ASB-A-336490997
See a problem?- Import Source
- https://storage.googleapis.com/android-osv/ASB-A-336490997.json
- JSON Data
- https://api.osv.dev/v1/vulns/ASB-A-336490997
- Aliases
-
- A-336490997
- CVE-2024-34735
- Published
- 2024-08-01T00:00:00Z
- Modified
- 2024-11-06T16:45:39.809623Z
- Summary
- [none]
- Details
-
In multiple locations, there is a possible background activity launch due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
- References
Affected packages
Android / platform/frameworks/base
Package
Ecosystem specific
{
"vanir_signatures": [
{
"match_only_versions": [
"12"
],
"digest": {
"threshold": 0.9,
"line_hashes": [
"93299813471410581969135562935949905153",
"15472191267997321310275476709132526577",
"331422874673880489244790870663492104578",
"33723722171494134271822092619579944937"
]
},
"id": "ASB-A-336490997-1796cf58",
"source": "https://android.googlesource.com/platform/frameworks/base/+/8fdf4a345e140eba9b4e736d24ab95c67c55a247",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/print/java/com/android/server/print/RemotePrintService.java"
},
"signature_type": "Line"
},
{
"match_only_versions": [
"12"
],
"digest": {
"threshold": 0.9,
"line_hashes": [
"144008831271877775662079963192363386019",
"149565855102874764223428405739804773110",
"286166597539931852017663930028381477354",
"262188004735850955989416676751414883186"
]
},
"id": "ASB-A-336490997-29945343",
"source": "https://android.googlesource.com/platform/frameworks/base/+/8fdf4a345e140eba9b4e736d24ab95c67c55a247",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/core/java/com/android/server/media/MediaRoute2ProviderServiceProxy.java"
},
"signature_type": "Line"
},
{
"digest": {
"length": 3964.0,
"function_hash": "225525040755863857645690462741476020974"
},
"id": "ASB-A-336490997-33b75457",
"source": "https://android.googlesource.com/platform/frameworks/base/+/8fdf4a345e140eba9b4e736d24ab95c67c55a247",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "apex/jobscheduler/service/java/com/android/server/job/JobServiceContext.java",
"function": "executeRunnableJob"
},
"signature_type": "Function"
},
{
"match_only_versions": [
"12"
],
"digest": {
"threshold": 0.9,
"line_hashes": [
"259235494500818370210906025499202764482",
"34136816839363062996480202865251043571",
"696580132731913356371448635277988861",
"21853837409063633111980745404740668238"
]
},
"id": "ASB-A-336490997-4ad963f4",
"source": "https://android.googlesource.com/platform/frameworks/base/+/8fdf4a345e140eba9b4e736d24ab95c67c55a247",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/core/java/com/android/server/content/SyncManager.java"
},
"signature_type": "Line"
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"74455769762697750460255520584522158894",
"132646460571437456104781522575404255177",
"8905393033166037666809215070796674938",
"158161077941656787118329839392027690945"
]
},
"id": "ASB-A-336490997-62b99756",
"source": "https://android.googlesource.com/platform/frameworks/base/+/8fdf4a345e140eba9b4e736d24ab95c67c55a247",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/texttospeech/java/com/android/server/texttospeech/TextToSpeechManagerPerUserService.java"
},
"signature_type": "Line"
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"116626284343495268760957425476925002581",
"330980504914148740360309973183815087622",
"241767685514125665930956329372421081087",
"45926270977031310712186060351056412196",
"334425237711487289252441300952835309751",
"206724839735444028784137070382871675147",
"165827097755485229730906960766601865145",
"1449853733044119338181027052016044817"
]
},
"id": "ASB-A-336490997-6801a1f8",
"source": "https://android.googlesource.com/platform/frameworks/base/+/8fdf4a345e140eba9b4e736d24ab95c67c55a247",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "apex/jobscheduler/service/java/com/android/server/job/JobServiceContext.java"
},
"signature_type": "Line"
},
{
"match_only_versions": [
"12"
],
"digest": {
"threshold": 0.9,
"line_hashes": [
"24864871434105128454340282503419934828",
"121243039367796971847175383063378041363",
"314498299160822359260625223032540822833",
"257354329809624862529202622426370759138"
]
},
"id": "ASB-A-336490997-6a97dcf1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/8fdf4a345e140eba9b4e736d24ab95c67c55a247",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "core/java/android/speech/tts/TextToSpeech.java"
},
"signature_type": "Line"
},
{
"match_only_versions": [
"12"
],
"digest": {
"length": 551.0,
"function_hash": "248991916340014374648342699255386558168"
},
"id": "ASB-A-336490997-708d342a",
"source": "https://android.googlesource.com/platform/frameworks/base/+/8fdf4a345e140eba9b4e736d24ab95c67c55a247",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/core/java/com/android/server/media/MediaRoute2ProviderServiceProxy.java",
"function": "bind"
},
"signature_type": "Function"
},
{
"match_only_versions": [
"12"
],
"digest": {
"length": 583.0,
"function_hash": "284769961671316759783773943984793267599"
},
"id": "ASB-A-336490997-8b1ae50d",
"source": "https://android.googlesource.com/platform/frameworks/base/+/8fdf4a345e140eba9b4e736d24ab95c67c55a247",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/print/java/com/android/server/print/RemotePrintService.java",
"function": "ensureBound"
},
"signature_type": "Function"
},
{
"digest": {
"length": 389.0,
"function_hash": "8532100015852247629726694262108351871"
},
"id": "ASB-A-336490997-c5d1a13e",
"source": "https://android.googlesource.com/platform/frameworks/base/+/8fdf4a345e140eba9b4e736d24ab95c67c55a247",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/texttospeech/java/com/android/server/texttospeech/TextToSpeechManagerPerUserService.java",
"function": "TextToSpeechSessionConnection"
},
"signature_type": "Function"
},
{
"match_only_versions": [
"12"
],
"digest": {
"length": 197.0,
"function_hash": "178154694252623401895496722196873171179"
},
"id": "ASB-A-336490997-cef6bff5",
"source": "https://android.googlesource.com/platform/frameworks/base/+/8fdf4a345e140eba9b4e736d24ab95c67c55a247",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "core/java/android/speech/tts/TextToSpeech.java",
"function": "connect"
},
"signature_type": "Function"
}
],
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/8fdf4a345e140eba9b4e736d24ab95c67c55a247"
],
"spl": "2024-08-01",
"severity": "High",
"types": [
"EoP"
]
}
Android / platform/frameworks/base
Package
Ecosystem specific
{
"vanir_signatures": [
{
"match_only_versions": [
"12L"
],
"digest": {
"threshold": 0.9,
"line_hashes": [
"259235494500818370210906025499202764482",
"34136816839363062996480202865251043571",
"696580132731913356371448635277988861",
"21853837409063633111980745404740668238"
]
},
"id": "ASB-A-336490997-38d09d78",
"source": "https://android.googlesource.com/platform/frameworks/base/+/cd6b6687ab2bcccc542a524a8abca306cefad3d3",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/core/java/com/android/server/content/SyncManager.java"
},
"signature_type": "Line"
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"116626284343495268760957425476925002581",
"330980504914148740360309973183815087622",
"241767685514125665930956329372421081087",
"45926270977031310712186060351056412196",
"334425237711487289252441300952835309751",
"206724839735444028784137070382871675147",
"165827097755485229730906960766601865145",
"1449853733044119338181027052016044817"
]
},
"id": "ASB-A-336490997-4585554f",
"source": "https://android.googlesource.com/platform/frameworks/base/+/cd6b6687ab2bcccc542a524a8abca306cefad3d3",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "apex/jobscheduler/service/java/com/android/server/job/JobServiceContext.java"
},
"signature_type": "Line"
},
{
"match_only_versions": [
"12L"
],
"digest": {
"length": 583.0,
"function_hash": "284769961671316759783773943984793267599"
},
"id": "ASB-A-336490997-4d57c0dc",
"source": "https://android.googlesource.com/platform/frameworks/base/+/cd6b6687ab2bcccc542a524a8abca306cefad3d3",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/print/java/com/android/server/print/RemotePrintService.java",
"function": "ensureBound"
},
"signature_type": "Function"
},
{
"match_only_versions": [
"12L"
],
"digest": {
"length": 551.0,
"function_hash": "248991916340014374648342699255386558168"
},
"id": "ASB-A-336490997-517035a1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/cd6b6687ab2bcccc542a524a8abca306cefad3d3",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/core/java/com/android/server/media/MediaRoute2ProviderServiceProxy.java",
"function": "bind"
},
"signature_type": "Function"
},
{
"digest": {
"length": 3964.0,
"function_hash": "225525040755863857645690462741476020974"
},
"id": "ASB-A-336490997-54c78fa6",
"source": "https://android.googlesource.com/platform/frameworks/base/+/cd6b6687ab2bcccc542a524a8abca306cefad3d3",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "apex/jobscheduler/service/java/com/android/server/job/JobServiceContext.java",
"function": "executeRunnableJob"
},
"signature_type": "Function"
},
{
"match_only_versions": [
"12L"
],
"digest": {
"threshold": 0.9,
"line_hashes": [
"24864871434105128454340282503419934828",
"121243039367796971847175383063378041363",
"314498299160822359260625223032540822833",
"257354329809624862529202622426370759138"
]
},
"id": "ASB-A-336490997-661fe6bb",
"source": "https://android.googlesource.com/platform/frameworks/base/+/cd6b6687ab2bcccc542a524a8abca306cefad3d3",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "core/java/android/speech/tts/TextToSpeech.java"
},
"signature_type": "Line"
},
{
"match_only_versions": [
"12L"
],
"digest": {
"length": 197.0,
"function_hash": "178154694252623401895496722196873171179"
},
"id": "ASB-A-336490997-79ec70e3",
"source": "https://android.googlesource.com/platform/frameworks/base/+/cd6b6687ab2bcccc542a524a8abca306cefad3d3",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "core/java/android/speech/tts/TextToSpeech.java",
"function": "connect"
},
"signature_type": "Function"
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"74455769762697750460255520584522158894",
"132646460571437456104781522575404255177",
"8905393033166037666809215070796674938",
"158161077941656787118329839392027690945"
]
},
"id": "ASB-A-336490997-8b158435",
"source": "https://android.googlesource.com/platform/frameworks/base/+/cd6b6687ab2bcccc542a524a8abca306cefad3d3",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/texttospeech/java/com/android/server/texttospeech/TextToSpeechManagerPerUserService.java"
},
"signature_type": "Line"
},
{
"match_only_versions": [
"12L"
],
"digest": {
"threshold": 0.9,
"line_hashes": [
"93299813471410581969135562935949905153",
"15472191267997321310275476709132526577",
"331422874673880489244790870663492104578",
"33723722171494134271822092619579944937"
]
},
"id": "ASB-A-336490997-d0019ebc",
"source": "https://android.googlesource.com/platform/frameworks/base/+/cd6b6687ab2bcccc542a524a8abca306cefad3d3",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/print/java/com/android/server/print/RemotePrintService.java"
},
"signature_type": "Line"
},
{
"digest": {
"length": 389.0,
"function_hash": "8532100015852247629726694262108351871"
},
"id": "ASB-A-336490997-d3f8eb36",
"source": "https://android.googlesource.com/platform/frameworks/base/+/cd6b6687ab2bcccc542a524a8abca306cefad3d3",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/texttospeech/java/com/android/server/texttospeech/TextToSpeechManagerPerUserService.java",
"function": "TextToSpeechSessionConnection"
},
"signature_type": "Function"
},
{
"match_only_versions": [
"12L"
],
"digest": {
"threshold": 0.9,
"line_hashes": [
"144008831271877775662079963192363386019",
"149565855102874764223428405739804773110",
"286166597539931852017663930028381477354",
"262188004735850955989416676751414883186"
]
},
"id": "ASB-A-336490997-eef957a0",
"source": "https://android.googlesource.com/platform/frameworks/base/+/cd6b6687ab2bcccc542a524a8abca306cefad3d3",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/core/java/com/android/server/media/MediaRoute2ProviderServiceProxy.java"
},
"signature_type": "Line"
}
],
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/cd6b6687ab2bcccc542a524a8abca306cefad3d3"
],
"spl": "2024-08-01",
"severity": "High",
"types": [
"EoP"
]
}
Android / platform/frameworks/base
Package
Ecosystem specific
{
"vanir_signatures": [
{
"match_only_versions": [
"13"
],
"digest": {
"length": 197.0,
"function_hash": "178154694252623401895496722196873171179"
},
"id": "ASB-A-336490997-208363c1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/95b71ad87dc24cd7d3ad91172aa2a9e16c19fb82",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "core/java/android/speech/tts/TextToSpeech.java",
"function": "connect"
},
"signature_type": "Function"
},
{
"digest": {
"length": 389.0,
"function_hash": "8532100015852247629726694262108351871"
},
"id": "ASB-A-336490997-3d91c157",
"source": "https://android.googlesource.com/platform/frameworks/base/+/95b71ad87dc24cd7d3ad91172aa2a9e16c19fb82",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/texttospeech/java/com/android/server/texttospeech/TextToSpeechManagerPerUserService.java",
"function": "TextToSpeechSessionConnection"
},
"signature_type": "Function"
},
{
"match_only_versions": [
"13"
],
"digest": {
"length": 551.0,
"function_hash": "248991916340014374648342699255386558168"
},
"id": "ASB-A-336490997-5183b9f0",
"source": "https://android.googlesource.com/platform/frameworks/base/+/95b71ad87dc24cd7d3ad91172aa2a9e16c19fb82",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/core/java/com/android/server/media/MediaRoute2ProviderServiceProxy.java",
"function": "bind"
},
"signature_type": "Function"
},
{
"match_only_versions": [
"13"
],
"digest": {
"length": 583.0,
"function_hash": "284769961671316759783773943984793267599"
},
"id": "ASB-A-336490997-6d50c3a5",
"source": "https://android.googlesource.com/platform/frameworks/base/+/95b71ad87dc24cd7d3ad91172aa2a9e16c19fb82",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/print/java/com/android/server/print/RemotePrintService.java",
"function": "ensureBound"
},
"signature_type": "Function"
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"116626284343495268760957425476925002581",
"330980504914148740360309973183815087622",
"241767685514125665930956329372421081087",
"45926270977031310712186060351056412196",
"334425237711487289252441300952835309751",
"206724839735444028784137070382871675147",
"165827097755485229730906960766601865145",
"1449853733044119338181027052016044817"
]
},
"id": "ASB-A-336490997-87834177",
"source": "https://android.googlesource.com/platform/frameworks/base/+/95b71ad87dc24cd7d3ad91172aa2a9e16c19fb82",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "apex/jobscheduler/service/java/com/android/server/job/JobServiceContext.java"
},
"signature_type": "Line"
},
{
"match_only_versions": [
"13"
],
"digest": {
"threshold": 0.9,
"line_hashes": [
"259235494500818370210906025499202764482",
"34136816839363062996480202865251043571",
"696580132731913356371448635277988861",
"21853837409063633111980745404740668238"
]
},
"id": "ASB-A-336490997-9f407e00",
"source": "https://android.googlesource.com/platform/frameworks/base/+/95b71ad87dc24cd7d3ad91172aa2a9e16c19fb82",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/core/java/com/android/server/content/SyncManager.java"
},
"signature_type": "Line"
},
{
"match_only_versions": [
"13"
],
"digest": {
"threshold": 0.9,
"line_hashes": [
"144008831271877775662079963192363386019",
"149565855102874764223428405739804773110",
"286166597539931852017663930028381477354",
"262188004735850955989416676751414883186"
]
},
"id": "ASB-A-336490997-adb81d15",
"source": "https://android.googlesource.com/platform/frameworks/base/+/95b71ad87dc24cd7d3ad91172aa2a9e16c19fb82",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/core/java/com/android/server/media/MediaRoute2ProviderServiceProxy.java"
},
"signature_type": "Line"
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"74455769762697750460255520584522158894",
"132646460571437456104781522575404255177",
"8905393033166037666809215070796674938",
"158161077941656787118329839392027690945"
]
},
"id": "ASB-A-336490997-c468db21",
"source": "https://android.googlesource.com/platform/frameworks/base/+/95b71ad87dc24cd7d3ad91172aa2a9e16c19fb82",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/texttospeech/java/com/android/server/texttospeech/TextToSpeechManagerPerUserService.java"
},
"signature_type": "Line"
},
{
"digest": {
"length": 4517.0,
"function_hash": "219087430509146042353024614449936686070"
},
"id": "ASB-A-336490997-cdf51366",
"source": "https://android.googlesource.com/platform/frameworks/base/+/95b71ad87dc24cd7d3ad91172aa2a9e16c19fb82",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "apex/jobscheduler/service/java/com/android/server/job/JobServiceContext.java",
"function": "executeRunnableJob"
},
"signature_type": "Function"
},
{
"match_only_versions": [
"13"
],
"digest": {
"threshold": 0.9,
"line_hashes": [
"24864871434105128454340282503419934828",
"121243039367796971847175383063378041363",
"314498299160822359260625223032540822833",
"257354329809624862529202622426370759138"
]
},
"id": "ASB-A-336490997-d71db2d2",
"source": "https://android.googlesource.com/platform/frameworks/base/+/95b71ad87dc24cd7d3ad91172aa2a9e16c19fb82",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "core/java/android/speech/tts/TextToSpeech.java"
},
"signature_type": "Line"
},
{
"match_only_versions": [
"13"
],
"digest": {
"threshold": 0.9,
"line_hashes": [
"93299813471410581969135562935949905153",
"15472191267997321310275476709132526577",
"331422874673880489244790870663492104578",
"33723722171494134271822092619579944937"
]
},
"id": "ASB-A-336490997-e3df108e",
"source": "https://android.googlesource.com/platform/frameworks/base/+/95b71ad87dc24cd7d3ad91172aa2a9e16c19fb82",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/print/java/com/android/server/print/RemotePrintService.java"
},
"signature_type": "Line"
}
],
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/95b71ad87dc24cd7d3ad91172aa2a9e16c19fb82"
],
"spl": "2024-08-01",
"severity": "High",
"types": [
"EoP"
]
}