In TRANSPOSER_SETTINGS of lpp_tran.h, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation.



)\]}' { "commit": "4242f97d149b0bf0cd96f00cd1e9d30d5922cd46", "tree": "171f0bb02a5a419e237be316cae8fa72d45031ed", "parents": \[ "2474d98134b5fdf5d4d344bbc19a9ec070a06e58" \], "author": { "name": "Fraunhofer IIS FDK", "email": "audio-fdk@iis.fraunhofer.de", "time": "Tue May 30 16:39:32 2023 +0200" }, "committer": { "name": "Android Build Coastguard Worker", "email": "android-build-coastguard-worker@google.com", "time": "Thu Jun 08 20:33:22 2023 +0000" }, "message": "Increase patchParam array size by one and fix out-of-bounce write in resetLppTransposer().\\n\\nBug: 279766766\\nTest: see POC\\n(cherry picked from commit f682b8787eb312b9f8997dac4c2c18bb779cf0df)\\n(cherry picked from https://googleplex-android-review.googlesource.com/q/commit:2f8c08a4e7b228a55e4c89f0931069de8eda2df6)\\nMerged-In: I206973e0bb21140865efffd930e39f920f477359\\nChange-Id: I206973e0bb21140865efffd930e39f920f477359\\n", "tree\_diff": \[ { "type": "modify", "old\_id": "51b4395ae4ac74ec7f5c33c3078e2ba7a8e25033", "old\_mode": 33188, "old\_path": "libSBRdec/src/lpp\_tran.h", "new\_id": "21c41011115d1ffb73fba08ab96606046aaa3dae", "new\_mode": 33188, "new\_path": "libSBRdec/src/lpp\_tran.h" } \] }

CVE-2023-21282

In SDP_AddAttribute of sdp_db.cc, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote (proximal/adjacent) code execution with no additional execution privileges needed. User interaction is not needed for exploitation.



)\]}' { "commit": "1e27ef69755a0735278a1c6af130c71a92b94e3f", "tree": "63f98a325a45a88a2c5a73c39e1d0c814909660d", "parents": \[ "8d608f6473a1bdecfd6319bf332fa506c598a1ff" \], "author": { "name": "Hui Peng", "email": "phui@google.com", "time": "Tue Dec 20 22:48:23 2022 +0000" }, "committer": { "name": "Justin Dunlap", "email": "justindunlap@google.com", "time": "Mon Jan 30 09:55:42 2023 -0800" }, "message": "Fix an OOB write in SDP\_AddAttribute\\n\\nWhen the \`attr\_pad\` becomes full, it is possible\\nthat un index of \`-1\` is computed write\\na zero byte to \`p\_val\`, rusulting OOB write.\\n\\n\`\`\`\\n p\_val\[SDP\_MAX\_PAD\_LEN - p\_rec-\\u003efree\_pad\_ptr - 1\] \\u003d \\u0027\\\\0\\u0027;\\n\`\`\`\\n\\nBug: 261867748\\nTest: manual\\nTag: #security\\nIgnore-AOSP-First: security\\nMerged-In: I937d22a2df26fca1d7f06b10182c4e713ddfed1b\\nChange-Id: I937d22a2df26fca1d7f06b10182c4e713ddfed1b\\n(cherry picked from commit 0846b5b746e844464fb728478fea3c2ad6aaef1f)\\nMerged-In: I937d22a2df26fca1d7f06b10182c4e713ddfed1b\\n", "tree\_diff": \[ { "type": "modify", "old\_id": "297b31251db285438b165c62767ce72a457cce38", "old\_mode": 33188, "old\_path": "system/stack/sdp/sdp\_db.cc", "new\_id": "acef4a5aa904556cea12f4a1d4f574f2409beee1", "new\_mode": 33188, "new\_path": "system/stack/sdp/sdp\_db.cc" } \] }

CVE-2023-21273

In visitUris of Notification.java, there is a possible way to reveal images across users due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.



)\]}' { "commit": "726247f4f53e8cc0746175265652fa415a123c0c", "tree": "865181b307278ddbed77404c71b416a4f86294ae", "parents": \[ "e7ccba6da2c3febeb449c172c1d8091f7a35193d" \], "author": { "name": "Ioana Alexandru", "email": "aioana@google.com", "time": "Mon May 15 16:15:55 2023 +0000" }, "committer": { "name": "Android Build Coastguard Worker", "email": "android-build-coastguard-worker@google.com", "time": "Thu Jun 08 20:33:57 2023 +0000" }, "message": "Check URIs in notification public version.\\n\\nBug: 276294099\\nTest: atest NotificationManagerServiceTest NotificationVisitUrisTest\\n(cherry picked from https://googleplex-android-review.googlesource.com/q/commit:67cd169d073486c7c047b80ab83843cdee69bf53)\\nMerged-In: I670198b213abb2cb29a9865eb9d1e897700508b4\\nChange-Id: I670198b213abb2cb29a9865eb9d1e897700508b4\\n", "tree\_diff": \[ { "type": "modify", "old\_id": "034192ddcecec7487e8764a22915a7e99a218055", "old\_mode": 33188, "old\_path": "core/java/android/app/Notification.java", "new\_id": "e564ec1490373e7b1d280b36bb112414bd1a20fd", "new\_mode": 33188, "new\_path": "core/java/android/app/Notification.java" }, { "type": "modify", "old\_id": "689691b749a3f0f67101637f657563c18a55c647", "old\_mode": 33261, "old\_path": "services/tests/uiservicestests/src/com/android/server/notification/NotificationManagerServiceTest.java", "new\_id": "28480bcda4eb13baf696a5a4385e986aaac31f8b", "new\_mode": 33261, "new\_path": "services/tests/uiservicestests/src/com/android/server/notification/NotificationManagerServiceTest.java" } \] }

CVE-2023-21288

In multiple functions of KeyguardViewMediator.java, there is a possible failure to lock after screen timeout due to a logic error in the code. This could lead to local escalation of privilege across users with no additional execution privileges needed. User interaction is not needed for exploitation.



)\]}' { "commit": "badb243574d7fca9aa89152d9d25eeb4f8615385", "tree": "9326e3afec08486cb46575bbbde3fc6a1d92d5c6", "parents": \[ "0c3b7ec3377e7fb645ec366be3be96bb1a252ca1" \], "author": { "name": "Chandru S", "email": "chandruis@google.com", "time": "Tue May 16 10:41:07 2023 -0700" }, "committer": { "name": "Android Build Coastguard Worker", "email": "android-build-coastguard-worker@google.com", "time": "Thu Jun 08 20:34:29 2023 +0000" }, "message": "Use Settings.System.getIntForUser instead of getInt to make sure user specific settings are used\\n\\nBug: 265431505\\nTest: atest KeyguardViewMediatorTest\\n(cherry picked from commit 625e009fc195ba5d658ca2d78ebb23d2770cc6c4)\\n(cherry picked from https://googleplex-android-review.googlesource.com/q/commit:dbdfadc24c81453c9c51e0d549b0ace924f4341e)\\nMerged-In: I66a660c091c90a957a0fd1e144c013840db3f47e\\nChange-Id: I66a660c091c90a957a0fd1e144c013840db3f47e\\n", "tree\_diff": \[ { "type": "modify", "old\_id": "89994b0c228d5c7ff47d233f719f81723bbe3709", "old\_mode": 33188, "old\_path": "packages/SystemUI/src/com/android/systemui/keyguard/KeyguardViewMediator.java", "new\_id": "5d086e833e14a5f3909946425b4fb80baf24efa8", "new\_mode": 33188, "new\_path": "packages/SystemUI/src/com/android/systemui/keyguard/KeyguardViewMediator.java" } \] }

CVE-2023-21281

In startActivityInner of ActivityStarter.java, there is a possible way to launch an activity into PiP mode from the background due to BAL bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.



)\]}' { "commit": "70ec64dc5a2a816d6aa324190a726a85fd749b30", "tree": "a1e43d11b2f4ac0921e4391298c5224bde46b2af", "parents": \[ "49773f9d871dd8975128fccf71513928a5a97345" \], "author": { "name": "Hani Kazmi", "email": "hanikazmi@google.com", "time": "Tue May 23 17:28:56 2023 +0000" }, "committer": { "name": "Android Build Coastguard Worker", "email": "android-build-coastguard-worker@google.com", "time": "Thu Jun 08 20:34:14 2023 +0000" }, "message": "Update Pip launches to not enter pinned task if in background.\\n\\nAddresses a BAL bypass where Pip could be started without the launcher\\nbeing visible.\\n\\nBug: 271576718\\nTest: atest CtsWindowManagerDeviceTestCases:PinnedStackTests\\nTest: atest android.server.wm.BackgroundActivityLaunchTest#testPipCannotStartFromBackground\\n(cherry picked from https://googleplex-android-review.googlesource.com/q/commit:1848b559059e021d1a923513ca2a936c6212a7ac)\\nMerged-In: Ibadc9c21f1d23f9904fc11009a9c2a40535db5e0\\nChange-Id: Ibadc9c21f1d23f9904fc11009a9c2a40535db5e0\\n", "tree\_diff": \[ { "type": "modify", "old\_id": "84cd63424cd1653d62f5317a97d6c3e7e0324367", "old\_mode": 33188, "old\_path": "services/core/java/com/android/server/wm/ActivityStarter.java", "new\_id": "e6d311f7a9aa6d78c951e775efc7a07c3a6dfca0", "new\_mode": 33188, "new\_path": "services/core/java/com/android/server/wm/ActivityStarter.java" } \] }

CVE-2023-21269

In onCreate of ManagePermissionsActivity.java, there is a possible way to bypass factory reset protections due to a missing permission check. This could lead to local escalation of privilege with physical access to a device that's been factory reset with no additional execution privileges needed. User interaction is not needed for exploitation.



)\]}' { "commit": "0679e4f35055729be7276536fe45fe8ec18a0453", "tree": "41d3703f1e553ae502b583449fcb7c5a4c8c0f13", "parents": \[ "8252d067b83cd7f03d5380ce5cc96320c7d69f17" \], "author": { "name": "Nate Myren", "email": "ntmyren@google.com", "time": "Tue Dec 06 14:01:03 2022 -0800" }, "committer": { "name": "Android Build Coastguard Worker", "email": "android-build-coastguard-worker@google.com", "time": "Thu Jun 08 20:34:48 2023 +0000" }, "message": "RESTRICT AUTOMERGE Finish ManagePermissionsActivity if device is not provisioned\\n\\nIf the device isn\\u0027t set up yet, do not allow access to the permissions\\nsettings\\n\\nBug: 253043490\\nTest: manual\\n(cherry picked from https://googleplex-android-review.googlesource.com/q/commit:8a6f1f59d6cb5367f0c88980a75ddc227dba956a)\\nMerged-In: I6e8fb8f2d934cff965069493740cfc1c59c3623f\\nChange-Id: I6e8fb8f2d934cff965069493740cfc1c59c3623f\\n", "tree\_diff": \[ { "type": "modify", "old\_id": "4c186cf7e2520e7428928cece45c14ce16e05d90", "old\_mode": 33188, "old\_path": "PermissionController/src/com/android/permissioncontroller/permission/ui/ManagePermissionsActivity.java", "new\_id": "c7b1bdcfa77b28fa983c109595699ee5101f312a", "new\_mode": 33188, "new\_path": "PermissionController/src/com/android/permissioncontroller/permission/ui/ManagePermissionsActivity.java" } \] }

CVE-2023-21140

In processMessageImpl of ClientModeImpl.java, there is a possible credential disclosure in the TOFU flow due to a logic error in the code. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.



)\]}' { "commit": "0d3cb609b0851ea9e5745cc6101e57c2e5e739f2", "tree": "7a0189a8f8573cdefb0afbe02c560cc04bbd86d9", "parents": \[ "bd318b9772759546509f6fdb8648366099dd65ad" \], "author": { "name": "Hai Shalom", "email": "haishalom@google.com", "time": "Thu Mar 02 23:00:56 2023 +0000" }, "committer": { "name": "Android Build Coastguard Worker", "email": "android-build-coastguard-worker@google.com", "time": "Thu Apr 06 00:38:45 2023 +0000" }, "message": "\[TOFU\] Implement a secure TOFU flow\\n\\nImplement a secure TOFU flow for supporting devices, and\\nnotifications about insecure connections in non-supporting\\ndevices, when insecure configurations are not allowed.\\nHandle the case where insecure enterprise configurations are\\nallowed in the new and secure TOFU flow. In this mode, do not\\ndisconnect the network, do not load certificates, and do not\\nnotify the user about anything.\\nDisplay the correct certificate information in the dialog,\\nremove the email and 8-octet signature from the TOFU dialog, and\\nreplace with user verifiable information: certificate expiration\\ndate (locale adjusted) and a SHA-256 fingerprint of the server\\ncertificate which is locally generated.\\nNetwork admins can calculate the fingerprint of their server\\ncertificate and publish the result to their users, using:\\nopenssl x509 -in server-cert.pem -noout -fingerprint -sha256\\n\\nUpdated-Overlayable: TRUE\\nUpdated-PDD: TRUE\\n\\nBug: 267633332\\nBug: 251910611\\nBug: 250574778\\nTest: atest ClientModeImplTest InsecureEapNetworkHandlerTest\\nTest: atest WifiConfigManagerTest\\nTest: Integration test on R, and T devices with overlay setting\\nof insecure networks allowed and not allowed, and with new\\nconfigs and insecure (Do not validate) configs made with R.\\nTest: Functional test, UI verification with multiple locales\\n(cherry picked from https://googleplex-android-review.googlesource.com/q/commit:a5227527411bc24e6e2c6276f16559c7305b6783)\\nMerged-In: I5cac12cd8c52a8a9425e98dad0fb90893f53e374\\nChange-Id: I5cac12cd8c52a8a9425e98dad0fb90893f53e374\\n", "tree\_diff": \[ { "type": "modify", "old\_id": "2d6d08db5b4540a350d0cc8099849a74e021f211", "old\_mode": 33188, "old\_path": "service/ServiceWifiResources/res/values/overlayable.xml", "new\_id": "4ddba7f7322f680502cd308ba8942bf7839db727", "new\_mode": 33188, "new\_path": "service/ServiceWifiResources/res/values/overlayable.xml" }, { "type": "modify", "old\_id": "15ffcf0adabd9d5306e6ac64b3b8135d0768c967", "old\_mode": 33188, "old\_path": "service/ServiceWifiResources/res/values/strings.xml", "new\_id": "bfcb96a1f8801857cc8dfe2ba8e877a43adbfcb9", "new\_mode": 33188, "new\_path": "service/ServiceWifiResources/res/values/strings.xml" }, { "type": "modify", "old\_id": "92cc9ffce6119ede40f7d08d074399b8b9bc1e41", "old\_mode": 33188, "old\_path": "service/java/com/android/server/wifi/ClientModeImpl.java", "new\_id": "c4c0823db079402feb4ee5f2c833a75f339eae72", "new\_mode": 33188, "new\_path": "service/java/com/android/server/wifi/ClientModeImpl.java" }, { "type": "modify", "old\_id": "225d01c7e55d10b3226fd112e6c4d6ae12f34ca7", "old\_mode": 33188, "old\_path": "service/java/com/android/server/wifi/InsecureEapNetworkHandler.java", "new\_id": "6c55feab7fdfeeec9943cf005f624046e09c2948", "new\_mode": 33188, "new\_path": "service/java/com/android/server/wifi/InsecureEapNetworkHandler.java" }, { "type": "modify", "old\_id": "2079cb82d085a8c3eb69dcabab26d3b73327d346", "old\_mode": 33188, "old\_path": "service/java/com/android/server/wifi/WifiConfigManager.java", "new\_id": "f2a39dadaeb1c9010ab1e28e975c8297a1a14730", "new\_mode": 33188, "new\_path": "service/java/com/android/server/wifi/WifiConfigManager.java" }, { "type": "modify", "old\_id": "a69614090ce52d28a21430b0372ab917e628e308", "old\_mode": 33188, "old\_path": "service/java/com/android/server/wifi/WifiKeyStore.java", "new\_id": "deb2e9d94c36a6380358570288ece5f88581b294", "new\_mode": 33188, "new\_path": "service/java/com/android/server/wifi/WifiKeyStore.java" }, { "type": "modify", "old\_id": "16b05c38892fdc15e3ff23257b591097c92c3280", "old\_mode": 33188, "old\_path": "service/java/com/android/server/wifi/WifiServiceImpl.java", "new\_id": "30ea2482954ffb0f3cf4ed496fc1925ea3915942", "new\_mode": 33188, "new\_path": "service/java/com/android/server/wifi/WifiServiceImpl.java" }, { "type": "modify", "old\_id": "09a596f984cf403feaf85b6ab986de9fbdd05d00", "old\_mode": 33188, "old\_path": "service/proto/src/metrics.proto", "new\_id": "871eb2c750cd50f21e7740a3d3d18463836352f1", "new\_mode": 33188, "new\_path": "service/proto/src/metrics.proto" }, { "type": "modify", "old\_id": "ca8f5b031ceac99ff603d27679d89a0f7a22b208", "old\_mode": 33188, "old\_path": "service/tests/wifitests/src/com/android/server/wifi/ClientModeImplTest.java", "new\_id": "cef996fef1df59033c6e62b544aa05b42170f837", "new\_mode": 33188, "new\_path": "service/tests/wifitests/src/com/android/server/wifi/ClientModeImplTest.java" }, { "type": "modify", "old\_id": "aed3753ffc0f4f69c5bf998f376fe196f506493b", "old\_mode": 33188, "old\_path": "service/tests/wifitests/src/com/android/server/wifi/InsecureEapNetworkHandlerTest.java", "new\_id": "b83f6e7e6c1f89ede082ef11d045996b43f3e6ee", "new\_mode": 33188, "new\_path": "service/tests/wifitests/src/com/android/server/wifi/InsecureEapNetworkHandlerTest.java" }, { "type": "modify", "old\_id": "141dca53afb1a8b9c4b5f700c1257d344857470b", "old\_mode": 33188, "old\_path": "service/tests/wifitests/src/com/android/server/wifi/WifiConfigManagerTest.java", "new\_id": "b707b1d6b06fe564632f77f4e4d61c0fe3f394c9", "new\_mode": 33188, "new\_path": "service/tests/wifitests/src/com/android/server/wifi/WifiConfigManagerTest.java" }, { "type": "modify", "old\_id": "eefa46bb7c13db355460f3d458b90abe3444c771", "old\_mode": 33188, "old\_path": "service/tests/wifitests/src/com/android/server/wifi/WifiConfigurationTestUtil.java", "new\_id": "9dc610b275ee4077d1b832a814059304cf7d243b", "new\_mode": 33188, "new\_path": "service/tests/wifitests/src/com/android/server/wifi/WifiConfigurationTestUtil.java" }, { "type": "modify", "old\_id": "9de443def48ebc9ccc708bf2b2644247aa38faca", "old\_mode": 33188, "old\_path": "service/tests/wifitests/src/com/android/server/wifi/WifiKeyStoreTest.java", "new\_id": "37fbb8f7b27a9902adc4a6994f0e0d2c653d44ed", "new\_mode": 33188, "new\_path": "service/tests/wifitests/src/com/android/server/wifi/WifiKeyStoreTest.java" } \] }

CVE-2023-20965

PrivateUploader is an open source image hosting server written in Vue and TypeScript. In affected versions `app/routes/v3/admin.controller.ts` did not correctly verify whether the user was an administrator (High Level) or moderator (Low Level) causing the request to continue processing. The response would be a 403 with ADMIN_ONLY, however, next() would call leading to any updates/changes in the route to process. This issue has been addressed in version 3.2.49. Users are advised to upgrade. There are no known workarounds for this vulnerability.


**Impact**

The admin route controller did not correctly verify whether the user was an administrator (High Level) or moderator (Low Level) causing the request to continue processing. The response would be a 403 with ADMIN\_ONLY, however, next() would call leading to any updates/changes in the route to process.

Despite the authentication bypass, it's unlikely any data was exposed to attackers due to the 403 response which did not contain the original response from the route.

**Patches**

You must upgrade to TroploPrivateUploader 3.2.49 or later to mitigate this vulnerability. A patched version can be obtained via GitHub, or Docker Hub depending on your setup.

**Workarounds**

You may manually patch the app/routes/v3/admin.controller.ts file and rebuild with the latest HighLevel and LowLevel classes in commit 869657d, however upgrading is highly recommended.

CVE-2023-40020: Improper Authentication in PrivateUploader

In multiple functions of mem_protect.c, there is a possible way to access hypervisor memory due to a memory access check in the wrong place. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.



)\]}' { "commit": "b35a06182451f71cc0543cfe36a3f21fad6f6f02", "tree": "7fdf671a4088d9e11c465beddb0dc1419fff4165", "parents": \[ "53625a846a7b4273982157d7a1db5947371757ef" \], "author": { "name": "Will Deacon", "email": "willdeacon@google.com", "time": "Wed Apr 26 15:38:32 2023 +0100" }, "committer": { "name": "Will Deacon", "email": "willdeacon@google.com", "time": "Fri Apr 28 14:31:57 2023 +0000" }, "message": "ANDROID: KVM: arm64: Move addr\_is\_allowed\_memory() check into host callback\\n\\nSince host stage-2 mappings are created lazily, we cannot rely on the\\npte in order to recover the target physical address when checking a\\nhost-initiated memory transition.\\n\\nInstead, move the addr\_is\_allowed\_memory() check into the host callback\\nfunction where it is passed the physical address directly from the\\nwalker.\\n\\nBug: 279739439\\nSigned-off-by: Will Deacon \\u003cwilldeacon@google.com\\u003e\\nChange-Id: I84bdc43eded79f1f5e5a489dbc0874604491e5c8\\n", "tree\_diff": \[ { "type": "modify", "old\_id": "d1bb4f8689acc1ed08fb633b06b92cd20992cbe2", "old\_mode": 33188, "old\_path": "arch/arm64/kvm/hyp/nvhe/mem\_protect.c", "new\_id": "402b22ffc59315c4a984aa00fd61c5d1ecd4723c", "new\_mode": 33188, "new\_path": "arch/arm64/kvm/hyp/nvhe/mem\_protect.c" } \] }

CVE-2023-21264

In multiple locations, there are root CA certificates which need to be disabled. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.



)\]}' { "commit": "6065b4a4c7da9cc9ee01c2f6389575647d2724c4", "tree": "edc6fbaf591a3e32aa577936efab805f8233fb8a", "parents": \[ "45dbcd031d38cd72431580445a9bea773f9e0f95" \], "author": { "name": "Orion Hodson", "email": "oth@google.com", "time": "Thu Dec 15 10:04:22 2022 +0000" }, "committer": { "name": "Android Build Coastguard Worker", "email": "android-build-coastguard-worker@google.com", "time": "Thu Jun 08 20:34:56 2023 +0000" }, "message": "Drop TrustCor certificates\\n\\nINIT Store initialized from system/ca-certificates/files\\nREMOVE Android security review\\n SHA1 : FF:BD:CD:E7:82:C8:43:5E:3C:6F:26:86:5C:CA:A8:3A:45:5B:C3:0A\\n Subject : C\\u003dPA, ST\\u003dPanama, L\\u003dPanama City, O\\u003dTrustCor Systems S. de R.L., OU\\u003dTrustCor Certificate Authority, CN\\u003dTrustCor RootCert CA-1\\n Not Before: Feb 4 12:32:16 2016 GMT\\n Not After : Dec 31 17:23:16 2029 GMT\\nREMOVE Android security review\\n SHA1 : B8:BE:6D:CB:56:F1:55:B9:63:D4:12:CA:4E:06:34:C7:94:B2:1C:C0\\n Subject : C\\u003dPA, ST\\u003dPanama, L\\u003dPanama City, O\\u003dTrustCor Systems S. de R.L., OU\\u003dTrustCor Certificate Authority, CN\\u003dTrustCor RootCert CA-2\\n Not Before: Feb 4 12:32:23 2016 GMT\\n Not After : Dec 31 17:26:39 2034 GMT\\nREMOVE Android security review\\n SHA1 : 58:D1:DF:95:95:67:6B:63:C0:F0:5B:1C:17:4D:8B:84:0B:C8:78:BD\\n Subject : C\\u003dPA, ST\\u003dPanama, L\\u003dPanama City, O\\u003dTrustCor Systems S. de R.L., OU\\u003dTrustCor Certificate Authority, CN\\u003dTrustCor ECA-1\\n Not Before: Feb 4 12:32:33 2016 GMT\\n Not After : Dec 31 17:28:07 2029 GMT\\nIMPORT Starting import from vendor/google/tools/cacerts/certdata.txt\\nPROCESS Handling 158 cert requests\\nEXPIRING Cert is expiring on May 15 04:52:29 2023 GMT\\n SHA1 : D6:DA:A8:20:8D:09:D2:15:4D:24:B5:2F:CB:34:6E:B2:58:B2:8A:58\\n Subject : C\\u003dHK, O\\u003dHongkong Post, CN\\u003dHongkong Post Root CA 1\\n Not Before: May 15 05:13:14 2003 GMT\\n Not After : May 15 04:52:29 2023 GMT\\nEXPIRING Cert is expiring on Mar 3 12:09:48 2023 GMT\\n SHA1 : 51:C6:E7:08:49:06:6E:F3:92:D4:5C:A0:0D:6D:A3:62:8F:C3:52:39\\n Subject : C\\u003dTR, L\\u003dAnkara, O\\u003dE-Tu\\\\xC4\\\\x9Fra EBG Bili\\\\xC5\\\\x9Fim Teknolojileri ve Hizmetleri A.\\\\xC5\\\\x9E., OU\\u003dE-Tugra Sertifikasyon Merkezi, CN\\u003dE-Tugra Certification Authority\\n Not Before: Mar 5 12:09:48 2013 GMT\\n Not After : Mar 3 12:09:48 2023 GMT\\nEXPIRING Cert is expiring on Sep 30 04:20:49 2023 GMT\\n SHA1 : 36:B1:2B:49:F9:81:9E:D7:4C:9E:BC:38:0F:C6:56:8F:5D:AC:B2:F7\\n Subject : C\\u003dJP, O\\u003dSECOM Trust.net, OU\\u003dSecurity Communication RootCA1\\n Not Before: Sep 30 04:20:49 2003 GMT\\n Not After : Sep 30 04:20:49 2023 GMT\\n\\nSUMMARY\\n\\n CertRequest\\n total count: 158\\n add count: 30\\n remove count: 124\\n trust count: 0\\n\\n Repository\\n total trusted: 136\\n roots for import: 137\\n intermediate for import: 0\\n\\n Store (before import)\\n total count: 140\\n expired: 0\\n expiring with 1 year: 3\\n\\n Store (after import)\\n total count: 137\\n newly imported: 0\\n existing matched by import: 137\\n other trusted: 0\\n expired: 0\\n expiring with 1 year: 3\\n\\n Store (after cert requests)\\n total count: 137\\n newly imported: 0\\n existing matched by import: 137\\n other trusted: 0\\n expired: 0\\n expiring with 1 year: 3\\n\\nBug: 262521447\\nTest: atest CtsLibcoreTestCases:com.android.org.conscrypt.TrustedCertificateStoreTest\\n\\n(cherry picked from commit 394a6486d9e6aa9c4a0ebef3fe3c4f5ede63b50f)\\n(cherry picked from https://android-review.googlesource.com/q/commit:fb5214798155bf7e5a14bf286a0f3725e69b23d1)\\n(cherry picked from https://googleplex-android-review.googlesource.com/q/commit:cbc6bbaa091a1217001817023e8859315b8ecc33)\\nMerged-In: Id951f8710aff9f9a907f4fc56035533eb6f6b760\\nChange-Id: Id951f8710aff9f9a907f4fc56035533eb6f6b760\\n", "tree\_diff": \[ { "type": "delete", "old\_id": "51c8ed3b7b8078f19acfae1a62128f0341de9af8", "old\_mode": 33188, "old\_path": "files/7c302982.0", "new\_id": "0000000000000000000000000000000000000000", "new\_mode": 0, "new\_path": "/dev/null" }, { "type": "delete", "old\_id": "50d9e26f58c54b30b45a6c05caed2a305ab87ecd", "old\_mode": 33188, "old\_path": "files/c2c1704e.0", "new\_id": "0000000000000000000000000000000000000000", "new\_mode": 0, "new\_path": "/dev/null" }, { "type": "delete", "old\_id": "e41f666be1771151cdc9eb80171995a05c71ca78", "old\_mode": 33188, "old\_path": "files/d0cddf45.0", "new\_id": "0000000000000000000000000000000000000000", "new\_mode": 0, "new\_path": "/dev/null" } \] }

Tag

#auth