{"id":"ASB-A-304280682","details":"In updateInternal of MediaProvider.java , there is a possible access of another app's files due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.","aliases":["A-304280682","CVE-2024-43089"],"modified":"2026-04-10T16:16:18.068628Z","published":"2024-11-01T00:00:00Z","references":[{"type":"ADVISORY","url":"https://source.android.com/security/bulletin/2024-11-01"},{"type":"FIX","url":"https://android.googlesource.com/platform/packages/providers/MediaProvider/+/33ff6a663eea1fcdd2b422b98722c1dee48a7f6a"}],"affected":[{"package":{"name":"platform/packages/providers/MediaProvider","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"15-next:0"},{"fixed":"15-next:2024-11-01"}]}],"versions":["15-next"],"ecosystem_specific":{"vanir_signatures":[{"id":"ASB-A-304280682-3ef7afcb","target":{"file":"src/com/android/providers/media/MediaProvider.java","function":"updateInternal"},"source":"https://android.googlesource.com/platform/packages/providers/MediaProvider/+/3f12cfbd7f7d76e9908ebe9285f6d0c8bc1e7775","digest":{"length":11725,"function_hash":"321194230133582480089621038804693341133"},"signature_type":"Function","deprecated":false,"signature_version":"v1"},{"id":"ASB-A-304280682-65423ca5","target":{"file":"src/com/android/providers/media/MediaProvider.java"},"source":"https://android.googlesource.com/platform/packages/providers/MediaProvider/+/3f12cfbd7f7d76e9908ebe9285f6d0c8bc1e7775","digest":{"line_hashes":["276225167112100087265125330256831204007","320163482423534612010675777114789837722","86102312791780717883442502186039514936","248811002472384000922184042276885804213"],"threshold":0.9},"signature_type":"Line","deprecated":false,"signature_version":"v1"}],"fixes":["https://android.googlesource.com/platform/packages/providers/MediaProvider/+/3f12cfbd7f7d76e9908ebe9285f6d0c8bc1e7775"],"types":["EoP"],"severity":"High","spl":"2024-11-01"},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-304280682.json"}},{"package":{"name":"platform/packages/providers/MediaProvider","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"12:0"},{"fixed":"12:2024-11-01"}]}],"versions":["12"],"ecosystem_specific":{"vanir_signatures":[{"id":"ASB-A-304280682-1cfc323f","target":{"file":"src/com/android/providers/media/MediaProvider.java"},"source":"https://android.googlesource.com/platform/packages/providers/MediaProvider/+/3cdbf52099088ea1b8c1b4a38f57b7b240446534","digest":{"line_hashes":["276225167112100087265125330256831204007","320163482423534612010675777114789837722","86102312791780717883442502186039514936","248811002472384000922184042276885804213"],"threshold":0.9},"signature_type":"Line","deprecated":false,"signature_version":"v1"},{"id":"ASB-A-304280682-23e77d01","target":{"file":"src/com/android/providers/media/MediaProvider.java","function":"updateInternal"},"source":"https://android.googlesource.com/platform/packages/providers/MediaProvider/+/3cdbf52099088ea1b8c1b4a38f57b7b240446534","digest":{"length":11619,"function_hash":"96223597478534150747499244719181199149"},"signature_type":"Function","deprecated":false,"signature_version":"v1"}],"fixes":["https://android.googlesource.com/platform/packages/providers/MediaProvider/+/3cdbf52099088ea1b8c1b4a38f57b7b240446534"],"types":["EoP"],"severity":"High","spl":"2024-11-01"},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-304280682.json"}},{"package":{"name":"platform/packages/providers/MediaProvider","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"12L:0"},{"fixed":"12L:2024-11-01"}]}],"versions":["12L"],"ecosystem_specific":{"vanir_signatures":[{"id":"ASB-A-304280682-7a364ac7","target":{"file":"src/com/android/providers/media/MediaProvider.java"},"source":"https://android.googlesource.com/platform/packages/providers/MediaProvider/+/3cdbf52099088ea1b8c1b4a38f57b7b240446534","digest":{"line_hashes":["276225167112100087265125330256831204007","320163482423534612010675777114789837722","86102312791780717883442502186039514936","248811002472384000922184042276885804213"],"threshold":0.9},"signature_type":"Line","deprecated":false,"signature_version":"v1"},{"id":"ASB-A-304280682-e302c3e3","target":{"file":"src/com/android/providers/media/MediaProvider.java","function":"updateInternal"},"source":"https://android.googlesource.com/platform/packages/providers/MediaProvider/+/3cdbf52099088ea1b8c1b4a38f57b7b240446534","digest":{"length":11619,"function_hash":"96223597478534150747499244719181199149"},"signature_type":"Function","deprecated":false,"signature_version":"v1"}],"fixes":["https://android.googlesource.com/platform/packages/providers/MediaProvider/+/3cdbf52099088ea1b8c1b4a38f57b7b240446534"],"types":["EoP"],"severity":"High","spl":"2024-11-01"},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-304280682.json"}},{"package":{"name":"platform/packages/providers/MediaProvider","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"13:0"},{"fixed":"13:2024-11-01"}]}],"versions":["13"],"ecosystem_specific":{"vanir_signatures":[{"id":"ASB-A-304280682-d7629e4a","target":{"file":"src/com/android/providers/media/MediaProvider.java"},"source":"https://android.googlesource.com/platform/packages/providers/MediaProvider/+/3cdbf52099088ea1b8c1b4a38f57b7b240446534","digest":{"line_hashes":["276225167112100087265125330256831204007","320163482423534612010675777114789837722","86102312791780717883442502186039514936","248811002472384000922184042276885804213"],"threshold":0.9},"signature_type":"Line","deprecated":false,"signature_version":"v1"},{"id":"ASB-A-304280682-deac93ad","target":{"file":"src/com/android/providers/media/MediaProvider.java","function":"updateInternal"},"source":"https://android.googlesource.com/platform/packages/providers/MediaProvider/+/3cdbf52099088ea1b8c1b4a38f57b7b240446534","digest":{"length":11619,"function_hash":"96223597478534150747499244719181199149"},"signature_type":"Function","deprecated":false,"signature_version":"v1"}],"fixes":["https://android.googlesource.com/platform/packages/providers/MediaProvider/+/3cdbf52099088ea1b8c1b4a38f57b7b240446534"],"types":["EoP"],"severity":"High","spl":"2024-11-01"},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-304280682.json"}},{"package":{"name":"platform/packages/providers/MediaProvider","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"14:0"},{"fixed":"14:2024-11-01"}]}],"versions":["14"],"ecosystem_specific":{"vanir_signatures":[{"id":"ASB-A-304280682-302b566a","target":{"file":"src/com/android/providers/media/MediaProvider.java"},"source":"https://android.googlesource.com/platform/packages/providers/MediaProvider/+/3cdbf52099088ea1b8c1b4a38f57b7b240446534","digest":{"line_hashes":["276225167112100087265125330256831204007","320163482423534612010675777114789837722","86102312791780717883442502186039514936","248811002472384000922184042276885804213"],"threshold":0.9},"signature_type":"Line","deprecated":false,"signature_version":"v1"},{"id":"ASB-A-304280682-f9e69783","target":{"file":"src/com/android/providers/media/MediaProvider.java","function":"updateInternal"},"source":"https://android.googlesource.com/platform/packages/providers/MediaProvider/+/3cdbf52099088ea1b8c1b4a38f57b7b240446534","digest":{"length":11619,"function_hash":"96223597478534150747499244719181199149"},"signature_type":"Function","deprecated":false,"signature_version":"v1"}],"fixes":["https://android.googlesource.com/platform/packages/providers/MediaProvider/+/3cdbf52099088ea1b8c1b4a38f57b7b240446534"],"types":["EoP"],"severity":"High","spl":"2024-11-01"},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-304280682.json"}}],"schema_version":"1.7.5"}