ASB-A-256589724

See a problem?
Import Source
https://storage.googleapis.com/android-osv/ASB-A-256589724.json
JSON Data
https://api.osv.dev/v1/vulns/ASB-A-256589724
Aliases
  • A-256589724
  • CVE-2023-20935
Published
2023-04-01T00:00:00Z
Modified
2024-08-07T19:29:19.960607Z
Summary
[Out of Bounds Read in deserialize in ExecutionBurstServer.cpp in libneuralnetworks_common_defaults]
Details

In deserialize of multiple files, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

References

Affected packages

Android / platform/hardware/interfaces

Affected ranges

Type
ECOSYSTEM
Events
Introduced
13-next:0
Fixed
13-next:2023-04-01

Affected versions

Other

13-next

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 1678.0,
                "function_hash": "146009898177792842256457245540887739563"
            },
            "id": "ASB-A-256589724-1ae403da",
            "source": "https://android.googlesource.com/platform/hardware/interfaces/+/611648f7a007b3b491e70123c1e2fdca54388a9e",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "neuralnetworks/1.2/utils/src/BurstUtils.cpp",
                "function": "deserialize"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "258936240265842369001214474606389420851",
                    "67127141091905790440884439550195604632",
                    "220799470805788336983581415642306881004",
                    "291864384393301778319638547021049498566",
                    "88501738905842173846684335360288751108",
                    "73307485366933303782063238234839980768",
                    "295104442348894419986804659818916564601",
                    "243962418303161964093048887675383940230",
                    "97843886294034601290999489087190071211",
                    "165386828937649914718428289980387390913",
                    "11931511089446026182231308167994015880",
                    "159496533902311688431160571868727599561",
                    "242806910691919255461510001730253229287",
                    "194143350651869087808192845356409604767",
                    "188886943887709504598248209066591086791",
                    "10733589751509687422890352659510036743",
                    "251620115730709364097076202328257987823",
                    "313983116626801778584339467598038568036",
                    "197524300521455156710587030026044243549",
                    "276965006152581251148300780323706224308",
                    "34451886923698954237275570467611581297",
                    "214563191510084356561108428258860590781",
                    "57123143209303562324855574776734359406",
                    "157993823631119413861206234886161691247",
                    "83634131393511181787791231606204861205",
                    "287976321819156104853842834446843307297",
                    "311335840811775105865748123308111313337",
                    "201570638034053653147017372302584819675",
                    "311733019529437733337277084529928019805",
                    "121869695089154575788628069842372423252",
                    "203190232108357505711697514642622290887",
                    "314284305837888217144972161334062082482",
                    "114519671015069055957437212107648152616",
                    "223432900803494282486432636819659718471",
                    "335177553005012904337160466665082829506",
                    "121572852740398778572825962382751733929",
                    "48957858928072073890343428012894859643",
                    "182016279549965653843536297199358328836",
                    "316214269018922106147698358279277526275",
                    "121988169288373218831862666656177472878",
                    "82508725388695598161940682944519932956",
                    "242769942935681994233252107541185265577",
                    "123856231364614735281224031788297546877",
                    "221981851201533590641987526090097737884",
                    "201155161166816384549182492857742328078",
                    "41937183409376880367064187929533574146",
                    "100063248667933676695480353778777903484",
                    "139952944465368576293610177642322462156",
                    "102727477991495766181174728926691152068",
                    "169542661602539972881732671535667371930",
                    "15796261823598025438626598825366895432",
                    "136431999255207745458720070954996962528",
                    "131095087641504816478181466650184804886",
                    "224926672149727652011889766093319571016",
                    "253134918112805918767710652127474697218",
                    "238755694775290659782278771374202491762",
                    "190580181784732427588283963227240323260",
                    "179120046003284067532781922116107501248",
                    "177217503346535043732180621465994759688",
                    "220303729453844545596139304257022688847",
                    "20138157677370623459850106209425449491",
                    "328526626325848901870193705462614269113",
                    "58143182437780746059912324449327527458",
                    "263789390756877295308414080642536302771",
                    "7362210855214347300030019690658657531",
                    "183321080146690896667456150078544040316",
                    "272950140693522775968604985355662017836",
                    "104943890989271120910640873129709994316",
                    "222446422353135745604833918865696303700",
                    "49353368941305368624468803225483570402",
                    "215894702394124621170772009084972713483",
                    "21935537315545032318905993324120958923",
                    "274722427855370225165262775004896107747",
                    "152525733464745549879680096020485132040",
                    "191748231573479922509567226583542197561",
                    "10143271909675517957333561266942616474",
                    "149135551179689730360005796088368834070",
                    "263579350189658086387057225594041156326",
                    "110964488793273933454962195640332068971",
                    "154159896539246972839145486662927340852",
                    "133233508096510069040242780843032803114",
                    "139388882475840577622625391168661340180"
                ]
            },
            "id": "ASB-A-256589724-a4c65a6b",
            "source": "https://android.googlesource.com/platform/hardware/interfaces/+/611648f7a007b3b491e70123c1e2fdca54388a9e",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "neuralnetworks/1.2/utils/src/BurstUtils.cpp"
            },
            "signature_type": "Line"
        },
        {
            "digest": {
                "length": 3024.0,
                "function_hash": "71077937745876140453199012848175282855"
            },
            "id": "ASB-A-256589724-e5878ce9",
            "source": "https://android.googlesource.com/platform/hardware/interfaces/+/611648f7a007b3b491e70123c1e2fdca54388a9e",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "neuralnetworks/1.2/utils/src/BurstUtils.cpp",
                "function": "deserialize"
            },
            "signature_type": "Function"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/hardware/interfaces/+/611648f7a007b3b491e70123c1e2fdca54388a9e"
    ],
    "spl": "2023-04-01",
    "severity": "High",
    "types": [
        "ID"
    ]
}

Android / platform/packages/modules/NeuralNetworks

Affected ranges

Type
ECOSYSTEM
Events
Introduced
13-next:0
Fixed
13-next:2023-04-01

Affected versions

Other

13-next

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 3150.0,
                "function_hash": "201950178419631183605602934387619579487"
            },
            "id": "ASB-A-256589724-150ff29f",
            "source": "https://android.googlesource.com/platform/packages/modules/NeuralNetworks/+/74d74477682cc34df5be67e039a63686c03cfb06",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "common/ExecutionBurstServer.cpp",
                "function": "deserialize"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "271604990142106825508998291167308775543",
                    "320550076100077293380891899088846222134",
                    "180524833087293788887312871808831189793",
                    "25537682192006633300563758083832606300",
                    "231501321964567230477539834628409823536",
                    "339971192982341018130788124478800121191",
                    "220303729453844545596139304257022688847",
                    "20138157677370623459850106209425449491",
                    "283708925165649535694350450986114534692",
                    "40652931672072487608200446407036115515",
                    "214808593547702063102823867085959383976",
                    "172854655826931828534613842927135612413",
                    "91816677324702806910106495536146134277",
                    "242979027828898322489863680368834219176",
                    "272950140693522775968604985355662017836",
                    "104943890989271120910640873129709994316",
                    "222446422353135745604833918865696303700",
                    "212500204321704060894415674545201158279",
                    "286785287920450466752241603889993857662",
                    "262980543558957459895958360232893609580",
                    "110951377923587756120059917317595114395",
                    "244803301553952094648809759954878514312",
                    "152525733464745549879680096020485132040",
                    "191748231573479922509567226583542197561",
                    "270138197138345784180810323247560824125",
                    "286078704641314014643104655472435113424",
                    "320117382003116747112899689949231607629",
                    "20984343287988999270824944110965731412",
                    "118593768360349656804313018744433059479",
                    "95125090922067735898500418138156253357",
                    "133233508096510069040242780843032803114",
                    "77982913052076482664472099039165346803"
                ]
            },
            "id": "ASB-A-256589724-2e226d73",
            "source": "https://android.googlesource.com/platform/packages/modules/NeuralNetworks/+/74d74477682cc34df5be67e039a63686c03cfb06",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "common/ExecutionBurstController.cpp"
            },
            "signature_type": "Line"
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "258936240265842369001214474606389420851",
                    "330520845293037462675132192081797988477",
                    "272432372487272007370724667017570782101",
                    "258149793143270144361536484397937693778",
                    "43033564574478708320493390563023856786",
                    "105825610056298761180010079237776375843",
                    "73307485366933303782063238234839980768",
                    "295104442348894419986804659818916564601",
                    "243962418303161964093048887675383940230",
                    "219534003137199132543422416881678292685",
                    "61790816110198771874353746663108503180",
                    "260679783374414124595305510619990137392",
                    "275337189345832960903039805323260978953",
                    "175507117189158875018283778669762189340",
                    "242806910691919255461510001730253229287",
                    "194143350651869087808192845356409604767",
                    "188886943887709504598248209066591086791",
                    "10733589751509687422890352659510036743",
                    "292046204280903614426582954563921742543",
                    "318007180842001454874017786176782724756",
                    "256499850455218687783044237325127819945",
                    "325678721008064791918199104978712855693",
                    "114372516616604988009560160820613659196",
                    "34451886923698954237275570467611581297",
                    "214563191510084356561108428258860590781",
                    "57123143209303562324855574776734359406",
                    "146964740147856871482285566895343031669",
                    "178405791292068390298945645815939700458",
                    "25047661947222408217384594305754334743",
                    "275337189345832960903039805323260978953",
                    "215502496679317107781104785210902824880",
                    "201570638034053653147017372302584819675",
                    "311733019529437733337277084529928019805",
                    "121869695089154575788628069842372423252",
                    "203190232108357505711697514642622290887",
                    "58247423955893553833777328868005771567",
                    "19176184816565820433296698062775929734",
                    "336960347193153699897521235082014985693",
                    "261913026810663344676254366578015320452",
                    "283014724995931080168274569180790599718",
                    "121572852740398778572825962382751733929",
                    "48957858928072073890343428012894859643",
                    "182016279549965653843536297199358328836",
                    "86573754988622594869845856596197639107",
                    "209371493270105031933823229484531046851",
                    "212847978889765966768547692077171533684",
                    "228678618741926552004641022088479503234",
                    "125719865205354383956463716256271756683",
                    "123856231364614735281224031788297546877",
                    "221981851201533590641987526090097737884",
                    "201155161166816384549182492857742328078",
                    "332148255420362409697230266588017596538",
                    "17267849771659122357710613272433588155",
                    "176169384524603374420568798065328716704",
                    "27218066183517471963987145827879164456",
                    "188766192993509968618548650523149512814",
                    "169542661602539972881732671535667371930",
                    "81513632172968190734539567367739348078",
                    "53219983538766625383473780822328052595",
                    "325681485131475907850271671576195205457",
                    "170921127321533424389013043045771649742"
                ]
            },
            "id": "ASB-A-256589724-3d9041ff",
            "source": "https://android.googlesource.com/platform/packages/modules/NeuralNetworks/+/74d74477682cc34df5be67e039a63686c03cfb06",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "common/ExecutionBurstServer.cpp"
            },
            "signature_type": "Line"
        },
        {
            "digest": {
                "length": 1767.0,
                "function_hash": "295358130863967926135594061092512187055"
            },
            "id": "ASB-A-256589724-53466ee1",
            "source": "https://android.googlesource.com/platform/packages/modules/NeuralNetworks/+/74d74477682cc34df5be67e039a63686c03cfb06",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "common/ExecutionBurstController.cpp",
                "function": "deserialize"
            },
            "signature_type": "Function"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/packages/modules/NeuralNetworks/+/74d74477682cc34df5be67e039a63686c03cfb06"
    ],
    "spl": "2023-04-01",
    "severity": "High",
    "types": [
        "ID"
    ]
}

Android / platform/hardware/interfaces

Affected ranges

Type
ECOSYSTEM
Events
Introduced
12:0
Fixed
12:2023-04-01

Affected versions

Other

12

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "258936240265842369001214474606389420851",
                    "67127141091905790440884439550195604632",
                    "220799470805788336983581415642306881004",
                    "291864384393301778319638547021049498566",
                    "88501738905842173846684335360288751108",
                    "73307485366933303782063238234839980768",
                    "295104442348894419986804659818916564601",
                    "243962418303161964093048887675383940230",
                    "97843886294034601290999489087190071211",
                    "165386828937649914718428289980387390913",
                    "11931511089446026182231308167994015880",
                    "159496533902311688431160571868727599561",
                    "242806910691919255461510001730253229287",
                    "194143350651869087808192845356409604767",
                    "188886943887709504598248209066591086791",
                    "10733589751509687422890352659510036743",
                    "251620115730709364097076202328257987823",
                    "313983116626801778584339467598038568036",
                    "197524300521455156710587030026044243549",
                    "276965006152581251148300780323706224308",
                    "34451886923698954237275570467611581297",
                    "214563191510084356561108428258860590781",
                    "57123143209303562324855574776734359406",
                    "157993823631119413861206234886161691247",
                    "83634131393511181787791231606204861205",
                    "287976321819156104853842834446843307297",
                    "311335840811775105865748123308111313337",
                    "201570638034053653147017372302584819675",
                    "311733019529437733337277084529928019805",
                    "121869695089154575788628069842372423252",
                    "203190232108357505711697514642622290887",
                    "314284305837888217144972161334062082482",
                    "114519671015069055957437212107648152616",
                    "223432900803494282486432636819659718471",
                    "335177553005012904337160466665082829506",
                    "121572852740398778572825962382751733929",
                    "48957858928072073890343428012894859643",
                    "182016279549965653843536297199358328836",
                    "316214269018922106147698358279277526275",
                    "121988169288373218831862666656177472878",
                    "82508725388695598161940682944519932956",
                    "242769942935681994233252107541185265577",
                    "123856231364614735281224031788297546877",
                    "221981851201533590641987526090097737884",
                    "201155161166816384549182492857742328078",
                    "41937183409376880367064187929533574146",
                    "100063248667933676695480353778777903484",
                    "139952944465368576293610177642322462156",
                    "102727477991495766181174728926691152068",
                    "169542661602539972881732671535667371930",
                    "15796261823598025438626598825366895432",
                    "136431999255207745458720070954996962528",
                    "131095087641504816478181466650184804886",
                    "224926672149727652011889766093319571016",
                    "253134918112805918767710652127474697218",
                    "238755694775290659782278771374202491762",
                    "190580181784732427588283963227240323260",
                    "179120046003284067532781922116107501248",
                    "177217503346535043732180621465994759688",
                    "220303729453844545596139304257022688847",
                    "20138157677370623459850106209425449491",
                    "328526626325848901870193705462614269113",
                    "58143182437780746059912324449327527458",
                    "263789390756877295308414080642536302771",
                    "7362210855214347300030019690658657531",
                    "183321080146690896667456150078544040316",
                    "272950140693522775968604985355662017836",
                    "104943890989271120910640873129709994316",
                    "222446422353135745604833918865696303700",
                    "49353368941305368624468803225483570402",
                    "215894702394124621170772009084972713483",
                    "21935537315545032318905993324120958923",
                    "274722427855370225165262775004896107747",
                    "152525733464745549879680096020485132040",
                    "191748231573479922509567226583542197561",
                    "10143271909675517957333561266942616474",
                    "149135551179689730360005796088368834070",
                    "263579350189658086387057225594041156326",
                    "110964488793273933454962195640332068971",
                    "154159896539246972839145486662927340852",
                    "133233508096510069040242780843032803114",
                    "139388882475840577622625391168661340180"
                ]
            },
            "id": "ASB-A-256589724-0df9e6de",
            "source": "https://android.googlesource.com/platform/hardware/interfaces/+/4668f30dcfdf418e7fcbc0d9c98b2eabbddb5099",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "neuralnetworks/1.2/utils/src/ExecutionBurstUtils.cpp"
            },
            "signature_type": "Line"
        },
        {
            "digest": {
                "length": 1678.0,
                "function_hash": "146009898177792842256457245540887739563"
            },
            "id": "ASB-A-256589724-20df44be",
            "source": "https://android.googlesource.com/platform/hardware/interfaces/+/4668f30dcfdf418e7fcbc0d9c98b2eabbddb5099",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "neuralnetworks/1.2/utils/src/ExecutionBurstUtils.cpp",
                "function": "deserialize"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 3024.0,
                "function_hash": "71077937745876140453199012848175282855"
            },
            "id": "ASB-A-256589724-6fd6802b",
            "source": "https://android.googlesource.com/platform/hardware/interfaces/+/4668f30dcfdf418e7fcbc0d9c98b2eabbddb5099",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "neuralnetworks/1.2/utils/src/ExecutionBurstUtils.cpp",
                "function": "deserialize"
            },
            "signature_type": "Function"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/hardware/interfaces/+/4668f30dcfdf418e7fcbc0d9c98b2eabbddb5099"
    ],
    "spl": "2023-04-01",
    "severity": "High",
    "types": [
        "ID"
    ]
}

Android / platform/packages/modules/NeuralNetworks

Affected ranges

Type
ECOSYSTEM
Events
Introduced
12:0
Fixed
12:2023-04-01

Affected versions

Other

12

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "258936240265842369001214474606389420851",
                    "330520845293037462675132192081797988477",
                    "272432372487272007370724667017570782101",
                    "258149793143270144361536484397937693778",
                    "43033564574478708320493390563023856786",
                    "105825610056298761180010079237776375843",
                    "73307485366933303782063238234839980768",
                    "295104442348894419986804659818916564601",
                    "243962418303161964093048887675383940230",
                    "219534003137199132543422416881678292685",
                    "61790816110198771874353746663108503180",
                    "260679783374414124595305510619990137392",
                    "275337189345832960903039805323260978953",
                    "175507117189158875018283778669762189340",
                    "242806910691919255461510001730253229287",
                    "194143350651869087808192845356409604767",
                    "188886943887709504598248209066591086791",
                    "10733589751509687422890352659510036743",
                    "292046204280903614426582954563921742543",
                    "318007180842001454874017786176782724756",
                    "256499850455218687783044237325127819945",
                    "325678721008064791918199104978712855693",
                    "114372516616604988009560160820613659196",
                    "34451886923698954237275570467611581297",
                    "214563191510084356561108428258860590781",
                    "57123143209303562324855574776734359406",
                    "146964740147856871482285566895343031669",
                    "178405791292068390298945645815939700458",
                    "25047661947222408217384594305754334743",
                    "275337189345832960903039805323260978953",
                    "215502496679317107781104785210902824880",
                    "201570638034053653147017372302584819675",
                    "311733019529437733337277084529928019805",
                    "121869695089154575788628069842372423252",
                    "203190232108357505711697514642622290887",
                    "58247423955893553833777328868005771567",
                    "19176184816565820433296698062775929734",
                    "336960347193153699897521235082014985693",
                    "261913026810663344676254366578015320452",
                    "283014724995931080168274569180790599718",
                    "121572852740398778572825962382751733929",
                    "48957858928072073890343428012894859643",
                    "182016279549965653843536297199358328836",
                    "86573754988622594869845856596197639107",
                    "209371493270105031933823229484531046851",
                    "212847978889765966768547692077171533684",
                    "228678618741926552004641022088479503234",
                    "125719865205354383956463716256271756683",
                    "123856231364614735281224031788297546877",
                    "221981851201533590641987526090097737884",
                    "201155161166816384549182492857742328078",
                    "332148255420362409697230266588017596538",
                    "17267849771659122357710613272433588155",
                    "176169384524603374420568798065328716704",
                    "27218066183517471963987145827879164456",
                    "188766192993509968618548650523149512814",
                    "169542661602539972881732671535667371930",
                    "81513632172968190734539567367739348078",
                    "53219983538766625383473780822328052595",
                    "325681485131475907850271671576195205457",
                    "170921127321533424389013043045771649742"
                ]
            },
            "id": "ASB-A-256589724-2458871b",
            "source": "https://android.googlesource.com/platform/packages/modules/NeuralNetworks/+/6d7c5d22ada585428b607105a8d4753a902306a6",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "common/ExecutionBurstServer.cpp"
            },
            "signature_type": "Line"
        },
        {
            "digest": {
                "length": 1767.0,
                "function_hash": "295358130863967926135594061092512187055"
            },
            "id": "ASB-A-256589724-2c044817",
            "source": "https://android.googlesource.com/platform/packages/modules/NeuralNetworks/+/6d7c5d22ada585428b607105a8d4753a902306a6",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "common/ExecutionBurstController.cpp",
                "function": "deserialize"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "271604990142106825508998291167308775543",
                    "320550076100077293380891899088846222134",
                    "180524833087293788887312871808831189793",
                    "25537682192006633300563758083832606300",
                    "231501321964567230477539834628409823536",
                    "339971192982341018130788124478800121191",
                    "220303729453844545596139304257022688847",
                    "20138157677370623459850106209425449491",
                    "283708925165649535694350450986114534692",
                    "40652931672072487608200446407036115515",
                    "214808593547702063102823867085959383976",
                    "172854655826931828534613842927135612413",
                    "91816677324702806910106495536146134277",
                    "242979027828898322489863680368834219176",
                    "272950140693522775968604985355662017836",
                    "104943890989271120910640873129709994316",
                    "222446422353135745604833918865696303700",
                    "212500204321704060894415674545201158279",
                    "286785287920450466752241603889993857662",
                    "262980543558957459895958360232893609580",
                    "110951377923587756120059917317595114395",
                    "244803301553952094648809759954878514312",
                    "152525733464745549879680096020485132040",
                    "191748231573479922509567226583542197561",
                    "270138197138345784180810323247560824125",
                    "286078704641314014643104655472435113424",
                    "320117382003116747112899689949231607629",
                    "20984343287988999270824944110965731412",
                    "118593768360349656804313018744433059479",
                    "95125090922067735898500418138156253357",
                    "133233508096510069040242780843032803114",
                    "77982913052076482664472099039165346803"
                ]
            },
            "id": "ASB-A-256589724-46a64f07",
            "source": "https://android.googlesource.com/platform/packages/modules/NeuralNetworks/+/6d7c5d22ada585428b607105a8d4753a902306a6",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "common/ExecutionBurstController.cpp"
            },
            "signature_type": "Line"
        },
        {
            "digest": {
                "length": 3150.0,
                "function_hash": "201950178419631183605602934387619579487"
            },
            "id": "ASB-A-256589724-b5cb0fbb",
            "source": "https://android.googlesource.com/platform/packages/modules/NeuralNetworks/+/6d7c5d22ada585428b607105a8d4753a902306a6",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "common/ExecutionBurstServer.cpp",
                "function": "deserialize"
            },
            "signature_type": "Function"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/packages/modules/NeuralNetworks/+/6d7c5d22ada585428b607105a8d4753a902306a6"
    ],
    "spl": "2023-04-01",
    "severity": "High",
    "types": [
        "ID"
    ]
}

Android / platform/hardware/interfaces

Affected ranges

Type
ECOSYSTEM
Events
Introduced
12L:0
Fixed
12L:2023-04-01

Affected versions

Other

12L

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 3024.0,
                "function_hash": "71077937745876140453199012848175282855"
            },
            "id": "ASB-A-256589724-12908ac9",
            "source": "https://android.googlesource.com/platform/hardware/interfaces/+/082cefe34080b89e18868d8df5a97bd01f87b39c",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "neuralnetworks/1.2/utils/src/ExecutionBurstUtils.cpp",
                "function": "deserialize"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "258936240265842369001214474606389420851",
                    "67127141091905790440884439550195604632",
                    "220799470805788336983581415642306881004",
                    "291864384393301778319638547021049498566",
                    "88501738905842173846684335360288751108",
                    "73307485366933303782063238234839980768",
                    "295104442348894419986804659818916564601",
                    "243962418303161964093048887675383940230",
                    "97843886294034601290999489087190071211",
                    "165386828937649914718428289980387390913",
                    "11931511089446026182231308167994015880",
                    "159496533902311688431160571868727599561",
                    "242806910691919255461510001730253229287",
                    "194143350651869087808192845356409604767",
                    "188886943887709504598248209066591086791",
                    "10733589751509687422890352659510036743",
                    "251620115730709364097076202328257987823",
                    "313983116626801778584339467598038568036",
                    "197524300521455156710587030026044243549",
                    "276965006152581251148300780323706224308",
                    "34451886923698954237275570467611581297",
                    "214563191510084356561108428258860590781",
                    "57123143209303562324855574776734359406",
                    "157993823631119413861206234886161691247",
                    "83634131393511181787791231606204861205",
                    "287976321819156104853842834446843307297",
                    "311335840811775105865748123308111313337",
                    "201570638034053653147017372302584819675",
                    "311733019529437733337277084529928019805",
                    "121869695089154575788628069842372423252",
                    "203190232108357505711697514642622290887",
                    "314284305837888217144972161334062082482",
                    "114519671015069055957437212107648152616",
                    "223432900803494282486432636819659718471",
                    "335177553005012904337160466665082829506",
                    "121572852740398778572825962382751733929",
                    "48957858928072073890343428012894859643",
                    "182016279549965653843536297199358328836",
                    "316214269018922106147698358279277526275",
                    "121988169288373218831862666656177472878",
                    "82508725388695598161940682944519932956",
                    "242769942935681994233252107541185265577",
                    "123856231364614735281224031788297546877",
                    "221981851201533590641987526090097737884",
                    "201155161166816384549182492857742328078",
                    "41937183409376880367064187929533574146",
                    "100063248667933676695480353778777903484",
                    "139952944465368576293610177642322462156",
                    "102727477991495766181174728926691152068",
                    "169542661602539972881732671535667371930",
                    "15796261823598025438626598825366895432",
                    "136431999255207745458720070954996962528",
                    "131095087641504816478181466650184804886",
                    "224926672149727652011889766093319571016",
                    "253134918112805918767710652127474697218",
                    "238755694775290659782278771374202491762",
                    "190580181784732427588283963227240323260",
                    "179120046003284067532781922116107501248",
                    "177217503346535043732180621465994759688",
                    "220303729453844545596139304257022688847",
                    "20138157677370623459850106209425449491",
                    "328526626325848901870193705462614269113",
                    "58143182437780746059912324449327527458",
                    "263789390756877295308414080642536302771",
                    "7362210855214347300030019690658657531",
                    "183321080146690896667456150078544040316",
                    "272950140693522775968604985355662017836",
                    "104943890989271120910640873129709994316",
                    "222446422353135745604833918865696303700",
                    "49353368941305368624468803225483570402",
                    "215894702394124621170772009084972713483",
                    "21935537315545032318905993324120958923",
                    "274722427855370225165262775004896107747",
                    "152525733464745549879680096020485132040",
                    "191748231573479922509567226583542197561",
                    "10143271909675517957333561266942616474",
                    "149135551179689730360005796088368834070",
                    "263579350189658086387057225594041156326",
                    "110964488793273933454962195640332068971",
                    "154159896539246972839145486662927340852",
                    "133233508096510069040242780843032803114",
                    "139388882475840577622625391168661340180"
                ]
            },
            "id": "ASB-A-256589724-1dc51771",
            "source": "https://android.googlesource.com/platform/hardware/interfaces/+/082cefe34080b89e18868d8df5a97bd01f87b39c",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "neuralnetworks/1.2/utils/src/ExecutionBurstUtils.cpp"
            },
            "signature_type": "Line"
        },
        {
            "digest": {
                "length": 1678.0,
                "function_hash": "146009898177792842256457245540887739563"
            },
            "id": "ASB-A-256589724-d2346787",
            "source": "https://android.googlesource.com/platform/hardware/interfaces/+/082cefe34080b89e18868d8df5a97bd01f87b39c",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "neuralnetworks/1.2/utils/src/ExecutionBurstUtils.cpp",
                "function": "deserialize"
            },
            "signature_type": "Function"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/hardware/interfaces/+/082cefe34080b89e18868d8df5a97bd01f87b39c"
    ],
    "spl": "2023-04-01",
    "severity": "High",
    "types": [
        "ID"
    ]
}

Android / platform/packages/modules/NeuralNetworks

Affected ranges

Type
ECOSYSTEM
Events
Introduced
12L:0
Fixed
12L:2023-04-01

Affected versions

Other

12L

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 3150.0,
                "function_hash": "201950178419631183605602934387619579487"
            },
            "id": "ASB-A-256589724-04e4923c",
            "source": "https://android.googlesource.com/platform/packages/modules/NeuralNetworks/+/eca075e4b139c25168d2e79d6f1edc6fef2264a9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "common/ExecutionBurstServer.cpp",
                "function": "deserialize"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "258936240265842369001214474606389420851",
                    "330520845293037462675132192081797988477",
                    "272432372487272007370724667017570782101",
                    "258149793143270144361536484397937693778",
                    "43033564574478708320493390563023856786",
                    "105825610056298761180010079237776375843",
                    "73307485366933303782063238234839980768",
                    "295104442348894419986804659818916564601",
                    "243962418303161964093048887675383940230",
                    "219534003137199132543422416881678292685",
                    "61790816110198771874353746663108503180",
                    "260679783374414124595305510619990137392",
                    "275337189345832960903039805323260978953",
                    "175507117189158875018283778669762189340",
                    "242806910691919255461510001730253229287",
                    "194143350651869087808192845356409604767",
                    "188886943887709504598248209066591086791",
                    "10733589751509687422890352659510036743",
                    "292046204280903614426582954563921742543",
                    "318007180842001454874017786176782724756",
                    "256499850455218687783044237325127819945",
                    "325678721008064791918199104978712855693",
                    "114372516616604988009560160820613659196",
                    "34451886923698954237275570467611581297",
                    "214563191510084356561108428258860590781",
                    "57123143209303562324855574776734359406",
                    "146964740147856871482285566895343031669",
                    "178405791292068390298945645815939700458",
                    "25047661947222408217384594305754334743",
                    "275337189345832960903039805323260978953",
                    "215502496679317107781104785210902824880",
                    "201570638034053653147017372302584819675",
                    "311733019529437733337277084529928019805",
                    "121869695089154575788628069842372423252",
                    "203190232108357505711697514642622290887",
                    "58247423955893553833777328868005771567",
                    "19176184816565820433296698062775929734",
                    "336960347193153699897521235082014985693",
                    "261913026810663344676254366578015320452",
                    "283014724995931080168274569180790599718",
                    "121572852740398778572825962382751733929",
                    "48957858928072073890343428012894859643",
                    "182016279549965653843536297199358328836",
                    "86573754988622594869845856596197639107",
                    "209371493270105031933823229484531046851",
                    "212847978889765966768547692077171533684",
                    "228678618741926552004641022088479503234",
                    "125719865205354383956463716256271756683",
                    "123856231364614735281224031788297546877",
                    "221981851201533590641987526090097737884",
                    "201155161166816384549182492857742328078",
                    "332148255420362409697230266588017596538",
                    "17267849771659122357710613272433588155",
                    "176169384524603374420568798065328716704",
                    "27218066183517471963987145827879164456",
                    "188766192993509968618548650523149512814",
                    "169542661602539972881732671535667371930",
                    "81513632172968190734539567367739348078",
                    "53219983538766625383473780822328052595",
                    "325681485131475907850271671576195205457",
                    "170921127321533424389013043045771649742"
                ]
            },
            "id": "ASB-A-256589724-7785ca9c",
            "source": "https://android.googlesource.com/platform/packages/modules/NeuralNetworks/+/eca075e4b139c25168d2e79d6f1edc6fef2264a9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "common/ExecutionBurstServer.cpp"
            },
            "signature_type": "Line"
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "271604990142106825508998291167308775543",
                    "320550076100077293380891899088846222134",
                    "180524833087293788887312871808831189793",
                    "25537682192006633300563758083832606300",
                    "231501321964567230477539834628409823536",
                    "339971192982341018130788124478800121191",
                    "220303729453844545596139304257022688847",
                    "20138157677370623459850106209425449491",
                    "283708925165649535694350450986114534692",
                    "40652931672072487608200446407036115515",
                    "214808593547702063102823867085959383976",
                    "172854655826931828534613842927135612413",
                    "91816677324702806910106495536146134277",
                    "242979027828898322489863680368834219176",
                    "272950140693522775968604985355662017836",
                    "104943890989271120910640873129709994316",
                    "222446422353135745604833918865696303700",
                    "212500204321704060894415674545201158279",
                    "286785287920450466752241603889993857662",
                    "262980543558957459895958360232893609580",
                    "110951377923587756120059917317595114395",
                    "244803301553952094648809759954878514312",
                    "152525733464745549879680096020485132040",
                    "191748231573479922509567226583542197561",
                    "270138197138345784180810323247560824125",
                    "286078704641314014643104655472435113424",
                    "320117382003116747112899689949231607629",
                    "20984343287988999270824944110965731412",
                    "118593768360349656804313018744433059479",
                    "95125090922067735898500418138156253357",
                    "133233508096510069040242780843032803114",
                    "77982913052076482664472099039165346803"
                ]
            },
            "id": "ASB-A-256589724-aa0d0be4",
            "source": "https://android.googlesource.com/platform/packages/modules/NeuralNetworks/+/eca075e4b139c25168d2e79d6f1edc6fef2264a9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "common/ExecutionBurstController.cpp"
            },
            "signature_type": "Line"
        },
        {
            "digest": {
                "length": 1767.0,
                "function_hash": "295358130863967926135594061092512187055"
            },
            "id": "ASB-A-256589724-d2d92f15",
            "source": "https://android.googlesource.com/platform/packages/modules/NeuralNetworks/+/eca075e4b139c25168d2e79d6f1edc6fef2264a9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "common/ExecutionBurstController.cpp",
                "function": "deserialize"
            },
            "signature_type": "Function"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/packages/modules/NeuralNetworks/+/eca075e4b139c25168d2e79d6f1edc6fef2264a9"
    ],
    "spl": "2023-04-01",
    "severity": "High",
    "types": [
        "ID"
    ]
}

Android / platform/hardware/interfaces

Affected ranges

Type
ECOSYSTEM
Events
Introduced
13:0
Fixed
13:2023-04-01

Affected versions

Other

13

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "258936240265842369001214474606389420851",
                    "67127141091905790440884439550195604632",
                    "220799470805788336983581415642306881004",
                    "291864384393301778319638547021049498566",
                    "88501738905842173846684335360288751108",
                    "73307485366933303782063238234839980768",
                    "295104442348894419986804659818916564601",
                    "243962418303161964093048887675383940230",
                    "97843886294034601290999489087190071211",
                    "165386828937649914718428289980387390913",
                    "11931511089446026182231308167994015880",
                    "159496533902311688431160571868727599561",
                    "242806910691919255461510001730253229287",
                    "194143350651869087808192845356409604767",
                    "188886943887709504598248209066591086791",
                    "10733589751509687422890352659510036743",
                    "251620115730709364097076202328257987823",
                    "313983116626801778584339467598038568036",
                    "197524300521455156710587030026044243549",
                    "276965006152581251148300780323706224308",
                    "34451886923698954237275570467611581297",
                    "214563191510084356561108428258860590781",
                    "57123143209303562324855574776734359406",
                    "157993823631119413861206234886161691247",
                    "83634131393511181787791231606204861205",
                    "287976321819156104853842834446843307297",
                    "311335840811775105865748123308111313337",
                    "201570638034053653147017372302584819675",
                    "311733019529437733337277084529928019805",
                    "121869695089154575788628069842372423252",
                    "203190232108357505711697514642622290887",
                    "314284305837888217144972161334062082482",
                    "114519671015069055957437212107648152616",
                    "223432900803494282486432636819659718471",
                    "335177553005012904337160466665082829506",
                    "121572852740398778572825962382751733929",
                    "48957858928072073890343428012894859643",
                    "182016279549965653843536297199358328836",
                    "316214269018922106147698358279277526275",
                    "121988169288373218831862666656177472878",
                    "82508725388695598161940682944519932956",
                    "242769942935681994233252107541185265577",
                    "123856231364614735281224031788297546877",
                    "221981851201533590641987526090097737884",
                    "201155161166816384549182492857742328078",
                    "41937183409376880367064187929533574146",
                    "100063248667933676695480353778777903484",
                    "139952944465368576293610177642322462156",
                    "102727477991495766181174728926691152068",
                    "169542661602539972881732671535667371930",
                    "15796261823598025438626598825366895432",
                    "136431999255207745458720070954996962528",
                    "131095087641504816478181466650184804886",
                    "224926672149727652011889766093319571016",
                    "253134918112805918767710652127474697218",
                    "238755694775290659782278771374202491762",
                    "190580181784732427588283963227240323260",
                    "179120046003284067532781922116107501248",
                    "177217503346535043732180621465994759688",
                    "220303729453844545596139304257022688847",
                    "20138157677370623459850106209425449491",
                    "328526626325848901870193705462614269113",
                    "58143182437780746059912324449327527458",
                    "263789390756877295308414080642536302771",
                    "7362210855214347300030019690658657531",
                    "183321080146690896667456150078544040316",
                    "272950140693522775968604985355662017836",
                    "104943890989271120910640873129709994316",
                    "222446422353135745604833918865696303700",
                    "49353368941305368624468803225483570402",
                    "215894702394124621170772009084972713483",
                    "21935537315545032318905993324120958923",
                    "274722427855370225165262775004896107747",
                    "152525733464745549879680096020485132040",
                    "191748231573479922509567226583542197561",
                    "10143271909675517957333561266942616474",
                    "149135551179689730360005796088368834070",
                    "263579350189658086387057225594041156326",
                    "110964488793273933454962195640332068971",
                    "154159896539246972839145486662927340852",
                    "133233508096510069040242780843032803114",
                    "139388882475840577622625391168661340180"
                ]
            },
            "id": "ASB-A-256589724-3c138ed9",
            "source": "https://android.googlesource.com/platform/hardware/interfaces/+/67d9ebe9e6f0b661978b86f561f36865abeb0c37",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "neuralnetworks/1.2/utils/src/BurstUtils.cpp"
            },
            "signature_type": "Line"
        },
        {
            "digest": {
                "length": 3024.0,
                "function_hash": "71077937745876140453199012848175282855"
            },
            "id": "ASB-A-256589724-a8465f33",
            "source": "https://android.googlesource.com/platform/hardware/interfaces/+/67d9ebe9e6f0b661978b86f561f36865abeb0c37",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "neuralnetworks/1.2/utils/src/BurstUtils.cpp",
                "function": "deserialize"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 1678.0,
                "function_hash": "146009898177792842256457245540887739563"
            },
            "id": "ASB-A-256589724-ad3671ff",
            "source": "https://android.googlesource.com/platform/hardware/interfaces/+/67d9ebe9e6f0b661978b86f561f36865abeb0c37",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "neuralnetworks/1.2/utils/src/BurstUtils.cpp",
                "function": "deserialize"
            },
            "signature_type": "Function"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/hardware/interfaces/+/67d9ebe9e6f0b661978b86f561f36865abeb0c37"
    ],
    "spl": "2023-04-01",
    "severity": "High",
    "types": [
        "ID"
    ]
}

Android / platform/packages/modules/NeuralNetworks

Affected ranges

Type
ECOSYSTEM
Events
Introduced
13:0
Fixed
13:2023-04-01

Affected versions

Other

13

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 1767.0,
                "function_hash": "295358130863967926135594061092512187055"
            },
            "id": "ASB-A-256589724-1735c683",
            "source": "https://android.googlesource.com/platform/packages/modules/NeuralNetworks/+/e01280d59dde72217888780ff5dace2f8d70f37b",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "common/ExecutionBurstController.cpp",
                "function": "deserialize"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 3150.0,
                "function_hash": "201950178419631183605602934387619579487"
            },
            "id": "ASB-A-256589724-2f87d8e7",
            "source": "https://android.googlesource.com/platform/packages/modules/NeuralNetworks/+/e01280d59dde72217888780ff5dace2f8d70f37b",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "common/ExecutionBurstServer.cpp",
                "function": "deserialize"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "258936240265842369001214474606389420851",
                    "330520845293037462675132192081797988477",
                    "272432372487272007370724667017570782101",
                    "258149793143270144361536484397937693778",
                    "43033564574478708320493390563023856786",
                    "105825610056298761180010079237776375843",
                    "73307485366933303782063238234839980768",
                    "295104442348894419986804659818916564601",
                    "243962418303161964093048887675383940230",
                    "219534003137199132543422416881678292685",
                    "61790816110198771874353746663108503180",
                    "260679783374414124595305510619990137392",
                    "275337189345832960903039805323260978953",
                    "175507117189158875018283778669762189340",
                    "242806910691919255461510001730253229287",
                    "194143350651869087808192845356409604767",
                    "188886943887709504598248209066591086791",
                    "10733589751509687422890352659510036743",
                    "292046204280903614426582954563921742543",
                    "318007180842001454874017786176782724756",
                    "256499850455218687783044237325127819945",
                    "325678721008064791918199104978712855693",
                    "114372516616604988009560160820613659196",
                    "34451886923698954237275570467611581297",
                    "214563191510084356561108428258860590781",
                    "57123143209303562324855574776734359406",
                    "146964740147856871482285566895343031669",
                    "178405791292068390298945645815939700458",
                    "25047661947222408217384594305754334743",
                    "275337189345832960903039805323260978953",
                    "215502496679317107781104785210902824880",
                    "201570638034053653147017372302584819675",
                    "311733019529437733337277084529928019805",
                    "121869695089154575788628069842372423252",
                    "203190232108357505711697514642622290887",
                    "58247423955893553833777328868005771567",
                    "19176184816565820433296698062775929734",
                    "336960347193153699897521235082014985693",
                    "261913026810663344676254366578015320452",
                    "283014724995931080168274569180790599718",
                    "121572852740398778572825962382751733929",
                    "48957858928072073890343428012894859643",
                    "182016279549965653843536297199358328836",
                    "86573754988622594869845856596197639107",
                    "209371493270105031933823229484531046851",
                    "212847978889765966768547692077171533684",
                    "228678618741926552004641022088479503234",
                    "125719865205354383956463716256271756683",
                    "123856231364614735281224031788297546877",
                    "221981851201533590641987526090097737884",
                    "201155161166816384549182492857742328078",
                    "332148255420362409697230266588017596538",
                    "17267849771659122357710613272433588155",
                    "176169384524603374420568798065328716704",
                    "27218066183517471963987145827879164456",
                    "188766192993509968618548650523149512814",
                    "169542661602539972881732671535667371930",
                    "81513632172968190734539567367739348078",
                    "53219983538766625383473780822328052595",
                    "325681485131475907850271671576195205457",
                    "170921127321533424389013043045771649742"
                ]
            },
            "id": "ASB-A-256589724-372609f5",
            "source": "https://android.googlesource.com/platform/packages/modules/NeuralNetworks/+/e01280d59dde72217888780ff5dace2f8d70f37b",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "common/ExecutionBurstServer.cpp"
            },
            "signature_type": "Line"
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "271604990142106825508998291167308775543",
                    "320550076100077293380891899088846222134",
                    "180524833087293788887312871808831189793",
                    "25537682192006633300563758083832606300",
                    "231501321964567230477539834628409823536",
                    "339971192982341018130788124478800121191",
                    "220303729453844545596139304257022688847",
                    "20138157677370623459850106209425449491",
                    "283708925165649535694350450986114534692",
                    "40652931672072487608200446407036115515",
                    "214808593547702063102823867085959383976",
                    "172854655826931828534613842927135612413",
                    "91816677324702806910106495536146134277",
                    "242979027828898322489863680368834219176",
                    "272950140693522775968604985355662017836",
                    "104943890989271120910640873129709994316",
                    "222446422353135745604833918865696303700",
                    "212500204321704060894415674545201158279",
                    "286785287920450466752241603889993857662",
                    "262980543558957459895958360232893609580",
                    "110951377923587756120059917317595114395",
                    "244803301553952094648809759954878514312",
                    "152525733464745549879680096020485132040",
                    "191748231573479922509567226583542197561",
                    "270138197138345784180810323247560824125",
                    "286078704641314014643104655472435113424",
                    "320117382003116747112899689949231607629",
                    "20984343287988999270824944110965731412",
                    "118593768360349656804313018744433059479",
                    "95125090922067735898500418138156253357",
                    "133233508096510069040242780843032803114",
                    "77982913052076482664472099039165346803"
                ]
            },
            "id": "ASB-A-256589724-74321ec0",
            "source": "https://android.googlesource.com/platform/packages/modules/NeuralNetworks/+/e01280d59dde72217888780ff5dace2f8d70f37b",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "common/ExecutionBurstController.cpp"
            },
            "signature_type": "Line"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/packages/modules/NeuralNetworks/+/e01280d59dde72217888780ff5dace2f8d70f37b"
    ],
    "spl": "2023-04-01",
    "severity": "High",
    "types": [
        "ID"
    ]
}