ASB-A-279905816

See a problem?
Import Source
https://storage.googleapis.com/android-osv/ASB-A-279905816.json
JSON Data
https://api.osv.dev/v1/vulns/ASB-A-279905816
Aliases
  • A-279905816
  • CVE-2023-21262
Published
2023-07-01T00:00:00Z
Modified
2024-08-07T19:29:53.394626Z
Summary
WhatsApp able to use microphone even after permissions revoked & app force stop in Android 13 Pixel 6
Details

In startInput of AudioPolicyInterfaceImpl.cpp, there is a possible way of erroneously displaying the microphone privacy indicator due to a race condition. This could lead to false user expectations. User interaction is needed for exploitation.

References

Affected packages

Android / platform/frameworks/av

Affected ranges

Type
ECOSYSTEM
Events
Introduced
13-next:0
Fixed
13-next:2023-07-01

Affected versions

Other

13-next

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "67143875893967174446343595869907359589",
                    "335933756978326126128445272841882169407",
                    "161054698725540581191784931932070923553",
                    "256632137180800739713874103518187499580",
                    "153292489787064717128127344459399158964"
                ]
            },
            "id": "ASB-A-279905816-5f328cb7",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/e7720b379bfaba648ab6d85c4c2df6f03ec854d3",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/audiopolicy/service/AudioPolicyInterfaceImpl.cpp"
            },
            "signature_type": "Line"
        },
        {
            "digest": {
                "length": 3372.0,
                "function_hash": "257804868916410060081743080434630063057"
            },
            "id": "ASB-A-279905816-64b177a6",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/e7720b379bfaba648ab6d85c4c2df6f03ec854d3",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/audiopolicy/service/AudioPolicyInterfaceImpl.cpp",
                "function": "AudioPolicyService::startInput"
            },
            "signature_type": "Function"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/av/+/e7720b379bfaba648ab6d85c4c2df6f03ec854d3"
    ],
    "spl": "2023-07-01",
    "severity": "High",
    "types": [
        "EoP"
    ]
}

Android / platform/frameworks/av

Affected ranges

Type
ECOSYSTEM
Events
Introduced
12:0
Fixed
12:2023-07-01

Affected versions

Other

12

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 3251.0,
                "function_hash": "31525562217185009710177359193697764237"
            },
            "id": "ASB-A-279905816-1c277810",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/12e41309c3e6bde85430c288e469fc1776835db0",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/audiopolicy/service/AudioPolicyInterfaceImpl.cpp",
                "function": "AudioPolicyService::startInput"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "67143875893967174446343595869907359589",
                    "335933756978326126128445272841882169407",
                    "161054698725540581191784931932070923553",
                    "256632137180800739713874103518187499580",
                    "153292489787064717128127344459399158964"
                ]
            },
            "id": "ASB-A-279905816-a4eac14b",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/12e41309c3e6bde85430c288e469fc1776835db0",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/audiopolicy/service/AudioPolicyInterfaceImpl.cpp"
            },
            "signature_type": "Line"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/av/+/12e41309c3e6bde85430c288e469fc1776835db0"
    ],
    "spl": "2023-07-01",
    "severity": "High",
    "types": [
        "EoP"
    ]
}

Android / platform/frameworks/av

Affected ranges

Type
ECOSYSTEM
Events
Introduced
12L:0
Fixed
12L:2023-07-01

Affected versions

Other

12L

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 3251.0,
                "function_hash": "31525562217185009710177359193697764237"
            },
            "id": "ASB-A-279905816-082ee070",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/12e41309c3e6bde85430c288e469fc1776835db0",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/audiopolicy/service/AudioPolicyInterfaceImpl.cpp",
                "function": "AudioPolicyService::startInput"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "67143875893967174446343595869907359589",
                    "335933756978326126128445272841882169407",
                    "161054698725540581191784931932070923553",
                    "256632137180800739713874103518187499580",
                    "153292489787064717128127344459399158964"
                ]
            },
            "id": "ASB-A-279905816-899f11f6",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/12e41309c3e6bde85430c288e469fc1776835db0",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/audiopolicy/service/AudioPolicyInterfaceImpl.cpp"
            },
            "signature_type": "Line"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/av/+/12e41309c3e6bde85430c288e469fc1776835db0"
    ],
    "spl": "2023-07-01",
    "severity": "High",
    "types": [
        "EoP"
    ]
}

Android / platform/frameworks/av

Affected ranges

Type
ECOSYSTEM
Events
Introduced
13:0
Fixed
13:2023-07-01

Affected versions

Other

13

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "67143875893967174446343595869907359589",
                    "335933756978326126128445272841882169407",
                    "161054698725540581191784931932070923553",
                    "256632137180800739713874103518187499580",
                    "153292489787064717128127344459399158964"
                ]
            },
            "id": "ASB-A-279905816-68d1362f",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/2951ad10a6641f9b3554d674877ad314e8cc011f",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/audiopolicy/service/AudioPolicyInterfaceImpl.cpp"
            },
            "signature_type": "Line"
        },
        {
            "digest": {
                "length": 3372.0,
                "function_hash": "257804868916410060081743080434630063057"
            },
            "id": "ASB-A-279905816-cb0b9985",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/2951ad10a6641f9b3554d674877ad314e8cc011f",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/audiopolicy/service/AudioPolicyInterfaceImpl.cpp",
                "function": "AudioPolicyService::startInput"
            },
            "signature_type": "Function"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/av/+/2951ad10a6641f9b3554d674877ad314e8cc011f"
    ],
    "spl": "2023-07-01",
    "severity": "High",
    "types": [
        "EoP"
    ]
}