In readFrom of Uri.java, there is a possible bad URI permission grant due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
{ "vanir_signatures": [ { "digest": { "threshold": 0.9, "line_hashes": [ "217293375901536488373202122972823323969", "64913045587930263071620006027114995635", "133802527225369483754931688542697427099", "160009536855085451358753916392621805401", "108665550764986394327745700644898793881", "238342223150607425782371454756028319372", "285677272714058008081533384476939390622", "213183156118135730613894113137757047267", "191618998247855941167627426111353121754", "229221336185881681659960120095347110956", "214877076543316569988414134525175557655", "300917551157252855785981741901753753877", "62817408602554622937841706145635928073" ] }, "id": "ASB-A-227471459-97a38d1e", "source": "https://android.googlesource.com/platform/frameworks/base/+/f37a94ae920fa5879c557603fc285942ec4b84b1", "deprecated": false, "signature_version": "v1", "target": { "file": "core/java/android/net/Uri.java" }, "signature_type": "Line" }, { "digest": { "length": 197.0, "function_hash": "40263653748956335830809431209081902639" }, "id": "ASB-A-227471459-e94b1b28", "source": "https://android.googlesource.com/platform/frameworks/base/+/f37a94ae920fa5879c557603fc285942ec4b84b1", "deprecated": false, "signature_version": "v1", "target": { "file": "core/java/android/net/Uri.java", "function": "readFrom" }, "signature_type": "Function" } ], "fixes": [ "https://android.googlesource.com/platform/frameworks/base/+/f37a94ae920fa5879c557603fc285942ec4b84b1" ], "spl": "2023-08-01", "severity": "High", "types": [ "EoP" ] }
{ "vanir_signatures": [ { "digest": { "threshold": 0.9, "line_hashes": [ "217293375901536488373202122972823323969", "64913045587930263071620006027114995635", "133802527225369483754931688542697427099", "160009536855085451358753916392621805401", "108665550764986394327745700644898793881", "238342223150607425782371454756028319372", "285677272714058008081533384476939390622", "213183156118135730613894113137757047267", "191618998247855941167627426111353121754", "229221336185881681659960120095347110956", "214877076543316569988414134525175557655", "119157369104391389495237517514297622080", "210632989439468116936103427892354174345" ] }, "id": "ASB-A-227471459-2fc6761b", "source": "https://android.googlesource.com/platform/frameworks/base/+/c87f0623be4042c39a9b73f7a6e02aa116925e50", "deprecated": false, "signature_version": "v1", "target": { "file": "core/java/android/net/Uri.java" }, "signature_type": "Line" }, { "digest": { "length": 197.0, "function_hash": "40263653748956335830809431209081902639" }, "id": "ASB-A-227471459-ac892d2c", "source": "https://android.googlesource.com/platform/frameworks/base/+/c87f0623be4042c39a9b73f7a6e02aa116925e50", "deprecated": false, "signature_version": "v1", "target": { "file": "core/java/android/net/Uri.java", "function": "readFrom" }, "signature_type": "Function" } ], "fixes": [ "https://android.googlesource.com/platform/frameworks/base/+/c87f0623be4042c39a9b73f7a6e02aa116925e50" ], "spl": "2023-08-01", "severity": "High", "types": [ "EoP" ] }
{ "vanir_signatures": [ { "digest": { "threshold": 0.9, "line_hashes": [ "217293375901536488373202122972823323969", "64913045587930263071620006027114995635", "133802527225369483754931688542697427099", "160009536855085451358753916392621805401", "108665550764986394327745700644898793881", "238342223150607425782371454756028319372", "285677272714058008081533384476939390622", "213183156118135730613894113137757047267", "191618998247855941167627426111353121754", "229221336185881681659960120095347110956", "214877076543316569988414134525175557655", "300917551157252855785981741901753753877", "62817408602554622937841706145635928073" ] }, "id": "ASB-A-227471459-370ac55f", "source": "https://android.googlesource.com/platform/frameworks/base/+/d83281c73070f2428754912ede95ecb0e3d69cd5", "deprecated": false, "signature_version": "v1", "target": { "file": "core/java/android/net/Uri.java" }, "signature_type": "Line" }, { "digest": { "length": 197.0, "function_hash": "40263653748956335830809431209081902639" }, "id": "ASB-A-227471459-bdff6ad8", "source": "https://android.googlesource.com/platform/frameworks/base/+/d83281c73070f2428754912ede95ecb0e3d69cd5", "deprecated": false, "signature_version": "v1", "target": { "file": "core/java/android/net/Uri.java", "function": "readFrom" }, "signature_type": "Function" } ], "fixes": [ "https://android.googlesource.com/platform/frameworks/base/+/d83281c73070f2428754912ede95ecb0e3d69cd5" ], "spl": "2023-08-01", "severity": "High", "types": [ "EoP" ] }
{ "vanir_signatures": [ { "digest": { "length": 197.0, "function_hash": "40263653748956335830809431209081902639" }, "id": "ASB-A-227471459-1a816407", "source": "https://android.googlesource.com/platform/frameworks/base/+/dcc1fb8e8be12324e1a8277023955d9f92cd5626", "deprecated": false, "signature_version": "v1", "target": { "file": "core/java/android/net/Uri.java", "function": "readFrom" }, "signature_type": "Function" }, { "digest": { "threshold": 0.9, "line_hashes": [ "217293375901536488373202122972823323969", "64913045587930263071620006027114995635", "133802527225369483754931688542697427099", "160009536855085451358753916392621805401", "108665550764986394327745700644898793881", "238342223150607425782371454756028319372", "285677272714058008081533384476939390622", "213183156118135730613894113137757047267", "191618998247855941167627426111353121754", "229221336185881681659960120095347110956", "214877076543316569988414134525175557655", "300917551157252855785981741901753753877", "62817408602554622937841706145635928073" ] }, "id": "ASB-A-227471459-a120251a", "source": "https://android.googlesource.com/platform/frameworks/base/+/dcc1fb8e8be12324e1a8277023955d9f92cd5626", "deprecated": false, "signature_version": "v1", "target": { "file": "core/java/android/net/Uri.java" }, "signature_type": "Line" } ], "fixes": [ "https://android.googlesource.com/platform/frameworks/base/+/dcc1fb8e8be12324e1a8277023955d9f92cd5626" ], "spl": "2023-08-01", "severity": "High", "types": [ "EoP" ] }