{"id":"ASB-A-294406604","details":"In ensureFileColumns of MediaProvider.java, there is a possible disclosure of files owned by another user due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.","aliases":["A-294406604","CVE-2024-34721"],"modified":"2026-05-26T15:46:26.044149249Z","published":"2024-07-01T00:00:00Z","references":[{"type":"ADVISORY","url":"https://source.android.com/security/bulletin/2024-07-01"},{"type":"FIX","url":"https://android.googlesource.com/platform/packages/providers/MediaProvider/+/7a1cbf5a8e17e6bff7c835fdd30dcc42b681db0a"}],"affected":[{"package":{"name":"platform/packages/providers/MediaProvider","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"14-next:0"},{"fixed":"14-next:2024-07-01"}]}],"versions":["14-next"],"ecosystem_specific":{"vanir_signatures":[{"source":"https://android.googlesource.com/platform/packages/providers/MediaProvider/+/a296a6520bef303faedbe8b4489f36e0e2b09d16","signature_version":"v1","deprecated":false,"digest":{"line_hashes":["57939264674174263502899728183470065665","156483739650783070040676283183882372427","43627227627199472868044543520274991244","165692613732677962069729788390091838178"],"threshold":0.9},"signature_type":"Line","target":{"file":"src/com/android/providers/media/MediaProvider.java"},"id":"ASB-A-294406604-50d17e5d"},{"id":"ASB-A-294406604-83ab504b","signature_version":"v1","deprecated":false,"digest":{"function_hash":"27241054463115702947468459533401732505","length":9773},"signature_type":"Function","target":{"file":"src/com/android/providers/media/MediaProvider.java","function":"ensureFileColumns"},"source":"https://android.googlesource.com/platform/packages/providers/MediaProvider/+/a296a6520bef303faedbe8b4489f36e0e2b09d16"}],"types":["ID"],"spl":"2024-07-01","fixes":["https://android.googlesource.com/platform/packages/providers/MediaProvider/+/a296a6520bef303faedbe8b4489f36e0e2b09d16"],"severity":"High"},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-294406604.json"}},{"package":{"name":"platform/packages/providers/MediaProvider","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"12:0"},{"fixed":"12:2024-07-01"}]}],"versions":["12"],"ecosystem_specific":{"vanir_signatures":[{"id":"ASB-A-294406604-ccb8d240","signature_version":"v1","deprecated":false,"digest":{"function_hash":"237362771053526941016576314456550928596","length":9340},"signature_type":"Function","target":{"file":"src/com/android/providers/media/MediaProvider.java","function":"ensureFileColumns"},"source":"https://android.googlesource.com/platform/packages/providers/MediaProvider/+/df39f8486b25473d0bdbeed896ad917e3c793bf9"},{"id":"ASB-A-294406604-e2bc0314","signature_version":"v1","deprecated":false,"digest":{"line_hashes":["57939264674174263502899728183470065665","156483739650783070040676283183882372427","43627227627199472868044543520274991244","165692613732677962069729788390091838178"],"threshold":0.9},"signature_type":"Line","target":{"file":"src/com/android/providers/media/MediaProvider.java"},"source":"https://android.googlesource.com/platform/packages/providers/MediaProvider/+/df39f8486b25473d0bdbeed896ad917e3c793bf9"}],"types":["ID"],"spl":"2024-07-01","fixes":["https://android.googlesource.com/platform/packages/providers/MediaProvider/+/df39f8486b25473d0bdbeed896ad917e3c793bf9"],"severity":"High"},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-294406604.json"}},{"package":{"name":"platform/packages/providers/MediaProvider","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"12L:0"},{"fixed":"12L:2024-07-01"}]}],"versions":["12L"],"ecosystem_specific":{"vanir_signatures":[{"source":"https://android.googlesource.com/platform/packages/providers/MediaProvider/+/df39f8486b25473d0bdbeed896ad917e3c793bf9","signature_version":"v1","deprecated":false,"digest":{"function_hash":"237362771053526941016576314456550928596","length":9340},"signature_type":"Function","target":{"file":"src/com/android/providers/media/MediaProvider.java","function":"ensureFileColumns"},"id":"ASB-A-294406604-07c012ca"},{"id":"ASB-A-294406604-c7bbc338","deprecated":false,"signature_version":"v1","digest":{"line_hashes":["57939264674174263502899728183470065665","156483739650783070040676283183882372427","43627227627199472868044543520274991244","165692613732677962069729788390091838178"],"threshold":0.9},"signature_type":"Line","target":{"file":"src/com/android/providers/media/MediaProvider.java"},"source":"https://android.googlesource.com/platform/packages/providers/MediaProvider/+/df39f8486b25473d0bdbeed896ad917e3c793bf9"}],"types":["ID"],"spl":"2024-07-01","fixes":["https://android.googlesource.com/platform/packages/providers/MediaProvider/+/df39f8486b25473d0bdbeed896ad917e3c793bf9"],"severity":"High"},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-294406604.json"}},{"package":{"name":"platform/packages/providers/MediaProvider","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"13:0"},{"fixed":"13:2024-07-01"}]}],"versions":["13"],"ecosystem_specific":{"vanir_signatures":[{"source":"https://android.googlesource.com/platform/packages/providers/MediaProvider/+/df39f8486b25473d0bdbeed896ad917e3c793bf9","signature_version":"v1","deprecated":false,"digest":{"line_hashes":["57939264674174263502899728183470065665","156483739650783070040676283183882372427","43627227627199472868044543520274991244","165692613732677962069729788390091838178"],"threshold":0.9},"signature_type":"Line","target":{"file":"src/com/android/providers/media/MediaProvider.java"},"id":"ASB-A-294406604-1cb6d073"},{"source":"https://android.googlesource.com/platform/packages/providers/MediaProvider/+/df39f8486b25473d0bdbeed896ad917e3c793bf9","signature_version":"v1","deprecated":false,"digest":{"function_hash":"237362771053526941016576314456550928596","length":9340},"signature_type":"Function","target":{"file":"src/com/android/providers/media/MediaProvider.java","function":"ensureFileColumns"},"id":"ASB-A-294406604-e4dd6d28"}],"types":["ID"],"spl":"2024-07-01","fixes":["https://android.googlesource.com/platform/packages/providers/MediaProvider/+/df39f8486b25473d0bdbeed896ad917e3c793bf9"],"severity":"High"},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-294406604.json"}},{"package":{"name":"platform/packages/providers/MediaProvider","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"14:0"},{"fixed":"14:2024-07-01"}]}],"versions":["14"],"ecosystem_specific":{"vanir_signatures":[{"id":"ASB-A-294406604-3c2c9d39","target":{"file":"src/com/android/providers/media/MediaProvider.java","function":"ensureFileColumns"},"signature_version":"v1","digest":{"function_hash":"237362771053526941016576314456550928596","length":9340},"signature_type":"Function","deprecated":false,"source":"https://android.googlesource.com/platform/packages/providers/MediaProvider/+/df39f8486b25473d0bdbeed896ad917e3c793bf9"},{"source":"https://android.googlesource.com/platform/packages/providers/MediaProvider/+/df39f8486b25473d0bdbeed896ad917e3c793bf9","signature_type":"Line","deprecated":false,"digest":{"line_hashes":["57939264674174263502899728183470065665","156483739650783070040676283183882372427","43627227627199472868044543520274991244","165692613732677962069729788390091838178"],"threshold":0.9},"signature_version":"v1","target":{"file":"src/com/android/providers/media/MediaProvider.java"},"id":"ASB-A-294406604-ac6450ee"}],"types":["ID"],"spl":"2024-07-01","fixes":["https://android.googlesource.com/platform/packages/providers/MediaProvider/+/df39f8486b25473d0bdbeed896ad917e3c793bf9"],"severity":"High"},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-294406604.json"}}],"schema_version":"1.7.5"}