ASB-A-314333719

See a problem?

Import Source

https://storage.googleapis.com/android-osv/ASB-A-314333719.json

JSON Data

https://api.osv.dev/v1/vulns/ASB-A-314333719

Aliases

A-314333719
CVE-2024-31312

Published

2024-06-01T00:00:00Z

Modified

2024-08-07T19:29:48.193338Z

Summary

Disable show media on lock screen, but still accessible via pull down notificaion

Details

In multiple locations, there is a possible information leak due to a missing permission check. This could lead to local information disclosure exposing played media with no additional execution privileges needed. User interaction is not needed for exploitation.

References

Affected packages

Android / platform/frameworks/base

Package

Name: platform/frameworks/base

Affected ranges

Type: ECOSYSTEM
Events: Introduced

14-next:0

Fixed

14-next:2024-06-01

Affected versions

Other

14-next

Ecosystem specific

{
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/base/+/f837163596ca6fef691e1931223209002cf3d9d0"
    ],
    "spl": "2024-06-01",
    "severity": "High",
    "types": [
        "ID"
    ]
}

Android / platform/frameworks/base

Package

Name: platform/frameworks/base

Affected ranges

Type: ECOSYSTEM
Events: Introduced

12:0

Fixed

12:2024-06-01

Affected versions

Other

Ecosystem specific

{
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/base/+/0d533a9c5107d47d6259028f1371c9bba276bb40"
    ],
    "spl": "2024-06-01",
    "severity": "High",
    "types": [
        "ID"
    ]
}

Android / platform/frameworks/base

Package

Name: platform/frameworks/base

Affected ranges

Type: ECOSYSTEM
Events: Introduced

13:0

Fixed

13:2024-06-01

Affected versions

Other

Ecosystem specific

{
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/base/+/007313b88e830ab9f0a8119406a61c89ca412fb5"
    ],
    "spl": "2024-06-01",
    "severity": "High",
    "types": [
        "ID"
    ]
}

Android / platform/frameworks/base

Package

Name: platform/frameworks/base

Affected ranges

Type: ECOSYSTEM
Events: Introduced

14:0

Fixed

14:2024-06-01

Affected versions

Other

Ecosystem specific

{
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/base/+/a441f4acd62cce1059818ce8e9b7ab93b0079e50"
    ],
    "spl": "2024-06-01",
    "severity": "High",
    "types": [
        "ID"
    ]
}