{"id":"ASB-A-237291548","details":"In setMimeGroup of PackageManagerService.java, there is a possible crash loop due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.","aliases":["A-237291548","CVE-2023-20922"],"modified":"2026-05-26T15:46:26.044149249Z","published":"2023-01-01T00:00:00Z","references":[{"type":"ADVISORY","url":"https://source.android.com/security/bulletin/2023-01-01"},{"type":"FIX","url":"https://android.googlesource.com/platform/frameworks/base/+/9bdd9d274ac4ce77c0e8d649141ceea115b1ddbe"}],"affected":[{"package":{"name":"platform/frameworks/base","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"11:0"},{"fixed":"11:2023-01-01"}]}],"versions":["11"],"ecosystem_specific":{"fixes":["https://android.googlesource.com/platform/frameworks/base/+/3ae3406b9706163073c282a8c4081faa32b606b2"],"types":["DoS"],"spl":"2023-01-01","severity":"High","vanir_signatures":[{"signature_type":"Function","target":{"function":"setMimeGroup","file":"services/core/java/com/android/server/pm/PackageSetting.java"},"source":"https://android.googlesource.com/platform/frameworks/base/+/3ae3406b9706163073c282a8c4081faa32b606b2","id":"ASB-A-237291548-689c4142","digest":{"length":317,"function_hash":"31294280568095720688979848123695635954"},"deprecated":false,"signature_version":"v1"},{"signature_type":"Function","target":{"function":"addMimeGroupsFromComponent","file":"core/java/android/content/pm/parsing/ParsingPackageImpl.java"},"source":"https://android.googlesource.com/platform/frameworks/base/+/3ae3406b9706163073c282a8c4081faa32b606b2","id":"ASB-A-237291548-ba2b806d","digest":{"length":316,"function_hash":"202065779681697887785813066323970793223"},"deprecated":false,"signature_version":"v1"},{"signature_type":"Line","target":{"file":"services/core/java/com/android/server/pm/PackageSetting.java"},"source":"https://android.googlesource.com/platform/frameworks/base/+/3ae3406b9706163073c282a8c4081faa32b606b2","digest":{"line_hashes":["210117540197020962776174345141686794756","51948642604148014640836092643697507414","205660664688970755346070621134153847103","324953582019310280159648579909534960723","168716818758968046758879954649936712896","263769921199745771593932276872398587482","138999065848375296537325993490030824046","18609215631312155583475013314785796946","45662474198648549860772589265018421783"],"threshold":0.9},"id":"ASB-A-237291548-c71da7fd","deprecated":false,"signature_version":"v1"},{"signature_type":"Line","target":{"file":"core/java/android/content/pm/parsing/ParsingPackageImpl.java"},"source":"https://android.googlesource.com/platform/frameworks/base/+/3ae3406b9706163073c282a8c4081faa32b606b2","id":"ASB-A-237291548-d786b0db","digest":{"line_hashes":["268500064949724540646062464114540390285","26624114904077745128475869533242173201","92274285989282330413503189164061015917","299560997409615174173387235143639540568"],"threshold":0.9},"deprecated":false,"signature_version":"v1"}]},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-237291548.json"}},{"package":{"name":"platform/frameworks/base","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"12:0"},{"fixed":"12:2023-01-01"}]}],"versions":["12"],"ecosystem_specific":{"vanir_signatures":[{"signature_type":"Function","target":{"function":"setMimeGroup","file":"services/core/java/com/android/server/pm/PackageSetting.java"},"source":"https://android.googlesource.com/platform/frameworks/base/+/3ae3406b9706163073c282a8c4081faa32b606b2","id":"ASB-A-237291548-a7eb5b93","digest":{"length":317,"function_hash":"31294280568095720688979848123695635954"},"deprecated":false,"signature_version":"v1"},{"signature_type":"Function","target":{"function":"addMimeGroupsFromComponent","file":"core/java/android/content/pm/parsing/ParsingPackageImpl.java"},"source":"https://android.googlesource.com/platform/frameworks/base/+/3ae3406b9706163073c282a8c4081faa32b606b2","id":"ASB-A-237291548-ed09d6bb","digest":{"length":316,"function_hash":"202065779681697887785813066323970793223"},"deprecated":false,"signature_version":"v1"},{"signature_type":"Line","target":{"file":"services/core/java/com/android/server/pm/PackageSetting.java"},"source":"https://android.googlesource.com/platform/frameworks/base/+/3ae3406b9706163073c282a8c4081faa32b606b2","id":"ASB-A-237291548-f3d932d4","digest":{"line_hashes":["210117540197020962776174345141686794756","51948642604148014640836092643697507414","205660664688970755346070621134153847103","324953582019310280159648579909534960723","168716818758968046758879954649936712896","263769921199745771593932276872398587482","138999065848375296537325993490030824046","18609215631312155583475013314785796946","45662474198648549860772589265018421783"],"threshold":0.9},"deprecated":false,"signature_version":"v1"},{"signature_type":"Line","source":"https://android.googlesource.com/platform/frameworks/base/+/3ae3406b9706163073c282a8c4081faa32b606b2","target":{"file":"core/java/android/content/pm/parsing/ParsingPackageImpl.java"},"id":"ASB-A-237291548-f4880bde","digest":{"line_hashes":["268500064949724540646062464114540390285","26624114904077745128475869533242173201","92274285989282330413503189164061015917","299560997409615174173387235143639540568"],"threshold":0.9},"deprecated":false,"signature_version":"v1"}],"types":["DoS"],"spl":"2023-01-01","severity":"High","fixes":["https://android.googlesource.com/platform/frameworks/base/+/3ae3406b9706163073c282a8c4081faa32b606b2"]},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-237291548.json"}},{"package":{"name":"platform/frameworks/base","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"12L:0"},{"fixed":"12L:2023-01-01"}]}],"versions":["12L"],"ecosystem_specific":{"spl":"2023-01-01","fixes":["https://android.googlesource.com/platform/frameworks/base/+/3ae3406b9706163073c282a8c4081faa32b606b2"],"types":["DoS"],"severity":"High","vanir_signatures":[{"signature_type":"Line","source":"https://android.googlesource.com/platform/frameworks/base/+/3ae3406b9706163073c282a8c4081faa32b606b2","target":{"file":"core/java/android/content/pm/parsing/ParsingPackageImpl.java"},"id":"ASB-A-237291548-8a2dd490","digest":{"line_hashes":["268500064949724540646062464114540390285","26624114904077745128475869533242173201","92274285989282330413503189164061015917","299560997409615174173387235143639540568"],"threshold":0.9},"deprecated":false,"signature_version":"v1"},{"signature_type":"Line","source":"https://android.googlesource.com/platform/frameworks/base/+/3ae3406b9706163073c282a8c4081faa32b606b2","target":{"file":"services/core/java/com/android/server/pm/PackageSetting.java"},"id":"ASB-A-237291548-b3915c0c","digest":{"line_hashes":["210117540197020962776174345141686794756","51948642604148014640836092643697507414","205660664688970755346070621134153847103","324953582019310280159648579909534960723","168716818758968046758879954649936712896","263769921199745771593932276872398587482","138999065848375296537325993490030824046","18609215631312155583475013314785796946","45662474198648549860772589265018421783"],"threshold":0.9},"deprecated":false,"signature_version":"v1"},{"signature_type":"Function","target":{"function":"addMimeGroupsFromComponent","file":"core/java/android/content/pm/parsing/ParsingPackageImpl.java"},"source":"https://android.googlesource.com/platform/frameworks/base/+/3ae3406b9706163073c282a8c4081faa32b606b2","id":"ASB-A-237291548-c4ab7d17","digest":{"length":316,"function_hash":"202065779681697887785813066323970793223"},"deprecated":false,"signature_version":"v1"},{"signature_type":"Function","target":{"function":"setMimeGroup","file":"services/core/java/com/android/server/pm/PackageSetting.java"},"source":"https://android.googlesource.com/platform/frameworks/base/+/3ae3406b9706163073c282a8c4081faa32b606b2","digest":{"length":317,"function_hash":"31294280568095720688979848123695635954"},"id":"ASB-A-237291548-f4cabb5a","deprecated":false,"signature_version":"v1"}]},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-237291548.json"}},{"package":{"name":"platform/frameworks/base","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"13:0"},{"fixed":"13:2023-01-01"}]}],"versions":["13"],"ecosystem_specific":{"spl":"2023-01-01","fixes":["https://android.googlesource.com/platform/frameworks/base/+/9bdd9d274ac4ce77c0e8d649141ceea115b1ddbe"],"types":["DoS"],"severity":"High","vanir_signatures":[{"signature_type":"Line","target":{"file":"services/core/java/com/android/server/pm/PackageManagerService.java"},"source":"https://android.googlesource.com/platform/frameworks/base/+/9bdd9d274ac4ce77c0e8d649141ceea115b1ddbe","id":"ASB-A-237291548-01fae89c","digest":{"line_hashes":["30191055480106049056194993607327286067","235517960090223571636718062440552614181","216759619484409388256620291861940690518","104557313668973816637947214172574763342","103285123252883016128370700089612069848","40422005414379151854055239047501645629","142335569646864487747916674092376756427","72148826583482198240471094835286963418"],"threshold":0.9},"deprecated":false,"signature_version":"v1"},{"signature_type":"Function","target":{"function":"addMimeGroupsFromComponent","file":"services/core/java/com/android/server/pm/pkg/parsing/ParsingPackageImpl.java"},"source":"https://android.googlesource.com/platform/frameworks/base/+/9bdd9d274ac4ce77c0e8d649141ceea115b1ddbe","id":"ASB-A-237291548-47429be2","digest":{"length":331,"function_hash":"148266663536872324377172180670057155510"},"deprecated":false,"signature_version":"v1"},{"signature_type":"Line","target":{"file":"services/core/java/com/android/server/pm/pkg/parsing/ParsingPackageImpl.java"},"source":"https://android.googlesource.com/platform/frameworks/base/+/9bdd9d274ac4ce77c0e8d649141ceea115b1ddbe","id":"ASB-A-237291548-4d32c240","digest":{"line_hashes":["137761287683874598681207440966679683877","76808855365938853381443151439566633942","196329875820618050054266383821986722653","299560997409615174173387235143639540568"],"threshold":0.9},"deprecated":false,"signature_version":"v1"},{"signature_type":"Function","target":{"function":"setMimeGroup","file":"services/core/java/com/android/server/pm/PackageManagerService.java"},"source":"https://android.googlesource.com/platform/frameworks/base/+/9bdd9d274ac4ce77c0e8d649141ceea115b1ddbe","id":"ASB-A-237291548-b780fc64","digest":{"length":820,"function_hash":"90756472752520483266498494755315935828"},"deprecated":false,"signature_version":"v1"}]},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-237291548.json"}}],"schema_version":"1.7.5"}