Headline
CVE-2023-21244
In visitUris of Notification.java, there is a possible bypass of user profile boundaries due to a missing permission check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.
)]}’ { "commit": "20aedba4998373addc2befcc455a118585559fef", "tree": "340811a95a87f990ed276f6ee25de0521cdbd9e7", "parents": [ “593ee4d787b7480da68c54de66f8e3c7cdf8b857” ], "author": { "name": "Ioana Alexandru", "email": "[email protected]", "time": “Mon Jul 03 16:29:47 2023 +0000” }, "committer": { "name": "Android Build Coastguard Worker", "email": "[email protected]", "time": “Thu Jul 06 04:03:21 2023 +0000” }, "message": "DO NOT MERGE Revert \"Verify URI permissions for EXTRA_REMOTE_INPUT_HISTORY_ITEMS.\"\n\nThis reverts commit 43b1711332763788c7abf05c3baa931296c45bbb.\n\nReason for revert: regression reported at b/289223315\n\nBug: 289223315\nBug: 276729064\n(cherry picked from https://googleplex-android-review.googlesource.com/q/commit:bdc9b977e376fb3b6047530a179d00fd77f2aec1)\nMerged-In: I101938fbc51592537023345ba1e642827510981b\nChange-Id: I101938fbc51592537023345ba1e642827510981b\n", "tree_diff": [ { "type": "modify", "old_id": "e564ec1490373e7b1d280b36bb112414bd1a20fd", "old_mode": 33188, "old_path": "core/java/android/app/Notification.java", "new_id": "1c40711f888bc4410d3e1d779a67e50e243b712b", "new_mode": 33188, "new_path": “core/java/android/app/Notification.java” }, { "type": "modify", "old_id": "28480bcda4eb13baf696a5a4385e986aaac31f8b", "old_mode": 33261, "old_path": "services/tests/uiservicestests/src/com/android/server/notification/NotificationManagerServiceTest.java", "new_id": "50fb94591654935f329e53d76531ff2ed69a3817", "new_mode": 33261, "new_path": “services/tests/uiservicestests/src/com/android/server/notification/NotificationManagerServiceTest.java” } ] }