{"id":"ASB-A-219808546","details":"In the SEPolicy configuration of system apps, there is a possible access to the 'ip' utility due to an insecure default value. This could lead to local information disclosure of network data with no additional execution privileges needed. User interaction is not needed for exploitation.","aliases":["A-219808546","CVE-2022-20399"],"modified":"2026-05-22T15:55:21.353668239Z","published":"2022-09-01T00:00:00Z","references":[{"type":"ADVISORY","url":"https://source.android.com/security/bulletin/2022-09-01"},{"type":"FIX","url":"https://android.googlesource.com/kernel/common/+/9152b8d66c22c271e29ccfb381a121f1ec6eaeac"}],"affected":[{"package":{"name":":linux_kernel:","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":":0"},{"fixed":":2022-09-05"}]}],"versions":["Kernel"],"ecosystem_specific":{"spl":"2022-09-05","severity":"High","types":["ID"],"vanir_signatures":[{"signature_type":"Line","source":"https://android.googlesource.com/kernel/common/+/9152b8d66c22c271e29ccfb381a121f1ec6eaeac","signature_version":"v1","digest":{"threshold":0.9,"line_hashes":["156570647428933217016600402426631358059","285313821535164759433068119013800958846","80978050283705474273395135024606546295","223083789694049584572380751563206903614","246899808374583590285470226485459707618","137270986338123338179086184936831594829","238900892584269911001796758699393205692"]},"deprecated":false,"target":{"file":"security/selinux/include/security.h"},"id":"ASB-A-219808546-01867c8e"},{"signature_version":"v1","source":"https://android.googlesource.com/kernel/common/+/9152b8d66c22c271e29ccfb381a121f1ec6eaeac","signature_type":"Function","digest":{"length":746,"function_hash":"247266689512410582365801576134697224102"},"deprecated":false,"target":{"file":"security/selinux/ss/services.c","function":"security_load_policycaps"},"id":"ASB-A-219808546-126ce294"},{"signature_type":"Line","source":"https://android.googlesource.com/kernel/common/+/9152b8d66c22c271e29ccfb381a121f1ec6eaeac","target":{"file":"security/selinux/include/classmap.h"},"digest":{"threshold":0.9,"line_hashes":["287409374634480683449800681789749982082","98169911075611632610498037291431566988","52252446319907660014479736438093843154","82849443918328912265236355193313164438"]},"deprecated":false,"signature_version":"v1","id":"ASB-A-219808546-3eddebb8"},{"signature_type":"Function","source":"https://android.googlesource.com/kernel/common/+/9152b8d66c22c271e29ccfb381a121f1ec6eaeac","target":{"file":"security/selinux/nlmsgtab.c","function":"nlmsg_set_getlink_perm"},"digest":{"length":238,"function_hash":"4215951327755423430673342538712713966"},"deprecated":false,"signature_version":"v1","id":"ASB-A-219808546-526265a3"},{"signature_type":"Line","source":"https://android.googlesource.com/kernel/common/+/9152b8d66c22c271e29ccfb381a121f1ec6eaeac","target":{"file":"security/selinux/ss/policydb.h"},"digest":{"threshold":0.9,"line_hashes":["230753965376922977629566320427783515712","115467347995511549052053145802408434014","150807161387766984077631197921494320246","239311808423449284444489006584098474201","321639962416390510899904094417745371151","77617415633580572504604586610578741262","129892709900090553278233421836608472000"]},"deprecated":false,"signature_version":"v1","id":"ASB-A-219808546-82af6a70"},{"signature_version":"v1","source":"https://android.googlesource.com/kernel/common/+/9152b8d66c22c271e29ccfb381a121f1ec6eaeac","signature_type":"Function","digest":{"length":7288,"function_hash":"130011141683470494455435041522725233325"},"deprecated":false,"target":{"file":"security/selinux/ss/policydb.c","function":"policydb_read"},"id":"ASB-A-219808546-9289caac"},{"signature_type":"Function","source":"https://android.googlesource.com/kernel/common/+/9152b8d66c22c271e29ccfb381a121f1ec6eaeac","signature_version":"v1","digest":{"length":153,"function_hash":"227686437916886864492044196997812815513"},"deprecated":false,"target":{"file":"security/selinux/nlmsgtab.c","function":"selinux_nlmsg_init"},"id":"ASB-A-219808546-9aed472b"},{"signature_type":"Line","source":"https://android.googlesource.com/kernel/common/+/9152b8d66c22c271e29ccfb381a121f1ec6eaeac","signature_version":"v1","digest":{"threshold":0.9,"line_hashes":["56911450083015637752009258244507519616","19709044311113668180965774461854381054","101725741426435884393778463198998024732","14177592518355038749838878209866860572"]},"deprecated":false,"target":{"file":"security/selinux/ss/services.c"},"id":"ASB-A-219808546-cb6048d3"},{"signature_version":"v1","source":"https://android.googlesource.com/kernel/common/+/9152b8d66c22c271e29ccfb381a121f1ec6eaeac","signature_type":"Line","digest":{"threshold":0.9,"line_hashes":["246137975113633883516354165979540720276","295065996821730629164403149247076659970","119099446732225842491575534446004677601","125093938621645381181556702666234687924","192257790020209441551918772093390621948","18761695330454909349177163539989226354","62803555351083684243627380029013645112","118043137274696721326934401984119029430","38171051377285703415839875823499494000","15595631715659756146613280728419399345","22277047539510314019950747862424142201","7622854038708717312349059584499896645","63811326599358419348126270473568252854","213809812405681135824237615158730115430","95626890609427891368520388214834620931"]},"deprecated":false,"target":{"file":"security/selinux/nlmsgtab.c"},"id":"ASB-A-219808546-db80a2eb"},{"signature_version":"v1","source":"https://android.googlesource.com/kernel/common/+/9152b8d66c22c271e29ccfb381a121f1ec6eaeac","signature_type":"Line","digest":{"threshold":0.9,"line_hashes":["326944690340598961871039831391538854670","324922315851607331794700950047091054930","242084750836174201146771118535213522334"]},"deprecated":false,"target":{"file":"security/selinux/ss/policydb.c"},"id":"ASB-A-219808546-f1e2b940"}],"fixes":["https://android.googlesource.com/kernel/common/+/9152b8d66c22c271e29ccfb381a121f1ec6eaeac"]},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-219808546.json"}}],"schema_version":"1.7.5"}