ASB-A-340239088
See a problem?- Import Source
- https://storage.googleapis.com/android-osv/ASB-A-340239088.json
- JSON Data
- https://api.osv.dev/v1/vulns/ASB-A-340239088
- Aliases
-
- A-340239088
- CVE-2024-43762
- Published
- 2024-12-01T00:00:00Z
- Modified
- 2025-07-14T14:59:53.514521Z
- Summary
- [none]
- Details
-
In multiple locations, there is a possible way to avoid unbinding of a service from the system due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
- References
Affected packages
Android / platform/frameworks/base
Package
Ecosystem specific
{
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/be09d5f691d696ff65428ae99cdcce0d5716277b"
],
"vanir_signatures": [
{
"id": "ASB-A-340239088-14facee7",
"deprecated": false,
"match_only_versions": [
"15-next"
],
"digest": {
"length": 749.0,
"function_hash": "187976317115741972041614714852673292330"
},
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/frameworks/base/+/be09d5f691d696ff65428ae99cdcce0d5716277b",
"target": {
"file": "services/appwidget/java/com/android/server/appwidget/AppWidgetServiceImpl.java",
"function": "destroyRemoteViewsService"
},
"signature_version": "v1"
},
{
"id": "ASB-A-340239088-2a39374c",
"deprecated": false,
"match_only_versions": [
"15-next"
],
"digest": {
"length": 1164.0,
"function_hash": "193368994612042262801535992872175319624"
},
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/frameworks/base/+/be09d5f691d696ff65428ae99cdcce0d5716277b",
"target": {
"file": "services/appwidget/java/com/android/server/appwidget/AppWidgetServiceImpl.java",
"function": "handleNotifyAppWidgetViewDataChanged"
},
"signature_version": "v1"
},
{
"signature_type": "Line",
"id": "ASB-A-340239088-47229894",
"deprecated": false,
"digest": {
"threshold": 0.9,
"line_hashes": [
"7069594906836443799328008215139496556",
"60083135384786895742289565923807103482",
"286689668320254275062871083514750716930",
"303591431841220232289249463434173338719",
"7069594906836443799328008215139496556",
"78559963298070788380387444292587698073",
"185648889765992682205775152283128960783",
"54659345105254736444109406851216541625"
]
},
"target": {
"file": "services/appwidget/java/com/android/server/appwidget/AppWidgetServiceImpl.java"
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/be09d5f691d696ff65428ae99cdcce0d5716277b"
},
{
"id": "ASB-A-340239088-8c834e0b",
"deprecated": false,
"match_only_versions": [
"15-next"
],
"digest": {
"threshold": 0.9,
"line_hashes": [
"181586260119407969811009303570148090312",
"140775188422301813884291759520314600283",
"65163401316593162753490687618165475323",
"153452361385973064177765830916108503899"
]
},
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/frameworks/base/+/be09d5f691d696ff65428ae99cdcce0d5716277b",
"target": {
"file": "core/java/android/widget/RemoteViewsAdapter.java"
},
"signature_version": "v1"
},
{
"signature_type": "Function",
"id": "ASB-A-340239088-ba9d90d2",
"deprecated": false,
"digest": {
"length": 1335.0,
"function_hash": "53137925773621297524971111119350539002"
},
"target": {
"file": "core/java/android/widget/RemoteViews.java",
"function": "getItemsFutureFromIntentWithTimeout"
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/be09d5f691d696ff65428ae99cdcce0d5716277b"
},
{
"id": "ASB-A-340239088-be8cfd9d",
"deprecated": false,
"match_only_versions": [
"15-next"
],
"digest": {
"threshold": 0.9,
"line_hashes": [
"149284845035460036026303672698645465529",
"47798743927130668379148329255077987489",
"194483828025428132986429193010061122655",
"313817256377292409827427296624721437259"
]
},
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/frameworks/base/+/be09d5f691d696ff65428ae99cdcce0d5716277b",
"target": {
"file": "core/java/android/widget/RemoteViews.java"
},
"signature_version": "v1"
}
],
"severity": "High",
"types": [
"EoP"
],
"spl": "2024-12-01"
}
Android / platform/frameworks/base
Package
Ecosystem specific
{
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/13e092573bce88580a2ddf4c289afa646f839cfa"
],
"vanir_signatures": [
{
"signature_type": "Function",
"id": "ASB-A-340239088-04fdf0a0",
"deprecated": false,
"digest": {
"length": 1092.0,
"function_hash": "198575482785739048065369166543301105808"
},
"target": {
"file": "services/appwidget/java/com/android/server/appwidget/AppWidgetServiceImpl.java",
"function": "handleNotifyAppWidgetViewDataChanged"
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/13e092573bce88580a2ddf4c289afa646f839cfa"
},
{
"signature_type": "Line",
"id": "ASB-A-340239088-1df893eb",
"deprecated": false,
"digest": {
"threshold": 0.9,
"line_hashes": [
"7069594906836443799328008215139496556",
"60083135384786895742289565923807103482",
"286689668320254275062871083514750716930",
"303591431841220232289249463434173338719",
"7069594906836443799328008215139496556",
"78559963298070788380387444292587698073",
"185648889765992682205775152283128960783",
"54659345105254736444109406851216541625"
]
},
"target": {
"file": "services/appwidget/java/com/android/server/appwidget/AppWidgetServiceImpl.java"
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/13e092573bce88580a2ddf4c289afa646f839cfa"
},
{
"id": "ASB-A-340239088-7f60444c",
"deprecated": false,
"match_only_versions": [
"12"
],
"digest": {
"length": 749.0,
"function_hash": "187976317115741972041614714852673292330"
},
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/frameworks/base/+/13e092573bce88580a2ddf4c289afa646f839cfa",
"target": {
"file": "services/appwidget/java/com/android/server/appwidget/AppWidgetServiceImpl.java",
"function": "destroyRemoteViewsService"
},
"signature_version": "v1"
},
{
"id": "ASB-A-340239088-8a94468d",
"deprecated": false,
"match_only_versions": [
"12"
],
"digest": {
"threshold": 0.9,
"line_hashes": [
"181586260119407969811009303570148090312",
"140775188422301813884291759520314600283",
"65163401316593162753490687618165475323",
"153452361385973064177765830916108503899"
]
},
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/frameworks/base/+/13e092573bce88580a2ddf4c289afa646f839cfa",
"target": {
"file": "core/java/android/widget/RemoteViewsAdapter.java"
},
"signature_version": "v1"
}
],
"severity": "High",
"types": [
"EoP"
],
"spl": "2024-12-01"
}
Android / platform/frameworks/base
Package
Ecosystem specific
{
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/13e092573bce88580a2ddf4c289afa646f839cfa"
],
"vanir_signatures": [
{
"signature_type": "Function",
"id": "ASB-A-340239088-4d727b51",
"deprecated": false,
"digest": {
"length": 1092.0,
"function_hash": "198575482785739048065369166543301105808"
},
"target": {
"file": "services/appwidget/java/com/android/server/appwidget/AppWidgetServiceImpl.java",
"function": "handleNotifyAppWidgetViewDataChanged"
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/13e092573bce88580a2ddf4c289afa646f839cfa"
},
{
"id": "ASB-A-340239088-a70f001c",
"deprecated": false,
"match_only_versions": [
"12L"
],
"digest": {
"length": 749.0,
"function_hash": "187976317115741972041614714852673292330"
},
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/frameworks/base/+/13e092573bce88580a2ddf4c289afa646f839cfa",
"target": {
"file": "services/appwidget/java/com/android/server/appwidget/AppWidgetServiceImpl.java",
"function": "destroyRemoteViewsService"
},
"signature_version": "v1"
},
{
"id": "ASB-A-340239088-a8f2dcd6",
"deprecated": false,
"match_only_versions": [
"12L"
],
"digest": {
"threshold": 0.9,
"line_hashes": [
"181586260119407969811009303570148090312",
"140775188422301813884291759520314600283",
"65163401316593162753490687618165475323",
"153452361385973064177765830916108503899"
]
},
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/frameworks/base/+/13e092573bce88580a2ddf4c289afa646f839cfa",
"target": {
"file": "core/java/android/widget/RemoteViewsAdapter.java"
},
"signature_version": "v1"
},
{
"signature_type": "Line",
"id": "ASB-A-340239088-fe0d7285",
"deprecated": false,
"digest": {
"threshold": 0.9,
"line_hashes": [
"7069594906836443799328008215139496556",
"60083135384786895742289565923807103482",
"286689668320254275062871083514750716930",
"303591431841220232289249463434173338719",
"7069594906836443799328008215139496556",
"78559963298070788380387444292587698073",
"185648889765992682205775152283128960783",
"54659345105254736444109406851216541625"
]
},
"target": {
"file": "services/appwidget/java/com/android/server/appwidget/AppWidgetServiceImpl.java"
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/13e092573bce88580a2ddf4c289afa646f839cfa"
}
],
"severity": "High",
"types": [
"EoP"
],
"spl": "2024-12-01"
}
Android / platform/frameworks/base
Package
Ecosystem specific
{
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/13e092573bce88580a2ddf4c289afa646f839cfa"
],
"vanir_signatures": [
{
"id": "ASB-A-340239088-2f4526a9",
"deprecated": false,
"match_only_versions": [
"13"
],
"digest": {
"length": 749.0,
"function_hash": "187976317115741972041614714852673292330"
},
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/frameworks/base/+/13e092573bce88580a2ddf4c289afa646f839cfa",
"target": {
"file": "services/appwidget/java/com/android/server/appwidget/AppWidgetServiceImpl.java",
"function": "destroyRemoteViewsService"
},
"signature_version": "v1"
},
{
"id": "ASB-A-340239088-abf0264a",
"deprecated": false,
"match_only_versions": [
"13"
],
"digest": {
"threshold": 0.9,
"line_hashes": [
"181586260119407969811009303570148090312",
"140775188422301813884291759520314600283",
"65163401316593162753490687618165475323",
"153452361385973064177765830916108503899"
]
},
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/frameworks/base/+/13e092573bce88580a2ddf4c289afa646f839cfa",
"target": {
"file": "core/java/android/widget/RemoteViewsAdapter.java"
},
"signature_version": "v1"
},
{
"signature_type": "Line",
"id": "ASB-A-340239088-f47e5423",
"deprecated": false,
"digest": {
"threshold": 0.9,
"line_hashes": [
"7069594906836443799328008215139496556",
"60083135384786895742289565923807103482",
"286689668320254275062871083514750716930",
"303591431841220232289249463434173338719",
"7069594906836443799328008215139496556",
"78559963298070788380387444292587698073",
"185648889765992682205775152283128960783",
"54659345105254736444109406851216541625"
]
},
"target": {
"file": "services/appwidget/java/com/android/server/appwidget/AppWidgetServiceImpl.java"
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/13e092573bce88580a2ddf4c289afa646f839cfa"
},
{
"signature_type": "Function",
"id": "ASB-A-340239088-f585fad9",
"deprecated": false,
"digest": {
"length": 1092.0,
"function_hash": "198575482785739048065369166543301105808"
},
"target": {
"file": "services/appwidget/java/com/android/server/appwidget/AppWidgetServiceImpl.java",
"function": "handleNotifyAppWidgetViewDataChanged"
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/13e092573bce88580a2ddf4c289afa646f839cfa"
}
],
"severity": "High",
"types": [
"EoP"
],
"spl": "2024-12-01"
}
Android / platform/frameworks/base
Package
Ecosystem specific
{
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/13e092573bce88580a2ddf4c289afa646f839cfa"
],
"vanir_signatures": [
{
"signature_type": "Line",
"id": "ASB-A-340239088-9b33c48e",
"deprecated": false,
"digest": {
"threshold": 0.9,
"line_hashes": [
"7069594906836443799328008215139496556",
"60083135384786895742289565923807103482",
"286689668320254275062871083514750716930",
"303591431841220232289249463434173338719",
"7069594906836443799328008215139496556",
"78559963298070788380387444292587698073",
"185648889765992682205775152283128960783",
"54659345105254736444109406851216541625"
]
},
"target": {
"file": "services/appwidget/java/com/android/server/appwidget/AppWidgetServiceImpl.java"
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/13e092573bce88580a2ddf4c289afa646f839cfa"
},
{
"id": "ASB-A-340239088-d840337f",
"deprecated": false,
"match_only_versions": [
"14"
],
"digest": {
"length": 749.0,
"function_hash": "187976317115741972041614714852673292330"
},
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/frameworks/base/+/13e092573bce88580a2ddf4c289afa646f839cfa",
"target": {
"file": "services/appwidget/java/com/android/server/appwidget/AppWidgetServiceImpl.java",
"function": "destroyRemoteViewsService"
},
"signature_version": "v1"
},
{
"signature_type": "Function",
"id": "ASB-A-340239088-d89ed705",
"deprecated": false,
"digest": {
"length": 1092.0,
"function_hash": "198575482785739048065369166543301105808"
},
"target": {
"file": "services/appwidget/java/com/android/server/appwidget/AppWidgetServiceImpl.java",
"function": "handleNotifyAppWidgetViewDataChanged"
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/13e092573bce88580a2ddf4c289afa646f839cfa"
},
{
"id": "ASB-A-340239088-e7af8ba1",
"deprecated": false,
"match_only_versions": [
"14"
],
"digest": {
"threshold": 0.9,
"line_hashes": [
"181586260119407969811009303570148090312",
"140775188422301813884291759520314600283",
"65163401316593162753490687618165475323",
"153452361385973064177765830916108503899"
]
},
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/frameworks/base/+/13e092573bce88580a2ddf4c289afa646f839cfa",
"target": {
"file": "core/java/android/widget/RemoteViewsAdapter.java"
},
"signature_version": "v1"
}
],
"severity": "High",
"types": [
"EoP"
],
"spl": "2024-12-01"
}