{"id":"PUB-A-238083570", "published":"2023-03-01T00:00:00Z", "modified":"2026-04-29T15:10:00.007170452Z", "aliases":["CVE-2022-20542", "A-238083570"], "details":"In parseParamsBlob of types.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.", "affected":[{"package":{"name":"platform/frameworks/av", "ecosystem":"Android"}, "ranges":[{"type":"ECOSYSTEM", "events":[{"introduced":"13:0"}, {"fixed":"13:2023-03-01"}]}], "versions":["13"], "ecosystem_specific":{"fixes":["https://android.googlesource.com/platform/frameworks/av/+/1f59b3e32a06666f590042c761546dbfa80df932"], "severity":"Moderate", "spl":"2023-03-01", "types":["EoP"], "vanir_signatures":[{"deprecated":false, "digest":{"function_hash":"252502464064434233495811951658030999305", "length":481}, "id":"PUB-A-238083570-6500d898", "match_only_versions":["13"], "signature_type":"Function", "signature_version":"v1", "source":"https://android.googlesource.com/platform/frameworks/av/+/1f59b3e32a06666f590042c761546dbfa80df932", "target":{"file":"media/codec2/hidl/1.0/utils/types.cpp", "function":"parseParamsBlob"}}, {"deprecated":false, "digest":{"line_hashes":["187384034938616907142588961231010095845", "123902100531512324080830392597044018823", "162078438064874198275533356012704469955", "73966707457518485861012062630462529335", "337231762992019579061714404053651099515", "75842530102443661316210944975280739288", "85990540839383729694221733510102659370", "203557918256241259412526865779308668877", "4757882590155588469858335792248449012", "285436997933295092510802401065878285350"], "threshold":0.9}, "id":"PUB-A-238083570-d7fd1e74", "match_only_versions":["13"], "signature_type":"Line", "signature_version":"v1", "source":"https://android.googlesource.com/platform/frameworks/av/+/1f59b3e32a06666f590042c761546dbfa80df932", "target":{"file":"media/codec2/hidl/1.0/utils/types.cpp"}}]}}], "references":[{"type":"ADVISORY", "url":"https://source.android.com/security/bulletin/2023-03-01"}, {"type":"FIX", "url":"https://android.googlesource.com/platform/frameworks/av/+/1f59b3e32a06666f590042c761546dbfa80df932"}]}