/2806d263c0b74da36d6d2bcc1583ea641266fd43",
"target": {
"file": "services/core/java/com/android/server/pm/pkg/component/ParsedAttributionImpl.java"
},
"id": "ASB-A-304983146-dab29ad9"
}
],
"spl": "2024-04-01",
"severity": "High"
}