In multiple locations, there is a possible permission bypass due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
{ "vanir_signatures": [ { "digest": { "threshold": 0.9, "line_hashes": [ "195550402797816292588254912733162168417", "222726315588530079562870485722224082572", "78024095867342747406732826113626643203" ] }, "id": "ASB-A-267231571-50be1bb8", "source": "https://android.googlesource.com/platform/frameworks/base/+/922e52bc3d2a6576cc3e45268dfc3ecd3550f45f", "deprecated": false, "signature_version": "v1", "target": { "file": "core/java/android/content/AttributionSource.java" }, "signature_type": "Line" }, { "digest": { "length": 118.0, "function_hash": "65482561538392167503070118561692593568" }, "id": "ASB-A-267231571-a7437eb9", "source": "https://android.googlesource.com/platform/frameworks/base/+/922e52bc3d2a6576cc3e45268dfc3ecd3550f45f", "deprecated": false, "signature_version": "v1", "target": { "file": "core/java/android/content/AttributionSource.java", "function": "AttributionSource" }, "signature_type": "Function" } ], "fixes": [ "https://android.googlesource.com/platform/frameworks/base/+/922e52bc3d2a6576cc3e45268dfc3ecd3550f45f" ], "spl": "2024-06-01", "severity": "High", "types": [ "EoP" ] }
{ "vanir_signatures": [ { "digest": { "length": 118.0, "function_hash": "65482561538392167503070118561692593568" }, "id": "ASB-A-267231571-214cc72e", "source": "https://android.googlesource.com/platform/frameworks/base/+/694ba52858703c3959e6811edb9b3df32aeca702", "deprecated": false, "signature_version": "v1", "target": { "file": "core/java/android/content/AttributionSource.java", "function": "AttributionSource" }, "signature_type": "Function" }, { "digest": { "threshold": 0.9, "line_hashes": [ "85608146440550624711451569515011265786", "134667738726446689465885015204823379435", "193516609944774318276346078664239869520", "72504497297320099541759337590342829110", "143564837106201668626758104559472530739", "81080628058858943913114647875447428095", "62910983559400613884819492693008982423", "35496733709311527721067366405464355179", "195550402797816292588254912733162168417", "222726315588530079562870485722224082572", "78024095867342747406732826113626643203", "184341647606462936188424543868571227788" ] }, "id": "ASB-A-267231571-eaab9820", "source": "https://android.googlesource.com/platform/frameworks/base/+/694ba52858703c3959e6811edb9b3df32aeca702", "deprecated": false, "signature_version": "v1", "target": { "file": "core/java/android/content/AttributionSource.java" }, "signature_type": "Line" } ], "fixes": [ "https://android.googlesource.com/platform/frameworks/base/+/694ba52858703c3959e6811edb9b3df32aeca702" ], "spl": "2024-06-01", "severity": "High", "types": [ "EoP" ] }
{ "vanir_signatures": [ { "digest": { "length": 118.0, "function_hash": "65482561538392167503070118561692593568" }, "id": "ASB-A-267231571-3449e761", "source": "https://android.googlesource.com/platform/frameworks/base/+/694ba52858703c3959e6811edb9b3df32aeca702", "deprecated": false, "signature_version": "v1", "target": { "file": "core/java/android/content/AttributionSource.java", "function": "AttributionSource" }, "signature_type": "Function" }, { "digest": { "threshold": 0.9, "line_hashes": [ "85608146440550624711451569515011265786", "134667738726446689465885015204823379435", "193516609944774318276346078664239869520", "72504497297320099541759337590342829110", "143564837106201668626758104559472530739", "81080628058858943913114647875447428095", "62910983559400613884819492693008982423", "35496733709311527721067366405464355179", "195550402797816292588254912733162168417", "222726315588530079562870485722224082572", "78024095867342747406732826113626643203", "184341647606462936188424543868571227788" ] }, "id": "ASB-A-267231571-dd46d33b", "source": "https://android.googlesource.com/platform/frameworks/base/+/694ba52858703c3959e6811edb9b3df32aeca702", "deprecated": false, "signature_version": "v1", "target": { "file": "core/java/android/content/AttributionSource.java" }, "signature_type": "Line" } ], "fixes": [ "https://android.googlesource.com/platform/frameworks/base/+/694ba52858703c3959e6811edb9b3df32aeca702" ], "spl": "2024-06-01", "severity": "High", "types": [ "EoP" ] }
{ "vanir_signatures": [ { "digest": { "length": 118.0, "function_hash": "65482561538392167503070118561692593568" }, "id": "ASB-A-267231571-8d6d74a9", "source": "https://android.googlesource.com/platform/frameworks/base/+/5d79e535b9a802680062545e15fc1faaf779c0bf", "deprecated": false, "signature_version": "v1", "target": { "file": "core/java/android/content/AttributionSource.java", "function": "AttributionSource" }, "signature_type": "Function" }, { "digest": { "threshold": 0.9, "line_hashes": [ "85608146440550624711451569515011265786", "134667738726446689465885015204823379435", "193516609944774318276346078664239869520", "72504497297320099541759337590342829110", "143564837106201668626758104559472530739", "81080628058858943913114647875447428095", "62910983559400613884819492693008982423", "35496733709311527721067366405464355179", "195550402797816292588254912733162168417", "222726315588530079562870485722224082572", "78024095867342747406732826113626643203", "184341647606462936188424543868571227788" ] }, "id": "ASB-A-267231571-d5ae90aa", "source": "https://android.googlesource.com/platform/frameworks/base/+/5d79e535b9a802680062545e15fc1faaf779c0bf", "deprecated": false, "signature_version": "v1", "target": { "file": "core/java/android/content/AttributionSource.java" }, "signature_type": "Line" } ], "fixes": [ "https://android.googlesource.com/platform/frameworks/base/+/5d79e535b9a802680062545e15fc1faaf779c0bf" ], "spl": "2024-06-01", "severity": "High", "types": [ "EoP" ] }