{"id":"ASB-A-240685104", "published":"2022-11-01T00:00:00Z", "modified":"2026-04-29T15:10:00.007170452Z", "aliases":["CVE-2022-20453", "A-240685104"], "details":"In update of MmsProvider.java, there is a possible constriction of directory permissions due to a path traversal error. This could lead to local denial of service of SIM recognition with no additional execution privileges needed. User interaction is needed for exploitation.", "affected":[{"package":{"name":"platform/packages/providers/TelephonyProvider", "ecosystem":"Android"}, "ranges":[{"type":"ECOSYSTEM", "events":[{"introduced":"10:0"}, {"fixed":"10:2022-11-01"}]}], "versions":["10"], "ecosystem_specific":{"fixes":["https://android.googlesource.com/platform/packages/providers/TelephonyProvider/+/0c3e2ce2810e4f5988b342f96bdd600c293c3187"], "severity":"High", "spl":"2022-11-01", "types":["DoS"], "vanir_signatures":[{"deprecated":false, "digest":{"line_hashes":["310513978021391204864691454047482653081", "245466022437851511216251951037504528254", "61554014926449441117554660666396761920", "318056050869576794106827911427212303750", "157877292678405352450963943745765796271", "193804423567374449703618981564635943761", "225463132681912264856705030500693807145", "277627659287178576202757075866297746347", "77822328292213680612806883761691951558", "215800759361354294309361721596629713950", "195085557379179509690497780792579401090", "218235235875239709080233228940351271634"], "threshold":0.9}, "id":"ASB-A-240685104-395b77ec", "signature_type":"Line", "signature_version":"v1", "source":"https://android.googlesource.com/platform/packages/providers/TelephonyProvider/+/0c3e2ce2810e4f5988b342f96bdd600c293c3187", "target":{"file":"src/com/android/providers/telephony/MmsProvider.java"}}, {"deprecated":false, "digest":{"function_hash":"217839939959143002105276044828606862960", "length":2075}, "id":"ASB-A-240685104-c0c9654b", "signature_type":"Function", "signature_version":"v1", "source":"https://android.googlesource.com/platform/packages/providers/TelephonyProvider/+/0c3e2ce2810e4f5988b342f96bdd600c293c3187", "target":{"file":"src/com/android/providers/telephony/MmsProvider.java", "function":"update"}}]}}, {"package":{"name":"platform/packages/providers/TelephonyProvider", "ecosystem":"Android"}, "ranges":[{"type":"ECOSYSTEM", "events":[{"introduced":"11:0"}, {"fixed":"11:2022-11-01"}]}], "versions":["11"], "ecosystem_specific":{"fixes":["https://android.googlesource.com/platform/packages/providers/TelephonyProvider/+/ff2cc0cede04445bf5ecbdaf3f0aa8dd0d48ac94"], "severity":"High", "spl":"2022-11-01", "types":["DoS"], "vanir_signatures":[{"deprecated":false, "digest":{"line_hashes":["145152635052268266949179210808079967390", "30844785361899233513667603320812922157", "98103326099354500235923408851385812936", "157877292678405352450963943745765796271", "281253907639525144025299373930782407033", "252625777137322822269991224775587469038", "291192797310056691991552150646166467033", "26303256213113321135636924466551307326", "278832171060732843206969616038814260467", "332902526956022740033185602868364421634", "142836736004995824590427127114930962374", "314680638951962557161692358949474693392", "214663369452189225246104823419170263815"], "threshold":0.9}, "id":"ASB-A-240685104-0527549b", "signature_type":"Line", "signature_version":"v1", "source":"https://android.googlesource.com/platform/packages/providers/TelephonyProvider/+/ff2cc0cede04445bf5ecbdaf3f0aa8dd0d48ac94", "target":{"file":"src/com/android/providers/telephony/MmsProvider.java"}}, {"deprecated":false, "digest":{"function_hash":"50204684036967144196046525010419177592", "length":2136}, "id":"ASB-A-240685104-c7f1c22a", "signature_type":"Function", "signature_version":"v1", "source":"https://android.googlesource.com/platform/packages/providers/TelephonyProvider/+/ff2cc0cede04445bf5ecbdaf3f0aa8dd0d48ac94", "target":{"file":"src/com/android/providers/telephony/MmsProvider.java", "function":"update"}}]}}, {"package":{"name":"platform/packages/providers/TelephonyProvider", "ecosystem":"Android"}, "ranges":[{"type":"ECOSYSTEM", "events":[{"introduced":"12:0"}, {"fixed":"12:2022-11-01"}]}], "versions":["12"], "ecosystem_specific":{"fixes":["https://android.googlesource.com/platform/packages/providers/TelephonyProvider/+/ff2cc0cede04445bf5ecbdaf3f0aa8dd0d48ac94"], "severity":"High", "spl":"2022-11-01", "types":["DoS"], "vanir_signatures":[{"deprecated":false, "digest":{"function_hash":"50204684036967144196046525010419177592", "length":2136}, "id":"ASB-A-240685104-32a2bff1", "signature_type":"Function", "signature_version":"v1", "source":"https://android.googlesource.com/platform/packages/providers/TelephonyProvider/+/ff2cc0cede04445bf5ecbdaf3f0aa8dd0d48ac94", "target":{"file":"src/com/android/providers/telephony/MmsProvider.java", "function":"update"}}, {"deprecated":false, "digest":{"line_hashes":["145152635052268266949179210808079967390", "30844785361899233513667603320812922157", "98103326099354500235923408851385812936", "157877292678405352450963943745765796271", "281253907639525144025299373930782407033", "252625777137322822269991224775587469038", "291192797310056691991552150646166467033", "26303256213113321135636924466551307326", "278832171060732843206969616038814260467", "332902526956022740033185602868364421634", "142836736004995824590427127114930962374", "314680638951962557161692358949474693392", "214663369452189225246104823419170263815"], "threshold":0.9}, "id":"ASB-A-240685104-7cceee24", "signature_type":"Line", "signature_version":"v1", "source":"https://android.googlesource.com/platform/packages/providers/TelephonyProvider/+/ff2cc0cede04445bf5ecbdaf3f0aa8dd0d48ac94", "target":{"file":"src/com/android/providers/telephony/MmsProvider.java"}}]}}, {"package":{"name":"platform/packages/providers/TelephonyProvider", "ecosystem":"Android"}, "ranges":[{"type":"ECOSYSTEM", "events":[{"introduced":"12L:0"}, {"fixed":"12L:2022-11-01"}]}], "versions":["12L"], "ecosystem_specific":{"fixes":["https://android.googlesource.com/platform/packages/providers/TelephonyProvider/+/319f89db8cdfb5e95d86f3573dac8b4e4ed8790b"], "severity":"High", "spl":"2022-11-01", "types":["DoS"], "vanir_signatures":[{"deprecated":false, "digest":{"function_hash":"50204684036967144196046525010419177592", "length":2136}, "id":"ASB-A-240685104-23f67340", "signature_type":"Function", "signature_version":"v1", "source":"https://android.googlesource.com/platform/packages/providers/TelephonyProvider/+/319f89db8cdfb5e95d86f3573dac8b4e4ed8790b", "target":{"file":"src/com/android/providers/telephony/MmsProvider.java", "function":"update"}}, {"deprecated":false, "digest":{"line_hashes":["145152635052268266949179210808079967390", "30844785361899233513667603320812922157", "98103326099354500235923408851385812936", "157877292678405352450963943745765796271", "281253907639525144025299373930782407033", "252625777137322822269991224775587469038", "291192797310056691991552150646166467033", "26303256213113321135636924466551307326", "278832171060732843206969616038814260467", "332902526956022740033185602868364421634", "142836736004995824590427127114930962374", "314680638951962557161692358949474693392", "214663369452189225246104823419170263815"], "threshold":0.9}, "id":"ASB-A-240685104-a680d371", "signature_type":"Line", "signature_version":"v1", "source":"https://android.googlesource.com/platform/packages/providers/TelephonyProvider/+/319f89db8cdfb5e95d86f3573dac8b4e4ed8790b", "target":{"file":"src/com/android/providers/telephony/MmsProvider.java"}}]}}, {"package":{"name":"platform/packages/providers/TelephonyProvider", "ecosystem":"Android"}, "ranges":[{"type":"ECOSYSTEM", "events":[{"introduced":"13:0"}, {"fixed":"13:2022-11-01"}]}], "versions":["13"], "ecosystem_specific":{"fixes":["https://android.googlesource.com/platform/packages/providers/TelephonyProvider/+/166dbaf293d2bbee1a3bbdc238b4b7acbe010672"], "severity":"High", "spl":"2022-11-01", "types":["DoS"], "vanir_signatures":[{"deprecated":false, "digest":{"function_hash":"50204684036967144196046525010419177592", "length":2136}, "id":"ASB-A-240685104-2445a422", "signature_type":"Function", "signature_version":"v1", "source":"https://android.googlesource.com/platform/packages/providers/TelephonyProvider/+/166dbaf293d2bbee1a3bbdc238b4b7acbe010672", "target":{"file":"src/com/android/providers/telephony/MmsProvider.java", "function":"update"}}, {"deprecated":false, "digest":{"line_hashes":["145152635052268266949179210808079967390", "30844785361899233513667603320812922157", "98103326099354500235923408851385812936", "157877292678405352450963943745765796271", "281253907639525144025299373930782407033", "252625777137322822269991224775587469038", "291192797310056691991552150646166467033", "26303256213113321135636924466551307326", "278832171060732843206969616038814260467", "332902526956022740033185602868364421634", "142836736004995824590427127114930962374", "314680638951962557161692358949474693392", "214663369452189225246104823419170263815"], "threshold":0.9}, "id":"ASB-A-240685104-c7f182e1", "signature_type":"Line", "signature_version":"v1", "source":"https://android.googlesource.com/platform/packages/providers/TelephonyProvider/+/166dbaf293d2bbee1a3bbdc238b4b7acbe010672", "target":{"file":"src/com/android/providers/telephony/MmsProvider.java"}}]}}], "references":[{"type":"ADVISORY", "url":"https://source.android.com/security/bulletin/2022-11-01"}, {"type":"FIX", "url":"https://android.googlesource.com/platform/packages/providers/TelephonyProvider/+/fc6557b9bf18d71b0f496f7302c47feeaa3fc5e2"}]}