PUB-A-259942964

See a problem?

Import Source

https://storage.googleapis.com/android-osv/PUB-A-259942964.json

JSON Data

https://api.osv.dev/v1/vulns/PUB-A-259942964

Aliases

A-259942964
CVE-2023-21167

Published

2023-06-01T00:00:00Z

Modified

2024-11-06T12:16:03.231308Z

Summary

[none]

Details

In setProfileName of DevicePolicyManagerService.java, there is a possible way to crash the SystemUI menu due to a missing bounds check. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.

References

https://source.android.com/security/bulletin/2023-06-01

Affected packages

Android / platform/frameworks/base

Package

Name: platform/frameworks/base

Affected ranges

Type: ECOSYSTEM
Events: Introduced

13-next:0

Fixed

13-next:2023-06-01

Affected versions

Other

13-next

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "261632806508549377328375700223001763684",
                    "72071718042071190986683616560344911631",
                    "249579893198889923221703755640549339828",
                    "32977824350968205327085866770411269575",
                    "207985399631430165261605392140189796283",
                    "302998431240077100762269125275940416996",
                    "40645136330168600440795433057896396955",
                    "112184475321408415755340114980368957769"
                ]
            },
            "id": "PUB-A-259942964-aa9e8bc1",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/189b1157bd751e9fa01e4084c91f703c8f4af642",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/devicepolicy/java/com/android/server/devicepolicy/DevicePolicyManagerService.java"
            },
            "signature_type": "Line"
        },
        {
            "match_only_versions": [
                "13-next"
            ],
            "digest": {
                "length": 434.0,
                "function_hash": "336160652653341782677047496187658732973"
            },
            "id": "PUB-A-259942964-f1f1232a",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/189b1157bd751e9fa01e4084c91f703c8f4af642",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/devicepolicy/java/com/android/server/devicepolicy/DevicePolicyManagerService.java",
                "function": "setProfileName"
            },
            "signature_type": "Function"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/base/+/189b1157bd751e9fa01e4084c91f703c8f4af642"
    ],
    "spl": "2023-06-01",
    "severity": "Moderate",
    "types": [
        "DoS"
    ]
}