ASB-A-298057702

See a problem?
Import Source
https://storage.googleapis.com/android-osv/ASB-A-298057702.json
JSON Data
https://api.osv.dev/v1/vulns/ASB-A-298057702
Aliases
  • A-298057702
  • CVE-2023-40077
Published
2023-12-01T00:00:00Z
Modified
2024-08-07T19:29:38.016761Z
Summary
use-after-free in libstagefright_httplive
Details

In multiple functions of MetaDataBase.cpp, there is a possible UAF write due to a race condition. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

References

Affected packages

Android / platform/frameworks/av

Affected ranges

Type
ECOSYSTEM
Events
Introduced
14-next:0
Fixed
14-next:2023-12-01

Affected versions

Other

14-next

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "244319712793244425102007124655707433228",
                    "260118210064859206548348440852154892820",
                    "100957007211784539508826744850153929967",
                    "272796453660105516353111201915921380203",
                    "226576312175207538758640357804206738183",
                    "32528416037915169947029207358397201679",
                    "234479922790555306085990354585645107173",
                    "175005767325615549808831198920653265655",
                    "326878793529054592505717251685389394899",
                    "273211442842194810386650410472658375008",
                    "130589996484598312861762658065314759364",
                    "72405015742117409050157966040669010540",
                    "286769495337028016553883545483357657076",
                    "1365179774077916083917231208033050894",
                    "146271763818314134856869573962125950376",
                    "79537611373386822965055253316006374131",
                    "203332525672315243695055440988382590601",
                    "207306234918555656951594550531012609884",
                    "37054623378801301460500002254675361703",
                    "248396142990988958783921854904333739096",
                    "29124664604950481010426928877134330283",
                    "321504687895118151851930274551020450220",
                    "269440994916920168440537378510609415081",
                    "114118145041772818619173878280373624090",
                    "88367295062945091298180690726376565026",
                    "204257197674564862692249767499332680936",
                    "242903581933114961860732313952182262463",
                    "225136740585580171414302455120559554796",
                    "108916889757061919262848430782804157026",
                    "46319670440565651627674789641159609694",
                    "170817521390960710972998028979264681752",
                    "32893598990312446918282275528455861729",
                    "3355994305371326062997009229290898422",
                    "15600682338450327382560076975837243885",
                    "125354958160092802429146562220425657449",
                    "145223589000727474561977894963958446316",
                    "227892277488239637546648527374123349457"
                ]
            },
            "id": "ASB-A-298057702-164b0e19",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/90fb4ca425444429ada6ce0de1c13d35829bc196",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/module/foundation/MetaDataBase.cpp"
            },
            "signature_type": "Line"
        },
        {
            "digest": {
                "length": 73.0,
                "function_hash": "53306167433269421111706409143521071482"
            },
            "id": "ASB-A-298057702-38b930e8",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/90fb4ca425444429ada6ce0de1c13d35829bc196",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/module/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::clear"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 349.0,
                "function_hash": "22971970037536531725100604479695516728"
            },
            "id": "ASB-A-298057702-55d186f3",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/90fb4ca425444429ada6ce0de1c13d35829bc196",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/module/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::dumpToLog"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 207.0,
                "function_hash": "55173831832855155563492366957021512072"
            },
            "id": "ASB-A-298057702-6462224d",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/90fb4ca425444429ada6ce0de1c13d35829bc196",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/module/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::remove"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 164.0,
                "function_hash": "245559816575705263568317161581911053966"
            },
            "id": "ASB-A-298057702-86176428",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/90fb4ca425444429ada6ce0de1c13d35829bc196",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/module/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::hasData"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 395.0,
                "function_hash": "175696268568583217842178294542562977543"
            },
            "id": "ASB-A-298057702-9573264c",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/90fb4ca425444429ada6ce0de1c13d35829bc196",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/module/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::setData"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 327.0,
                "function_hash": "48664191158994694456287320300999414801"
            },
            "id": "ASB-A-298057702-97b44d7c",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/90fb4ca425444429ada6ce0de1c13d35829bc196",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/module/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::findData"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 428.0,
                "function_hash": "188048871823142734216492310045652806664"
            },
            "id": "ASB-A-298057702-b41f8d14",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/90fb4ca425444429ada6ce0de1c13d35829bc196",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/module/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::toString"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 944.0,
                "function_hash": "194709428110958800386906704381491643876"
            },
            "id": "ASB-A-298057702-c8f24a39",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/90fb4ca425444429ada6ce0de1c13d35829bc196",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/module/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::writeToParcel"
            },
            "signature_type": "Function"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/av/+/90fb4ca425444429ada6ce0de1c13d35829bc196"
    ],
    "spl": "2023-12-01",
    "severity": "Critical",
    "types": [
        "EoP"
    ]
}

Android / platform/frameworks/av

Affected ranges

Type
ECOSYSTEM
Events
Introduced
11:0
Fixed
11:2023-12-01

Affected versions

Other

11

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 327.0,
                "function_hash": "48664191158994694456287320300999414801"
            },
            "id": "ASB-A-298057702-1c3212de",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/libstagefright/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::findData"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 207.0,
                "function_hash": "55173831832855155563492366957021512072"
            },
            "id": "ASB-A-298057702-322c6c86",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/libstagefright/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::remove"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 164.0,
                "function_hash": "245559816575705263568317161581911053966"
            },
            "id": "ASB-A-298057702-409fc5a7",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/libstagefright/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::hasData"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 73.0,
                "function_hash": "53306167433269421111706409143521071482"
            },
            "id": "ASB-A-298057702-689e189c",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/libstagefright/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::clear"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 944.0,
                "function_hash": "194709428110958800386906704381491643876"
            },
            "id": "ASB-A-298057702-babe4ee1",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/libstagefright/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::writeToParcel"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 350.0,
                "function_hash": "309146812019522743025181760492134961754"
            },
            "id": "ASB-A-298057702-e273d193",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/libstagefright/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::dumpToLog"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "244319712793244425102007124655707433228",
                    "260118210064859206548348440852154892820",
                    "100957007211784539508826744850153929967",
                    "272796453660105516353111201915921380203",
                    "226576312175207538758640357804206738183",
                    "32528416037915169947029207358397201679",
                    "234479922790555306085990354585645107173",
                    "175005767325615549808831198920653265655",
                    "326878793529054592505717251685389394899",
                    "273211442842194810386650410472658375008",
                    "130589996484598312861762658065314759364",
                    "72405015742117409050157966040669010540",
                    "286769495337028016553883545483357657076",
                    "1365179774077916083917231208033050894",
                    "146271763818314134856869573962125950376",
                    "79537611373386822965055253316006374131",
                    "203332525672315243695055440988382590601",
                    "207306234918555656951594550531012609884",
                    "37054623378801301460500002254675361703",
                    "248396142990988958783921854904333739096",
                    "29124664604950481010426928877134330283",
                    "321504687895118151851930274551020450220",
                    "269440994916920168440537378510609415081",
                    "114118145041772818619173878280373624090",
                    "88367295062945091298180690726376565026",
                    "204257197674564862692249767499332680936",
                    "242903581933114961860732313952182262463",
                    "225136740585580171414302455120559554796",
                    "108916889757061919262848430782804157026",
                    "46319670440565651627674789641159609694",
                    "170817521390960710972998028979264681752",
                    "32893598990312446918282275528455861729",
                    "3355994305371326062997009229290898422",
                    "57039235074992601129765161197659465993",
                    "188042787196234033121544054866144156065",
                    "145223589000727474561977894963958446316",
                    "227892277488239637546648527374123349457"
                ]
            },
            "id": "ASB-A-298057702-e6918dbb",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/libstagefright/foundation/MetaDataBase.cpp"
            },
            "signature_type": "Line"
        },
        {
            "digest": {
                "length": 395.0,
                "function_hash": "175696268568583217842178294542562977543"
            },
            "id": "ASB-A-298057702-f15e583b",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/libstagefright/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::setData"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 429.0,
                "function_hash": "29780867610742078482622038467121351946"
            },
            "id": "ASB-A-298057702-f5e43e7a",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/libstagefright/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::toString"
            },
            "signature_type": "Function"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9"
    ],
    "spl": "2023-12-01",
    "severity": "Critical",
    "types": [
        "EoP"
    ]
}

Android / platform/frameworks/av

Affected ranges

Type
ECOSYSTEM
Events
Introduced
12:0
Fixed
12:2023-12-01

Affected versions

Other

12

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 73.0,
                "function_hash": "53306167433269421111706409143521071482"
            },
            "id": "ASB-A-298057702-0f97a075",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/libstagefright/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::clear"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "244319712793244425102007124655707433228",
                    "260118210064859206548348440852154892820",
                    "100957007211784539508826744850153929967",
                    "272796453660105516353111201915921380203",
                    "226576312175207538758640357804206738183",
                    "32528416037915169947029207358397201679",
                    "234479922790555306085990354585645107173",
                    "175005767325615549808831198920653265655",
                    "326878793529054592505717251685389394899",
                    "273211442842194810386650410472658375008",
                    "130589996484598312861762658065314759364",
                    "72405015742117409050157966040669010540",
                    "286769495337028016553883545483357657076",
                    "1365179774077916083917231208033050894",
                    "146271763818314134856869573962125950376",
                    "79537611373386822965055253316006374131",
                    "203332525672315243695055440988382590601",
                    "207306234918555656951594550531012609884",
                    "37054623378801301460500002254675361703",
                    "248396142990988958783921854904333739096",
                    "29124664604950481010426928877134330283",
                    "321504687895118151851930274551020450220",
                    "269440994916920168440537378510609415081",
                    "114118145041772818619173878280373624090",
                    "88367295062945091298180690726376565026",
                    "204257197674564862692249767499332680936",
                    "242903581933114961860732313952182262463",
                    "225136740585580171414302455120559554796",
                    "108916889757061919262848430782804157026",
                    "46319670440565651627674789641159609694",
                    "170817521390960710972998028979264681752",
                    "32893598990312446918282275528455861729",
                    "3355994305371326062997009229290898422",
                    "57039235074992601129765161197659465993",
                    "188042787196234033121544054866144156065",
                    "145223589000727474561977894963958446316",
                    "227892277488239637546648527374123349457"
                ]
            },
            "id": "ASB-A-298057702-1faab949",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/libstagefright/foundation/MetaDataBase.cpp"
            },
            "signature_type": "Line"
        },
        {
            "digest": {
                "length": 429.0,
                "function_hash": "29780867610742078482622038467121351946"
            },
            "id": "ASB-A-298057702-43564994",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/libstagefright/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::toString"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 164.0,
                "function_hash": "245559816575705263568317161581911053966"
            },
            "id": "ASB-A-298057702-4aa43689",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/libstagefright/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::hasData"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 350.0,
                "function_hash": "309146812019522743025181760492134961754"
            },
            "id": "ASB-A-298057702-65e507c2",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/libstagefright/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::dumpToLog"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 395.0,
                "function_hash": "175696268568583217842178294542562977543"
            },
            "id": "ASB-A-298057702-7e6f072a",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/libstagefright/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::setData"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 207.0,
                "function_hash": "55173831832855155563492366957021512072"
            },
            "id": "ASB-A-298057702-8d063426",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/libstagefright/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::remove"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 944.0,
                "function_hash": "194709428110958800386906704381491643876"
            },
            "id": "ASB-A-298057702-dd20e1ec",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/libstagefright/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::writeToParcel"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 327.0,
                "function_hash": "48664191158994694456287320300999414801"
            },
            "id": "ASB-A-298057702-ecd878b8",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/libstagefright/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::findData"
            },
            "signature_type": "Function"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9"
    ],
    "spl": "2023-12-01",
    "severity": "Critical",
    "types": [
        "EoP"
    ]
}

Android / platform/frameworks/av

Affected ranges

Type
ECOSYSTEM
Events
Introduced
12L:0
Fixed
12L:2023-12-01

Affected versions

Other

12L

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 164.0,
                "function_hash": "245559816575705263568317161581911053966"
            },
            "id": "ASB-A-298057702-0fb9d10f",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/libstagefright/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::hasData"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 350.0,
                "function_hash": "309146812019522743025181760492134961754"
            },
            "id": "ASB-A-298057702-13ea5a2c",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/libstagefright/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::dumpToLog"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 944.0,
                "function_hash": "194709428110958800386906704381491643876"
            },
            "id": "ASB-A-298057702-330ddfa0",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/libstagefright/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::writeToParcel"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 207.0,
                "function_hash": "55173831832855155563492366957021512072"
            },
            "id": "ASB-A-298057702-51ec40c7",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/libstagefright/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::remove"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 395.0,
                "function_hash": "175696268568583217842178294542562977543"
            },
            "id": "ASB-A-298057702-5d8b9f36",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/libstagefright/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::setData"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 327.0,
                "function_hash": "48664191158994694456287320300999414801"
            },
            "id": "ASB-A-298057702-87397bdb",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/libstagefright/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::findData"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 429.0,
                "function_hash": "29780867610742078482622038467121351946"
            },
            "id": "ASB-A-298057702-a6fe1cc8",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/libstagefright/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::toString"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 73.0,
                "function_hash": "53306167433269421111706409143521071482"
            },
            "id": "ASB-A-298057702-b12d52fa",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/libstagefright/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::clear"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "244319712793244425102007124655707433228",
                    "260118210064859206548348440852154892820",
                    "100957007211784539508826744850153929967",
                    "272796453660105516353111201915921380203",
                    "226576312175207538758640357804206738183",
                    "32528416037915169947029207358397201679",
                    "234479922790555306085990354585645107173",
                    "175005767325615549808831198920653265655",
                    "326878793529054592505717251685389394899",
                    "273211442842194810386650410472658375008",
                    "130589996484598312861762658065314759364",
                    "72405015742117409050157966040669010540",
                    "286769495337028016553883545483357657076",
                    "1365179774077916083917231208033050894",
                    "146271763818314134856869573962125950376",
                    "79537611373386822965055253316006374131",
                    "203332525672315243695055440988382590601",
                    "207306234918555656951594550531012609884",
                    "37054623378801301460500002254675361703",
                    "248396142990988958783921854904333739096",
                    "29124664604950481010426928877134330283",
                    "321504687895118151851930274551020450220",
                    "269440994916920168440537378510609415081",
                    "114118145041772818619173878280373624090",
                    "88367295062945091298180690726376565026",
                    "204257197674564862692249767499332680936",
                    "242903581933114961860732313952182262463",
                    "225136740585580171414302455120559554796",
                    "108916889757061919262848430782804157026",
                    "46319670440565651627674789641159609694",
                    "170817521390960710972998028979264681752",
                    "32893598990312446918282275528455861729",
                    "3355994305371326062997009229290898422",
                    "57039235074992601129765161197659465993",
                    "188042787196234033121544054866144156065",
                    "145223589000727474561977894963958446316",
                    "227892277488239637546648527374123349457"
                ]
            },
            "id": "ASB-A-298057702-e36f85b6",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/libstagefright/foundation/MetaDataBase.cpp"
            },
            "signature_type": "Line"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9"
    ],
    "spl": "2023-12-01",
    "severity": "Critical",
    "types": [
        "EoP"
    ]
}

Android / platform/frameworks/av

Affected ranges

Type
ECOSYSTEM
Events
Introduced
13:0
Fixed
13:2023-12-01

Affected versions

Other

13

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 350.0,
                "function_hash": "309146812019522743025181760492134961754"
            },
            "id": "ASB-A-298057702-050b257e",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/libstagefright/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::dumpToLog"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 73.0,
                "function_hash": "53306167433269421111706409143521071482"
            },
            "id": "ASB-A-298057702-34a57b6b",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/libstagefright/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::clear"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 429.0,
                "function_hash": "29780867610742078482622038467121351946"
            },
            "id": "ASB-A-298057702-8b1e10ad",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/libstagefright/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::toString"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 327.0,
                "function_hash": "48664191158994694456287320300999414801"
            },
            "id": "ASB-A-298057702-9429d16c",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/libstagefright/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::findData"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 395.0,
                "function_hash": "175696268568583217842178294542562977543"
            },
            "id": "ASB-A-298057702-a4c7a300",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/libstagefright/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::setData"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 207.0,
                "function_hash": "55173831832855155563492366957021512072"
            },
            "id": "ASB-A-298057702-b6388577",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/libstagefright/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::remove"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 944.0,
                "function_hash": "194709428110958800386906704381491643876"
            },
            "id": "ASB-A-298057702-ce514813",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/libstagefright/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::writeToParcel"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "244319712793244425102007124655707433228",
                    "260118210064859206548348440852154892820",
                    "100957007211784539508826744850153929967",
                    "272796453660105516353111201915921380203",
                    "226576312175207538758640357804206738183",
                    "32528416037915169947029207358397201679",
                    "234479922790555306085990354585645107173",
                    "175005767325615549808831198920653265655",
                    "326878793529054592505717251685389394899",
                    "273211442842194810386650410472658375008",
                    "130589996484598312861762658065314759364",
                    "72405015742117409050157966040669010540",
                    "286769495337028016553883545483357657076",
                    "1365179774077916083917231208033050894",
                    "146271763818314134856869573962125950376",
                    "79537611373386822965055253316006374131",
                    "203332525672315243695055440988382590601",
                    "207306234918555656951594550531012609884",
                    "37054623378801301460500002254675361703",
                    "248396142990988958783921854904333739096",
                    "29124664604950481010426928877134330283",
                    "321504687895118151851930274551020450220",
                    "269440994916920168440537378510609415081",
                    "114118145041772818619173878280373624090",
                    "88367295062945091298180690726376565026",
                    "204257197674564862692249767499332680936",
                    "242903581933114961860732313952182262463",
                    "225136740585580171414302455120559554796",
                    "108916889757061919262848430782804157026",
                    "46319670440565651627674789641159609694",
                    "170817521390960710972998028979264681752",
                    "32893598990312446918282275528455861729",
                    "3355994305371326062997009229290898422",
                    "57039235074992601129765161197659465993",
                    "188042787196234033121544054866144156065",
                    "145223589000727474561977894963958446316",
                    "227892277488239637546648527374123349457"
                ]
            },
            "id": "ASB-A-298057702-ddc7b76a",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/libstagefright/foundation/MetaDataBase.cpp"
            },
            "signature_type": "Line"
        },
        {
            "digest": {
                "length": 164.0,
                "function_hash": "245559816575705263568317161581911053966"
            },
            "id": "ASB-A-298057702-f27d09df",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/libstagefright/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::hasData"
            },
            "signature_type": "Function"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/av/+/3c1d9613ef64e01d2e81c4aa44c90dcd8ca958b9"
    ],
    "spl": "2023-12-01",
    "severity": "Critical",
    "types": [
        "EoP"
    ]
}

Android / platform/frameworks/av

Affected ranges

Type
ECOSYSTEM
Events
Introduced
14:0
Fixed
14:2023-12-01

Affected versions

Other

14

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 73.0,
                "function_hash": "53306167433269421111706409143521071482"
            },
            "id": "ASB-A-298057702-012aa645",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/300e148b8e80387fa5c9a69feb38f8af53541d19",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/module/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::clear"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 429.0,
                "function_hash": "29780867610742078482622038467121351946"
            },
            "id": "ASB-A-298057702-05d30357",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/300e148b8e80387fa5c9a69feb38f8af53541d19",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/module/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::toString"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 207.0,
                "function_hash": "55173831832855155563492366957021512072"
            },
            "id": "ASB-A-298057702-208f4ea7",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/300e148b8e80387fa5c9a69feb38f8af53541d19",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/module/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::remove"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 944.0,
                "function_hash": "194709428110958800386906704381491643876"
            },
            "id": "ASB-A-298057702-4e828a57",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/300e148b8e80387fa5c9a69feb38f8af53541d19",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/module/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::writeToParcel"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "244319712793244425102007124655707433228",
                    "260118210064859206548348440852154892820",
                    "100957007211784539508826744850153929967",
                    "272796453660105516353111201915921380203",
                    "226576312175207538758640357804206738183",
                    "32528416037915169947029207358397201679",
                    "234479922790555306085990354585645107173",
                    "175005767325615549808831198920653265655",
                    "326878793529054592505717251685389394899",
                    "273211442842194810386650410472658375008",
                    "130589996484598312861762658065314759364",
                    "72405015742117409050157966040669010540",
                    "286769495337028016553883545483357657076",
                    "1365179774077916083917231208033050894",
                    "146271763818314134856869573962125950376",
                    "79537611373386822965055253316006374131",
                    "203332525672315243695055440988382590601",
                    "207306234918555656951594550531012609884",
                    "37054623378801301460500002254675361703",
                    "248396142990988958783921854904333739096",
                    "29124664604950481010426928877134330283",
                    "321504687895118151851930274551020450220",
                    "269440994916920168440537378510609415081",
                    "114118145041772818619173878280373624090",
                    "88367295062945091298180690726376565026",
                    "204257197674564862692249767499332680936",
                    "242903581933114961860732313952182262463",
                    "225136740585580171414302455120559554796",
                    "108916889757061919262848430782804157026",
                    "46319670440565651627674789641159609694",
                    "170817521390960710972998028979264681752",
                    "32893598990312446918282275528455861729",
                    "3355994305371326062997009229290898422",
                    "15600682338450327382560076975837243885",
                    "125354958160092802429146562220425657449",
                    "145223589000727474561977894963958446316",
                    "227892277488239637546648527374123349457"
                ]
            },
            "id": "ASB-A-298057702-5c36d140",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/300e148b8e80387fa5c9a69feb38f8af53541d19",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/module/foundation/MetaDataBase.cpp"
            },
            "signature_type": "Line"
        },
        {
            "digest": {
                "length": 327.0,
                "function_hash": "48664191158994694456287320300999414801"
            },
            "id": "ASB-A-298057702-d067220f",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/300e148b8e80387fa5c9a69feb38f8af53541d19",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/module/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::findData"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 350.0,
                "function_hash": "309146812019522743025181760492134961754"
            },
            "id": "ASB-A-298057702-dffb1bec",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/300e148b8e80387fa5c9a69feb38f8af53541d19",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/module/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::dumpToLog"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 164.0,
                "function_hash": "245559816575705263568317161581911053966"
            },
            "id": "ASB-A-298057702-e537e403",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/300e148b8e80387fa5c9a69feb38f8af53541d19",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/module/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::hasData"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 395.0,
                "function_hash": "175696268568583217842178294542562977543"
            },
            "id": "ASB-A-298057702-e670f658",
            "source": "https://android.googlesource.com/platform/frameworks/av/+/300e148b8e80387fa5c9a69feb38f8af53541d19",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "media/module/foundation/MetaDataBase.cpp",
                "function": "MetaDataBase::setData"
            },
            "signature_type": "Function"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/av/+/300e148b8e80387fa5c9a69feb38f8af53541d19"
    ],
    "spl": "2023-12-01",
    "severity": "Critical",
    "types": [
        "EoP"
    ]
}