{"id":"ASB-A-220302519","details":"In WorkSource, there is a possible  parcel mismatch. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.","aliases":["A-220302519","CVE-2023-20963"],"modified":"2026-05-25T16:46:24.913870386Z","published":"2023-03-01T00:00:00Z","references":[{"type":"ADVISORY","url":"https://source.android.com/security/bulletin/2023-03-01"},{"type":"FIX","url":"https://android.googlesource.com/platform/frameworks/base/+/266b3bddcf14d448c0972db64b42950f76c759e3"}],"affected":[{"package":{"name":"platform/frameworks/base","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"13-next:0"},{"fixed":"13-next:2023-03-01"}]}],"versions":["13-next"],"ecosystem_specific":{"spl":"2023-03-01","types":["EoP"],"vanir_signatures":[{"target":{"function":"WorkSource","file":"core/java/android/os/WorkSource.java"},"id":"ASB-A-220302519-3cb5d402","source":"https://android.googlesource.com/platform/frameworks/base/+/266b3bddcf14d448c0972db64b42950f76c759e3","signature_type":"Function","signature_version":"v1","digest":{"function_hash":"249473220121703359193821449393472365441","length":301},"deprecated":false},{"target":{"file":"core/java/android/os/WorkSource.java"},"id":"ASB-A-220302519-fa54cf03","signature_type":"Line","source":"https://android.googlesource.com/platform/frameworks/base/+/266b3bddcf14d448c0972db64b42950f76c759e3","signature_version":"v1","digest":{"line_hashes":["222784058993276777232291032320913035976","99648329681826869339328052290402114360","248647294699493633281406334710139244203","105770930988105767492790826741170760545"],"threshold":0.9},"deprecated":false}],"severity":"High","fixes":["https://android.googlesource.com/platform/frameworks/base/+/266b3bddcf14d448c0972db64b42950f76c759e3"]},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-220302519.json"}},{"package":{"name":"platform/frameworks/base","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"11:0"},{"fixed":"11:2023-03-01"}]}],"versions":["11"],"ecosystem_specific":{"types":["EoP"],"spl":"2023-03-01","vanir_signatures":[{"digest":{"function_hash":"249473220121703359193821449393472365441","length":301},"id":"ASB-A-220302519-39c38a00","source":"https://android.googlesource.com/platform/frameworks/base/+/266b3bddcf14d448c0972db64b42950f76c759e3","signature_type":"Function","deprecated":false,"target":{"function":"WorkSource","file":"core/java/android/os/WorkSource.java"},"signature_version":"v1"},{"digest":{"line_hashes":["222784058993276777232291032320913035976","99648329681826869339328052290402114360","248647294699493633281406334710139244203","105770930988105767492790826741170760545"],"threshold":0.9},"id":"ASB-A-220302519-90fb638d","source":"https://android.googlesource.com/platform/frameworks/base/+/266b3bddcf14d448c0972db64b42950f76c759e3","signature_type":"Line","deprecated":false,"target":{"file":"core/java/android/os/WorkSource.java"},"signature_version":"v1"}],"severity":"High","fixes":["https://android.googlesource.com/platform/frameworks/base/+/266b3bddcf14d448c0972db64b42950f76c759e3"]},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-220302519.json"}},{"package":{"name":"platform/frameworks/base","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"12:0"},{"fixed":"12:2023-03-01"}]}],"versions":["12"],"ecosystem_specific":{"spl":"2023-03-01","types":["EoP"],"vanir_signatures":[{"target":{"file":"core/java/android/os/WorkSource.java"},"id":"ASB-A-220302519-668298b6","signature_type":"Line","source":"https://android.googlesource.com/platform/frameworks/base/+/266b3bddcf14d448c0972db64b42950f76c759e3","signature_version":"v1","digest":{"line_hashes":["222784058993276777232291032320913035976","99648329681826869339328052290402114360","248647294699493633281406334710139244203","105770930988105767492790826741170760545"],"threshold":0.9},"deprecated":false},{"signature_version":"v1","id":"ASB-A-220302519-eeb56d9c","source":"https://android.googlesource.com/platform/frameworks/base/+/266b3bddcf14d448c0972db64b42950f76c759e3","signature_type":"Function","digest":{"function_hash":"249473220121703359193821449393472365441","length":301},"deprecated":false,"target":{"function":"WorkSource","file":"core/java/android/os/WorkSource.java"}}],"severity":"High","fixes":["https://android.googlesource.com/platform/frameworks/base/+/266b3bddcf14d448c0972db64b42950f76c759e3"]},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-220302519.json"}},{"package":{"name":"platform/frameworks/base","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"12L:0"},{"fixed":"12L:2023-03-01"}]}],"versions":["12L"],"ecosystem_specific":{"types":["EoP"],"spl":"2023-03-01","vanir_signatures":[{"target":{"file":"core/java/android/os/WorkSource.java"},"id":"ASB-A-220302519-070dcada","source":"https://android.googlesource.com/platform/frameworks/base/+/266b3bddcf14d448c0972db64b42950f76c759e3","signature_type":"Line","signature_version":"v1","digest":{"line_hashes":["222784058993276777232291032320913035976","99648329681826869339328052290402114360","248647294699493633281406334710139244203","105770930988105767492790826741170760545"],"threshold":0.9},"deprecated":false},{"digest":{"function_hash":"249473220121703359193821449393472365441","length":301},"id":"ASB-A-220302519-3929770a","source":"https://android.googlesource.com/platform/frameworks/base/+/266b3bddcf14d448c0972db64b42950f76c759e3","signature_type":"Function","deprecated":false,"target":{"function":"WorkSource","file":"core/java/android/os/WorkSource.java"},"signature_version":"v1"}],"severity":"High","fixes":["https://android.googlesource.com/platform/frameworks/base/+/266b3bddcf14d448c0972db64b42950f76c759e3"]},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-220302519.json"}},{"package":{"name":"platform/frameworks/base","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"13:0"},{"fixed":"13:2023-03-01"}]}],"versions":["13"],"ecosystem_specific":{"spl":"2023-03-01","types":["EoP"],"vanir_signatures":[{"signature_version":"v1","id":"ASB-A-220302519-1fb5b9b6","source":"https://android.googlesource.com/platform/frameworks/base/+/266b3bddcf14d448c0972db64b42950f76c759e3","signature_type":"Line","digest":{"line_hashes":["222784058993276777232291032320913035976","99648329681826869339328052290402114360","248647294699493633281406334710139244203","105770930988105767492790826741170760545"],"threshold":0.9},"deprecated":false,"target":{"file":"core/java/android/os/WorkSource.java"}},{"target":{"function":"WorkSource","file":"core/java/android/os/WorkSource.java"},"id":"ASB-A-220302519-eff82867","signature_type":"Function","source":"https://android.googlesource.com/platform/frameworks/base/+/266b3bddcf14d448c0972db64b42950f76c759e3","signature_version":"v1","digest":{"function_hash":"249473220121703359193821449393472365441","length":301},"deprecated":false}],"severity":"High","fixes":["https://android.googlesource.com/platform/frameworks/base/+/266b3bddcf14d448c0972db64b42950f76c759e3"]},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-220302519.json"}}],"schema_version":"1.7.5"}