{"id":"ASB-A-240422263", "published":"2022-12-01T00:00:00Z", "modified":"2026-06-17T15:23:34.405473849Z", "aliases":["CVE-2022-20482", "A-240422263"], "details":"In createNotificationChannel of NotificationManager.java, there is a possible way to make the device unusable and require factory reset due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.", "affected":[{"package":{"name":"platform/frameworks/base", "ecosystem":"Android"}, "ranges":[{"type":"ECOSYSTEM", "events":[{"introduced":"12:0"}, {"fixed":"12:2022-12-01"}]}], "versions":["12"], "ecosystem_specific":{"fixes":["https://android.googlesource.com/platform/frameworks/base/+/36acdd675890296151b7a99e05fa7436d59a289b"], "severity":"High", "spl":"2022-12-01", "types":["DoS"], "vanir_signatures":[{"deprecated":false, "digest":{"line_hashes":["17449676190573542466631081769697285205", "261420479924190779313311522506908789796", "140625957613190109810105311449968894466", "167031959439128374951237651286786797615"], "threshold":0.9}, "id":"ASB-A-240422263-1c1a91c9", "signature_type":"Line", "signature_version":"v1", "source":"https://android.googlesource.com/platform/frameworks/base/+/36acdd675890296151b7a99e05fa7436d59a289b", "target":{"file":"services/core/java/com/android/server/notification/PreferencesHelper.java"}}]}}, {"package":{"name":"platform/frameworks/base", "ecosystem":"Android"}, "ranges":[{"type":"ECOSYSTEM", "events":[{"introduced":"12L:0"}, {"fixed":"12L:2022-12-01"}]}], "versions":["12L"], "ecosystem_specific":{"fixes":["https://android.googlesource.com/platform/frameworks/base/+/aa170108bd27f0d694241d7a5875c9e326283ce1"], "severity":"High", "spl":"2022-12-01", "types":["DoS"], "vanir_signatures":[{"deprecated":false, "digest":{"line_hashes":["17449676190573542466631081769697285205", "261420479924190779313311522506908789796", "140625957613190109810105311449968894466", "167031959439128374951237651286786797615"], "threshold":0.9}, "id":"ASB-A-240422263-d0042042", "signature_type":"Line", "signature_version":"v1", "source":"https://android.googlesource.com/platform/frameworks/base/+/aa170108bd27f0d694241d7a5875c9e326283ce1", "target":{"file":"services/core/java/com/android/server/notification/PreferencesHelper.java"}}]}}, {"package":{"name":"platform/frameworks/base", "ecosystem":"Android"}, "ranges":[{"type":"ECOSYSTEM", "events":[{"introduced":"13:0"}, {"fixed":"13:2022-12-01"}]}], "versions":["13"], "ecosystem_specific":{"fixes":["https://android.googlesource.com/platform/frameworks/base/+/39b4b1e9aad79c98413a866de53ccacccf64ca7f"], "severity":"High", "spl":"2022-12-01", "types":["DoS"], "vanir_signatures":[{"deprecated":false, "digest":{"line_hashes":["17449676190573542466631081769697285205", "279668869627289736422061895331351839375", "73558722379178174112314533614527603070", "321859287524912569841858813086491484261"], "threshold":0.9}, "id":"ASB-A-240422263-e079dab2", "signature_type":"Line", "signature_version":"v1", "source":"https://android.googlesource.com/platform/frameworks/base/+/39b4b1e9aad79c98413a866de53ccacccf64ca7f", "target":{"file":"services/core/java/com/android/server/notification/PreferencesHelper.java"}}]}}], "references":[{"type":"ADVISORY", "url":"https://source.android.com/security/bulletin/2022-12-01"}, {"type":"FIX", "url":"https://android.googlesource.com/platform/frameworks/base/+/f528b337dd48b7e8071269e07e610bd4a3668c75"}]}