ASB-A-220735360

See a problem?
Import Source
https://storage.googleapis.com/android-osv/ASB-A-220735360.json
JSON Data
https://api.osv.dev/v1/vulns/ASB-A-220735360
Aliases
  • A-220735360
  • CVE-2022-20143
Published
2022-06-01T00:00:00Z
Modified
2024-08-07T19:29:49.141915Z
Summary
Corrupt system by adding many AutomaticZenRules via NotificationManager#addAutomaticZenRule
Details

In addAutomaticZenRule of ZenModeHelper.java, there is a possible permanent denial of service due to resource exhaustion. This could lead to local denial of service with User execution privileges needed. User interaction is not needed for exploitation.

References

Affected packages

Android / platform/frameworks/base

Affected ranges

Type
ECOSYSTEM
Events
Introduced
12L-next:0
Fixed
12L-next:2022-06-01

Affected versions

Other

12L-next

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 1129.0,
                "function_hash": "72969116394611615355557316684029202049"
            },
            "id": "ASB-A-220735360-45dc9fb8",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/7409354d3a055f0b133422781d905d7f1353db08",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/notification/ZenModeHelper.java",
                "function": "addAutomaticZenRule"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "316773913091921454552949103505812551778",
                    "60844737244376701495448944237486813748",
                    "199636489222921242797912143586625016982",
                    "253842174893724491600693628616052998028",
                    "182678495109000916998567333048234127512",
                    "223480315242129049381935799030871758362",
                    "55323315076084903885259546976523089802",
                    "77143724823306830291124992362851030982",
                    "218940759841715349412776172642540050245",
                    "15353142691719259333927658237084754530"
                ]
            },
            "id": "ASB-A-220735360-b57b3821",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/7409354d3a055f0b133422781d905d7f1353db08",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/notification/ZenModeHelper.java"
            },
            "signature_type": "Line"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/base/+/7409354d3a055f0b133422781d905d7f1353db08"
    ],
    "spl": "2022-06-01",
    "severity": "High",
    "types": [
        "DoS"
    ]
}

Android / platform/frameworks/base

Affected ranges

Type
ECOSYSTEM
Events
Introduced
10:0
Fixed
10:2022-06-01

Affected versions

Other

10

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "316773913091921454552949103505812551778",
                    "238980956958401809169700792544261089097",
                    "172396850881818552902123492624771244434",
                    "110355755503766042658550115420818945063",
                    "182678495109000916998567333048234127512",
                    "223480315242129049381935799030871758362",
                    "55323315076084903885259546976523089802",
                    "77143724823306830291124992362851030982",
                    "218940759841715349412776172642540050245",
                    "15353142691719259333927658237084754530"
                ]
            },
            "id": "ASB-A-220735360-2fe1d80f",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/3072d98c2dc2b709bd8ffc343c101557a53dd188",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/notification/ZenModeHelper.java"
            },
            "signature_type": "Line"
        },
        {
            "digest": {
                "length": 1107.0,
                "function_hash": "245677618049664184870375458169560547835"
            },
            "id": "ASB-A-220735360-8171c5b3",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/3072d98c2dc2b709bd8ffc343c101557a53dd188",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/notification/ZenModeHelper.java",
                "function": "addAutomaticZenRule"
            },
            "signature_type": "Function"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/base/+/3072d98c2dc2b709bd8ffc343c101557a53dd188"
    ],
    "spl": "2022-06-01",
    "severity": "High",
    "types": [
        "DoS"
    ]
}

Android / platform/frameworks/base

Affected ranges

Type
ECOSYSTEM
Events
Introduced
11:0
Fixed
11:2022-06-01

Affected versions

Other

11

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "316773913091921454552949103505812551778",
                    "238980956958401809169700792544261089097",
                    "172396850881818552902123492624771244434",
                    "110355755503766042658550115420818945063",
                    "182678495109000916998567333048234127512",
                    "223480315242129049381935799030871758362",
                    "55323315076084903885259546976523089802",
                    "77143724823306830291124992362851030982",
                    "218940759841715349412776172642540050245",
                    "15353142691719259333927658237084754530"
                ]
            },
            "id": "ASB-A-220735360-36a72876",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/1db5d40205929f253f1d2bbf541f428020b3b28e",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/notification/ZenModeHelper.java"
            },
            "signature_type": "Line"
        },
        {
            "digest": {
                "length": 1107.0,
                "function_hash": "245677618049664184870375458169560547835"
            },
            "id": "ASB-A-220735360-ce862fb0",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/1db5d40205929f253f1d2bbf541f428020b3b28e",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/notification/ZenModeHelper.java",
                "function": "addAutomaticZenRule"
            },
            "signature_type": "Function"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/base/+/1db5d40205929f253f1d2bbf541f428020b3b28e"
    ],
    "spl": "2022-06-01",
    "severity": "High",
    "types": [
        "DoS"
    ]
}

Android / platform/frameworks/base

Affected ranges

Type
ECOSYSTEM
Events
Introduced
12:0
Fixed
12:2022-06-01

Affected versions

Other

12

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "316773913091921454552949103505812551778",
                    "60844737244376701495448944237486813748",
                    "199636489222921242797912143586625016982",
                    "253842174893724491600693628616052998028",
                    "182678495109000916998567333048234127512",
                    "223480315242129049381935799030871758362",
                    "55323315076084903885259546976523089802",
                    "77143724823306830291124992362851030982",
                    "218940759841715349412776172642540050245",
                    "15353142691719259333927658237084754530"
                ]
            },
            "id": "ASB-A-220735360-52aa6a53",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/75bd0edd7b737a0e13beace1067af71f838af2a4",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/notification/ZenModeHelper.java"
            },
            "signature_type": "Line"
        },
        {
            "digest": {
                "length": 1129.0,
                "function_hash": "72969116394611615355557316684029202049"
            },
            "id": "ASB-A-220735360-745b7115",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/75bd0edd7b737a0e13beace1067af71f838af2a4",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/notification/ZenModeHelper.java",
                "function": "addAutomaticZenRule"
            },
            "signature_type": "Function"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/base/+/75bd0edd7b737a0e13beace1067af71f838af2a4"
    ],
    "spl": "2022-06-01",
    "severity": "High",
    "types": [
        "DoS"
    ]
}

Android / platform/frameworks/base

Affected ranges

Type
ECOSYSTEM
Events
Introduced
12L:0
Fixed
12L:2022-06-01

Affected versions

Other

12L

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 1129.0,
                "function_hash": "72969116394611615355557316684029202049"
            },
            "id": "ASB-A-220735360-9a85100b",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/c69747578155fc2b2b5a6d690b1e8263f281eb67",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/notification/ZenModeHelper.java",
                "function": "addAutomaticZenRule"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "316773913091921454552949103505812551778",
                    "60844737244376701495448944237486813748",
                    "199636489222921242797912143586625016982",
                    "253842174893724491600693628616052998028",
                    "182678495109000916998567333048234127512",
                    "223480315242129049381935799030871758362",
                    "55323315076084903885259546976523089802",
                    "77143724823306830291124992362851030982",
                    "218940759841715349412776172642540050245",
                    "15353142691719259333927658237084754530"
                ]
            },
            "id": "ASB-A-220735360-a4a63fd8",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/c69747578155fc2b2b5a6d690b1e8263f281eb67",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/notification/ZenModeHelper.java"
            },
            "signature_type": "Line"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/base/+/c69747578155fc2b2b5a6d690b1e8263f281eb67"
    ],
    "spl": "2022-06-01",
    "severity": "High",
    "types": [
        "DoS"
    ]
}