{"id":"ASB-A-214999987","details":"In writeToParcel of SurfaceControl.cpp, there is a possible information disclosure due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.","aliases":["A-214999987","CVE-2022-20357"],"modified":"2026-04-23T15:15:38.048727Z","published":"2022-08-01T00:00:00Z","references":[{"type":"ADVISORY","url":"https://source.android.com/security/bulletin/2022-08-01"},{"type":"FIX","url":"https://android.googlesource.com/platform/frameworks/native/+/06ea6b381117a4f49c2854bb54efb099b7295276"},{"type":"FIX","url":"https://android.googlesource.com/platform/frameworks/native/+/c2cf02c17af0d7e5f58b8a17ecb9cfcc91a4d2eb"}],"affected":[{"package":{"name":"platform/frameworks/native","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"12:0"},{"fixed":"12:2022-08-01"}]}],"versions":["12"],"ecosystem_specific":{"types":["ID"],"fixes":["https://android.googlesource.com/platform/frameworks/native/+/34fe38b0c7ce6a47eaa2f328865858a2c7dac5e1"],"vanir_signatures":[{"id":"ASB-A-214999987-640c875d","deprecated":false,"target":{"file":"libs/gui/SurfaceControl.cpp"},"signature_type":"Line","source":"https://android.googlesource.com/platform/frameworks/native/+/34fe38b0c7ce6a47eaa2f328865858a2c7dac5e1","signature_version":"v1","digest":{"line_hashes":["219011990773188005570242453134239145131","73965219504676368268093170666195330778","127751742247050109310989358899937301671","316865302933790887237478430301018105268"],"threshold":0.9}},{"id":"ASB-A-214999987-7464f488","deprecated":false,"target":{"file":"libs/gui/SurfaceControl.cpp","function":"SurfaceControl::SurfaceControl"},"signature_type":"Function","source":"https://android.googlesource.com/platform/frameworks/native/+/34fe38b0c7ce6a47eaa2f328865858a2c7dac5e1","signature_version":"v1","digest":{"function_hash":"298134222195153131213481123123412825918","length":346}},{"id":"ASB-A-214999987-bcaaa9f0","deprecated":false,"target":{"file":"libs/gui/include/gui/SurfaceControl.h"},"signature_type":"Line","source":"https://android.googlesource.com/platform/frameworks/native/+/34fe38b0c7ce6a47eaa2f328865858a2c7dac5e1","signature_version":"v1","digest":{"line_hashes":["119773189353534772176336940183737335940","7503737101969386387436403672743505083","306553210203521402850455108773685966421","144073657372636112969477640577640158290","179297707684225522800352603602097713119","311601910668001618103244833600343290299","65126929329261087293139268104641873167","72087184731554807455719449593327956744","209124963525891707991287030952176633362"],"threshold":0.9}}],"severity":"High","spl":"2022-08-01"},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-214999987.json"}},{"package":{"name":"platform/frameworks/native","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"12L:0"},{"fixed":"12L:2022-08-01"}]}],"versions":["12L"],"ecosystem_specific":{"types":["ID"],"fixes":["https://android.googlesource.com/platform/frameworks/native/+/61a52db9d3a144a8ae4a6a495d61a3b59db80300"],"vanir_signatures":[{"id":"ASB-A-214999987-75a491c7","deprecated":false,"target":{"file":"libs/gui/SurfaceControl.cpp"},"signature_type":"Line","source":"https://android.googlesource.com/platform/frameworks/native/+/61a52db9d3a144a8ae4a6a495d61a3b59db80300","signature_version":"v1","digest":{"line_hashes":["219011990773188005570242453134239145131","73965219504676368268093170666195330778","127751742247050109310989358899937301671","316865302933790887237478430301018105268"],"threshold":0.9}},{"id":"ASB-A-214999987-a2268a70","deprecated":false,"target":{"file":"libs/gui/include/gui/SurfaceControl.h"},"signature_type":"Line","source":"https://android.googlesource.com/platform/frameworks/native/+/61a52db9d3a144a8ae4a6a495d61a3b59db80300","signature_version":"v1","digest":{"line_hashes":["119773189353534772176336940183737335940","7503737101969386387436403672743505083","306553210203521402850455108773685966421","144073657372636112969477640577640158290","179297707684225522800352603602097713119","311601910668001618103244833600343290299","65126929329261087293139268104641873167","72087184731554807455719449593327956744","209124963525891707991287030952176633362"],"threshold":0.9}},{"id":"ASB-A-214999987-dae2daca","deprecated":false,"target":{"file":"libs/gui/SurfaceControl.cpp","function":"SurfaceControl::SurfaceControl"},"signature_type":"Function","source":"https://android.googlesource.com/platform/frameworks/native/+/61a52db9d3a144a8ae4a6a495d61a3b59db80300","signature_version":"v1","digest":{"function_hash":"298134222195153131213481123123412825918","length":346}}],"severity":"High","spl":"2022-08-01"},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-214999987.json"}}],"schema_version":"1.7.5"}