ASB-A-158304295

See a problem?
Import Source
https://storage.googleapis.com/android-osv/ASB-A-158304295.json
JSON Data
https://api.osv.dev/v1/vulns/ASB-A-158304295
Aliases
  • A-158304295
  • CVE-2020-0441
Published
2020-11-01T00:00:00Z
Modified
2024-08-07T19:30:12.179532Z
Summary
Buffer Overflow- Android 11 DP4
Details

In Message and toBundle of Notification.java, there is a possible resource exhaustion due to improper input validation. This could lead to remote denial of service requiring a device reset to fix with no additional execution privileges needed. User interaction is not needed for exploitation.

References

Affected packages

Android / platform/frameworks/base

Affected ranges

Type
ECOSYSTEM
Events
Introduced
8.0:0
Fixed
8.0:2020-11-01

Affected versions

8.*

8.0

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "25693081011143403965924570554327340062",
                    "145135667773462807188212350943050247915",
                    "103801210461441284299338172224434577144",
                    "268695753093872796919241450464110276483",
                    "46261083463634891044944826171838452135",
                    "176910514098118386474826865368856580128",
                    "98526589191053999908616954323828412117",
                    "128177431757207050536224790976428229825",
                    "319607130368601865965098141551601944972",
                    "107251892173742551941786143315072969027",
                    "275639386799706093579977400228926095134",
                    "310687014227499283566324898602218088852"
                ]
            },
            "id": "ASB-A-158304295-83080e64",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/aaf6b40e1746db6189f6078dcd28d8f153a4cc50",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "core/java/android/app/Notification.java"
            },
            "signature_type": "Line"
        },
        {
            "digest": {
                "length": 176.0,
                "function_hash": "884783211642599066431883859307243095"
            },
            "id": "ASB-A-158304295-abda6a7e",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/aaf6b40e1746db6189f6078dcd28d8f153a4cc50",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "core/java/android/app/Notification.java",
                "function": "Message"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 644.0,
                "function_hash": "222671025270688948635880737328659672300"
            },
            "id": "ASB-A-158304295-de453bc3",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/aaf6b40e1746db6189f6078dcd28d8f153a4cc50",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "core/java/android/app/Notification.java",
                "function": "toBundle"
            },
            "signature_type": "Function"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/base/+/aaf6b40e1746db6189f6078dcd28d8f153a4cc50"
    ],
    "spl": "2020-11-01",
    "severity": "Critical",
    "types": [
        "DoS"
    ]
}

Android / platform/frameworks/base

Affected ranges

Type
ECOSYSTEM
Events
Introduced
8.1:0
Fixed
8.1:2020-11-01

Affected versions

8.*

8.1

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 176.0,
                "function_hash": "884783211642599066431883859307243095"
            },
            "id": "ASB-A-158304295-5e729c48",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/aaf6b40e1746db6189f6078dcd28d8f153a4cc50",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "core/java/android/app/Notification.java",
                "function": "Message"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "25693081011143403965924570554327340062",
                    "145135667773462807188212350943050247915",
                    "103801210461441284299338172224434577144",
                    "268695753093872796919241450464110276483",
                    "46261083463634891044944826171838452135",
                    "176910514098118386474826865368856580128",
                    "98526589191053999908616954323828412117",
                    "128177431757207050536224790976428229825",
                    "319607130368601865965098141551601944972",
                    "107251892173742551941786143315072969027",
                    "275639386799706093579977400228926095134",
                    "310687014227499283566324898602218088852"
                ]
            },
            "id": "ASB-A-158304295-80d71e73",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/aaf6b40e1746db6189f6078dcd28d8f153a4cc50",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "core/java/android/app/Notification.java"
            },
            "signature_type": "Line"
        },
        {
            "digest": {
                "length": 644.0,
                "function_hash": "222671025270688948635880737328659672300"
            },
            "id": "ASB-A-158304295-8764fd05",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/aaf6b40e1746db6189f6078dcd28d8f153a4cc50",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "core/java/android/app/Notification.java",
                "function": "toBundle"
            },
            "signature_type": "Function"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/base/+/aaf6b40e1746db6189f6078dcd28d8f153a4cc50"
    ],
    "spl": "2020-11-01",
    "severity": "Critical",
    "types": [
        "DoS"
    ]
}

Android / platform/frameworks/base

Affected ranges

Type
ECOSYSTEM
Events
Introduced
9:0
Fixed
9:2020-11-01

Affected versions

Other

9

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 644.0,
                "function_hash": "222671025270688948635880737328659672300"
            },
            "id": "ASB-A-158304295-0386fb1e",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/aaf6b40e1746db6189f6078dcd28d8f153a4cc50",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "core/java/android/app/Notification.java",
                "function": "toBundle"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "25693081011143403965924570554327340062",
                    "145135667773462807188212350943050247915",
                    "103801210461441284299338172224434577144",
                    "268695753093872796919241450464110276483",
                    "46261083463634891044944826171838452135",
                    "176910514098118386474826865368856580128",
                    "98526589191053999908616954323828412117",
                    "128177431757207050536224790976428229825",
                    "319607130368601865965098141551601944972",
                    "107251892173742551941786143315072969027",
                    "275639386799706093579977400228926095134",
                    "310687014227499283566324898602218088852"
                ]
            },
            "id": "ASB-A-158304295-a0f6d199",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/aaf6b40e1746db6189f6078dcd28d8f153a4cc50",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "core/java/android/app/Notification.java"
            },
            "signature_type": "Line"
        },
        {
            "digest": {
                "length": 176.0,
                "function_hash": "884783211642599066431883859307243095"
            },
            "id": "ASB-A-158304295-a6a9cdbc",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/aaf6b40e1746db6189f6078dcd28d8f153a4cc50",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "core/java/android/app/Notification.java",
                "function": "Message"
            },
            "signature_type": "Function"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/base/+/aaf6b40e1746db6189f6078dcd28d8f153a4cc50"
    ],
    "spl": "2020-11-01",
    "severity": "Critical",
    "types": [
        "DoS"
    ]
}

Android / platform/frameworks/base

Affected ranges

Type
ECOSYSTEM
Events
Introduced
10:0
Fixed
10:2020-11-01

Affected versions

Other

10

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 176.0,
                "function_hash": "884783211642599066431883859307243095"
            },
            "id": "ASB-A-158304295-6b25a050",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/aaf6b40e1746db6189f6078dcd28d8f153a4cc50",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "core/java/android/app/Notification.java",
                "function": "Message"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 644.0,
                "function_hash": "222671025270688948635880737328659672300"
            },
            "id": "ASB-A-158304295-76791060",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/aaf6b40e1746db6189f6078dcd28d8f153a4cc50",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "core/java/android/app/Notification.java",
                "function": "toBundle"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "25693081011143403965924570554327340062",
                    "145135667773462807188212350943050247915",
                    "103801210461441284299338172224434577144",
                    "268695753093872796919241450464110276483",
                    "46261083463634891044944826171838452135",
                    "176910514098118386474826865368856580128",
                    "98526589191053999908616954323828412117",
                    "128177431757207050536224790976428229825",
                    "319607130368601865965098141551601944972",
                    "107251892173742551941786143315072969027",
                    "275639386799706093579977400228926095134",
                    "310687014227499283566324898602218088852"
                ]
            },
            "id": "ASB-A-158304295-e1f71c1b",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/aaf6b40e1746db6189f6078dcd28d8f153a4cc50",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "core/java/android/app/Notification.java"
            },
            "signature_type": "Line"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/base/+/aaf6b40e1746db6189f6078dcd28d8f153a4cc50"
    ],
    "spl": "2020-11-01",
    "severity": "Critical",
    "types": [
        "DoS"
    ]
}

Android / platform/frameworks/base

Affected ranges

Type
ECOSYSTEM
Events
Introduced
11:0
Fixed
11:2020-11-01

Affected versions

Other

11

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "25693081011143403965924570554327340062",
                    "145135667773462807188212350943050247915",
                    "103801210461441284299338172224434577144",
                    "268695753093872796919241450464110276483",
                    "46261083463634891044944826171838452135",
                    "176910514098118386474826865368856580128",
                    "98526589191053999908616954323828412117",
                    "128177431757207050536224790976428229825",
                    "319607130368601865965098141551601944972",
                    "107251892173742551941786143315072969027",
                    "275639386799706093579977400228926095134",
                    "310687014227499283566324898602218088852"
                ]
            },
            "id": "ASB-A-158304295-4dc9cb0c",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/aaf6b40e1746db6189f6078dcd28d8f153a4cc50",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "core/java/android/app/Notification.java"
            },
            "signature_type": "Line"
        },
        {
            "digest": {
                "length": 644.0,
                "function_hash": "222671025270688948635880737328659672300"
            },
            "id": "ASB-A-158304295-d53f1b12",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/aaf6b40e1746db6189f6078dcd28d8f153a4cc50",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "core/java/android/app/Notification.java",
                "function": "toBundle"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 176.0,
                "function_hash": "884783211642599066431883859307243095"
            },
            "id": "ASB-A-158304295-eedeaab0",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/aaf6b40e1746db6189f6078dcd28d8f153a4cc50",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "core/java/android/app/Notification.java",
                "function": "Message"
            },
            "signature_type": "Function"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/base/+/aaf6b40e1746db6189f6078dcd28d8f153a4cc50"
    ],
    "spl": "2020-11-01",
    "severity": "Critical",
    "types": [
        "DoS"
    ]
}