{"id":"PUB-A-244569759","details":"In decrypt_1_2 of CryptoPlugin.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.","aliases":["A-244569759","CVE-2022-20513"],"modified":"2026-04-13T15:04:09.269232Z","published":"2022-12-01T00:00:00Z","references":[{"type":"ADVISORY","url":"https://source.android.com/security/bulletin/2022-12-01"},{"type":"FIX","url":"https://android.googlesource.com/platform/frameworks/av/+/e63e9163ffdd4f198aaa8dbaba2f01f168e14484"}],"affected":[{"package":{"name":"platform/frameworks/av","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"13:0"},{"fixed":"13:2022-12-01"}]}],"versions":["13"],"ecosystem_specific":{"fixes":["https://android.googlesource.com/platform/frameworks/av/+/e63e9163ffdd4f198aaa8dbaba2f01f168e14484"],"spl":"2022-12-01","vanir_signatures":[{"digest":{"length":4294,"function_hash":"62139568946621299391445588076708794734"},"target":{"file":"drm/mediadrm/plugins/clearkey/aidl/CryptoPlugin.cpp","function":"CryptoPlugin::decrypt"},"signature_version":"v1","id":"PUB-A-244569759-0736cbb7","signature_type":"Function","source":"https://android.googlesource.com/platform/frameworks/av/+/e63e9163ffdd4f198aaa8dbaba2f01f168e14484","deprecated":false},{"digest":{"length":4347,"function_hash":"320729338109388946991454339627644030587"},"match_only_versions":["13"],"id":"PUB-A-244569759-1828292f","source":"https://android.googlesource.com/platform/frameworks/av/+/e63e9163ffdd4f198aaa8dbaba2f01f168e14484","deprecated":false,"signature_version":"v1","target":{"file":"drm/mediadrm/plugins/clearkey/hidl/CryptoPlugin.cpp","function":"CryptoPlugin::decrypt_1_2"},"signature_type":"Function"},{"digest":{"threshold":0.9,"line_hashes":["184600047787387790356792902611189317834","221313429323267024602153516039909397901","245207606533903476462994629453149050905","288741517303434131944453524348403237833"]},"target":{"file":"drm/mediadrm/plugins/clearkey/aidl/CryptoPlugin.cpp"},"signature_version":"v1","id":"PUB-A-244569759-402ddfa5","signature_type":"Line","source":"https://android.googlesource.com/platform/frameworks/av/+/e63e9163ffdd4f198aaa8dbaba2f01f168e14484","deprecated":false},{"digest":{"threshold":0.9,"line_hashes":["229879945084687175498580657043118261366","173420980407032980584913751335281011745","320107122210829798989557100342285815308","224394973105087058279530826724862542649"]},"match_only_versions":["13"],"id":"PUB-A-244569759-99b3da3e","source":"https://android.googlesource.com/platform/frameworks/av/+/e63e9163ffdd4f198aaa8dbaba2f01f168e14484","deprecated":false,"signature_version":"v1","target":{"file":"drm/mediadrm/plugins/clearkey/hidl/CryptoPlugin.cpp"},"signature_type":"Line"}],"types":["ID"],"severity":"Moderate"},"database_specific":{"source":"https://storage.googleapis.com/android-osv/PUB-A-244569759.json"}}],"schema_version":"1.7.5"}