ASB-A-214999128

See a problem?
Import Source
https://storage.googleapis.com/android-osv/ASB-A-214999128.json
JSON Data
https://api.osv.dev/v1/vulns/ASB-A-214999128
Aliases
Published
2022-05-01T00:00:00Z
Modified
2024-08-07T19:29:20.632532Z
Summary
Notification logs widget in secondary users leaks information from System user
Details

In getArray of NotificationManagerService.java , there is a possible leak of one user notifications to another due to missing check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

References

Affected packages

Android / platform/frameworks/base

Affected ranges

Type
ECOSYSTEM
Events
Introduced
10:0
Fixed
10:2022-05-01

Affected versions

Other

10

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 617.0,
                "function_hash": "5576147616245798028290753523148216043"
            },
            "id": "ASB-A-214999128-28247535",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/4d7ca1dbce749f1173d16565170ebdd6e245ae63",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/notification/NotificationManagerService.java",
                "function": "getActiveNotifications"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 447.0,
                "function_hash": "337059452558535818487949866365744759521"
            },
            "id": "ASB-A-214999128-71c115d6",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/4d7ca1dbce749f1173d16565170ebdd6e245ae63",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/notification/NotificationManagerService.java",
                "function": "getHistoricalNotifications"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 304.0,
                "function_hash": "33550566231985974606608988598251608967"
            },
            "id": "ASB-A-214999128-9f9a76d5",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/4d7ca1dbce749f1173d16565170ebdd6e245ae63",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/notification/NotificationManagerService.java",
                "function": "getArray"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "89802756826527752186231236559337104131",
                    "54712167281364174391135221191829638203",
                    "160250735140821969123806772046756500570",
                    "33931018317484714053788753041353007966",
                    "128604056841629402642971558401286818927",
                    "208121011956302951476338616463522488375",
                    "47993350765422771349095975704915903081",
                    "193433927129019870292859499932983549813",
                    "87416505255534492918230191864828794692",
                    "168382589096759835833283264080013760394",
                    "19429484114993415817247113768827756600",
                    "178964807328585247959720715480153164240",
                    "309916782040618615105230020349554488422",
                    "129962769248817248947645409832431715476",
                    "263514762465954545980338062825674711213",
                    "112604920081966199418841332133960801794",
                    "67948586390874344639411665614002085871",
                    "115931285603705936524452585263399082878",
                    "124155838974678951414435831198431951330",
                    "282606003912950375579422330448378967024",
                    "1254387639363073282008605367746853124",
                    "284713001209278423728298830400512599269",
                    "221952035893781860076367553165274077870",
                    "176569094319295256441304739173092236244",
                    "93587772191897371265243104626513271420",
                    "166727590916906091164997515817718572031",
                    "261904835102952928741557428448584060733",
                    "215744176769276734263448881310269376524",
                    "129322343890982347043460206790397362334",
                    "226423595600285452507176322861227820992",
                    "209663056388775783189711708386302175327",
                    "291454568411361342671666029102282678053",
                    "306182311028647845490708757096609202926"
                ]
            },
            "id": "ASB-A-214999128-f04da038",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/4d7ca1dbce749f1173d16565170ebdd6e245ae63",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/notification/NotificationManagerService.java"
            },
            "signature_type": "Line"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/base/+/4d7ca1dbce749f1173d16565170ebdd6e245ae63"
    ],
    "spl": "2022-05-01",
    "severity": "High",
    "types": [
        "ID"
    ]
}

Android / platform/frameworks/base

Affected ranges

Type
ECOSYSTEM
Events
Introduced
11:0
Fixed
11:2022-05-01

Affected versions

Other

11

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 400.0,
                "function_hash": "19163314237855095679168568003243748583"
            },
            "id": "ASB-A-214999128-1b566634",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/3456555b7cfa84752b4dfa75191b7e87dc95b156",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/notification/NotificationManagerService.java",
                "function": "getArray"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 655.0,
                "function_hash": "66353488490374514645938377430228215797"
            },
            "id": "ASB-A-214999128-4195bfc9",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/3456555b7cfa84752b4dfa75191b7e87dc95b156",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/notification/NotificationManagerService.java",
                "function": "getActiveNotificationsWithAttribution"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 498.0,
                "function_hash": "287974410692506679163468447209060617901"
            },
            "id": "ASB-A-214999128-6d61083a",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/3456555b7cfa84752b4dfa75191b7e87dc95b156",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/notification/NotificationManagerService.java",
                "function": "getHistoricalNotificationsWithAttribution"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "7795108444204943895555208609527831195",
                    "184400572362232452487440662476744104057",
                    "191184333096081229836119707804609949493",
                    "202497799807931936140586807917798599782",
                    "305521104071857919971152045986403556856",
                    "131136301117910212149001854550168822130",
                    "272616224067483625672500930704123290608",
                    "92359410804400336527722411143534610684",
                    "143195086786709993768297741537210449573",
                    "129962769248817248947645409832431715476",
                    "263514762465954545980338062825674711213",
                    "228191677110595434517808047918301695979",
                    "171369716841734608035107434557143664510",
                    "271839230585599739426755774227671805808",
                    "95355871738199944413081176368544642818",
                    "274894795319906657426411700022106698484",
                    "282606003912950375579422330448378967024",
                    "1254387639363073282008605367746853124",
                    "59533016764467213104309625175692333358",
                    "75362866833142067695521557429286574877",
                    "147643794718440317298444509708574765570",
                    "339241346372413132124652410848837196228",
                    "166727590916906091164997515817718572031",
                    "261904835102952928741557428448584060733",
                    "215744176769276734263448881310269376524",
                    "129322343890982347043460206790397362334",
                    "37178189641777687779919097299463425852",
                    "176457846297682203422831922544787023785",
                    "324346366488839279161311680786431153065",
                    "167658503223529510377816877712966183665"
                ]
            },
            "id": "ASB-A-214999128-f4c598fe",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/3456555b7cfa84752b4dfa75191b7e87dc95b156",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/notification/NotificationManagerService.java"
            },
            "signature_type": "Line"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/base/+/3456555b7cfa84752b4dfa75191b7e87dc95b156"
    ],
    "spl": "2022-05-01",
    "severity": "High",
    "types": [
        "ID"
    ]
}

Android / platform/frameworks/base

Affected ranges

Type
ECOSYSTEM
Events
Introduced
12:0
Fixed
12:2022-05-01

Affected versions

Other

12

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "7795108444204943895555208609527831195",
                    "92602448250662577012131015959923826056",
                    "163369047065228479520839194803024713603",
                    "77899740008544677145876856444782606991",
                    "305521104071857919971152045986403556856",
                    "131136301117910212149001854550168822130",
                    "272616224067483625672500930704123290608",
                    "92359410804400336527722411143534610684",
                    "143195086786709993768297741537210449573",
                    "129962769248817248947645409832431715476",
                    "263514762465954545980338062825674711213",
                    "228191677110595434517808047918301695979",
                    "171369716841734608035107434557143664510",
                    "271839230585599739426755774227671805808",
                    "95355871738199944413081176368544642818",
                    "274894795319906657426411700022106698484",
                    "282606003912950375579422330448378967024",
                    "1254387639363073282008605367746853124",
                    "59533016764467213104309625175692333358",
                    "75362866833142067695521557429286574877",
                    "147643794718440317298444509708574765570",
                    "339241346372413132124652410848837196228",
                    "166727590916906091164997515817718572031",
                    "261904835102952928741557428448584060733",
                    "215744176769276734263448881310269376524",
                    "129322343890982347043460206790397362334",
                    "37178189641777687779919097299463425852",
                    "176457846297682203422831922544787023785",
                    "324346366488839279161311680786431153065",
                    "167658503223529510377816877712966183665"
                ]
            },
            "id": "ASB-A-214999128-53c68b8f",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/40ca868ca5e394f9c6eb97a425dfc5899322c979",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/notification/NotificationManagerService.java"
            },
            "signature_type": "Line"
        },
        {
            "digest": {
                "length": 498.0,
                "function_hash": "287974410692506679163468447209060617901"
            },
            "id": "ASB-A-214999128-6e027ae7",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/40ca868ca5e394f9c6eb97a425dfc5899322c979",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/notification/NotificationManagerService.java",
                "function": "getHistoricalNotificationsWithAttribution"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 655.0,
                "function_hash": "66353488490374514645938377430228215797"
            },
            "id": "ASB-A-214999128-88a70acb",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/40ca868ca5e394f9c6eb97a425dfc5899322c979",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/notification/NotificationManagerService.java",
                "function": "getActiveNotificationsWithAttribution"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 433.0,
                "function_hash": "3143462519608280030167065824291902405"
            },
            "id": "ASB-A-214999128-f7d98021",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/40ca868ca5e394f9c6eb97a425dfc5899322c979",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/notification/NotificationManagerService.java",
                "function": "getArray"
            },
            "signature_type": "Function"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/base/+/40ca868ca5e394f9c6eb97a425dfc5899322c979"
    ],
    "spl": "2022-05-01",
    "severity": "High",
    "types": [
        "ID"
    ]
}

Android / platform/frameworks/base

Affected ranges

Type
ECOSYSTEM
Events
Introduced
12L:0
Fixed
12L:2022-05-01

Affected versions

Other

12L

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 498.0,
                "function_hash": "287974410692506679163468447209060617901"
            },
            "id": "ASB-A-214999128-4fd01e15",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/73745b16e89b51dfe4328faa817ba50024382050",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/notification/NotificationManagerService.java",
                "function": "getHistoricalNotificationsWithAttribution"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 655.0,
                "function_hash": "66353488490374514645938377430228215797"
            },
            "id": "ASB-A-214999128-571f59c0",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/73745b16e89b51dfe4328faa817ba50024382050",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/notification/NotificationManagerService.java",
                "function": "getActiveNotificationsWithAttribution"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "7795108444204943895555208609527831195",
                    "92602448250662577012131015959923826056",
                    "163369047065228479520839194803024713603",
                    "77899740008544677145876856444782606991",
                    "305521104071857919971152045986403556856",
                    "131136301117910212149001854550168822130",
                    "272616224067483625672500930704123290608",
                    "92359410804400336527722411143534610684",
                    "143195086786709993768297741537210449573",
                    "129962769248817248947645409832431715476",
                    "263514762465954545980338062825674711213",
                    "228191677110595434517808047918301695979",
                    "171369716841734608035107434557143664510",
                    "271839230585599739426755774227671805808",
                    "95355871738199944413081176368544642818",
                    "274894795319906657426411700022106698484",
                    "282606003912950375579422330448378967024",
                    "1254387639363073282008605367746853124",
                    "59533016764467213104309625175692333358",
                    "75362866833142067695521557429286574877",
                    "147643794718440317298444509708574765570",
                    "339241346372413132124652410848837196228",
                    "166727590916906091164997515817718572031",
                    "261904835102952928741557428448584060733",
                    "215744176769276734263448881310269376524",
                    "129322343890982347043460206790397362334",
                    "37178189641777687779919097299463425852",
                    "176457846297682203422831922544787023785",
                    "324346366488839279161311680786431153065",
                    "167658503223529510377816877712966183665"
                ]
            },
            "id": "ASB-A-214999128-5ee1b5da",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/73745b16e89b51dfe4328faa817ba50024382050",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/notification/NotificationManagerService.java"
            },
            "signature_type": "Line"
        },
        {
            "digest": {
                "length": 433.0,
                "function_hash": "3143462519608280030167065824291902405"
            },
            "id": "ASB-A-214999128-cc739f05",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/73745b16e89b51dfe4328faa817ba50024382050",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/notification/NotificationManagerService.java",
                "function": "getArray"
            },
            "signature_type": "Function"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/base/+/73745b16e89b51dfe4328faa817ba50024382050"
    ],
    "spl": "2022-05-01",
    "severity": "High",
    "types": [
        "ID"
    ]
}