Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2023-21246

In ShortcutInfo of ShortcutInfo.java, there is a possible way for an app to retain notification listening access due to an uncaught exception. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE
#android#google#java#auth

)]}’ { "commit": "fc1b9998ca8a9fceba47d67fd9ea9b45705b53e0", "tree": "6c9526cd89cf05d75df23d4b2f78568ef856a539", "parents": [ “a33159e8cb297b9eee6fa5c63c0e343d05fad622” ], "author": { "name": "András Kurucz", "email": "[email protected]", "time": “Fri Apr 21 09:45:07 2023 +0000” }, "committer": { "name": "Android Build Coastguard Worker", "email": "[email protected]", "time": “Thu May 11 18:40:29 2023 +0000” }, "message": "Truncate ShortcutInfo Id\n\nCreating Conversation with a ShortcutId longer than 65_535 (max unsigned short), we did not save the conversation settings into the notification_policy.xml due to a restriction in FastDataOutput.\nThis put us to a state where the user changing the importance or turning off the notifications for the given conversation had no effect on notification behavior.\n\nFixes: 273729476\nTest: atest ShortcutManagerTest2\nTest: Create a test app which creates a Conversation with a long shortcutId. Go to the Conversation Settings and turn off Notifications. Post a new Notification to this Conversation and see if it is displayed.\n(cherry picked from https://googleplex-android-review.googlesource.com/q/commit:d31fe58376000d1337a1c57bdac2c018b670b2ec)\nMerged-In: I2617de6f9e8a7dbfd8fbeff589a7d592f00d87c5\nChange-Id: I2617de6f9e8a7dbfd8fbeff589a7d592f00d87c5\n", "tree_diff": [ { "type": "modify", "old_id": "52774e354c90106e87c77b019124aad72098f4e3", "old_mode": 33188, "old_path": "core/java/android/content/pm/ShortcutInfo.java", "new_id": "c33390398400e9dbbf2af2dedf2759cdc4b52711", "new_mode": 33188, "new_path": “core/java/android/content/pm/ShortcutInfo.java” }, { "type": "modify", "old_id": "c78678431dacdc5499a523a725908804674f16b9", "old_mode": 33188, "old_path": "services/tests/servicestests/src/com/android/server/pm/ShortcutManagerTest2.java", "new_id": "86d4655e9d3a6758963a9a0207a2d2e83f38c915", "new_mode": 33188, "new_path": “services/tests/servicestests/src/com/android/server/pm/ShortcutManagerTest2.java” } ] }

Related news

CVE-2023-21256: Android Security Bulletin—July 2023

In SettingsHomepageActivity.java, there is a possible way to launch arbitrary activities via Settings due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE-2023-6905
CVE-2023-6903
CVE-2023-6904
CVE-2023-3907