{"id":"PUB-A-269738057", "published":"2023-06-01T00:00:00Z", "modified":"2026-04-30T15:48:46.890647439Z", "aliases":["CVE-2023-21191", "A-269738057"], "details":"In fixNotification of NotificationManagerService.java, there is a possible bypass of notification hide preference due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.", "affected":[{"package":{"name":"platform/frameworks/base", "ecosystem":"Android"}, "ranges":[{"type":"ECOSYSTEM", "events":[{"introduced":"13-next:0"}, {"fixed":"13-next:2023-06-01"}]}], "versions":["13-next"], "ecosystem_specific":{"fixes":["https://android.googlesource.com/platform/frameworks/base/+/d88e3522c6dc15a30875f810a2dd830657c482dc"], "severity":"Moderate", "spl":"2023-06-01", "types":["EoP"], "vanir_signatures":[{"deprecated":false, "digest":{"line_hashes":["22958080035816717202560403664685991890", "78123315983861430364359015650840499123", "183856406065227123892773425565102501940", "79635876793560842305014633038986757136", "312321841640813114234790836333174461078", "235125375418014438895254984887835224170", "61630958252814798551357640514339740264", "16699496012393502426038688768324289971", "314187314827919320136176759322348381114", "262333844503341372164981295343067069679", "308818903745529776665203353569457307478", "65162265104857293240296365857903256242", "27356863289009533215345071004145625404", "91905748566243451892390620574538037034", "236664540975238391300142303325764207736", "97730021583178991741148219150334820299", "54039155133794126294561902890717823083", "98120493992643444677959930722952129214", "15421390081872240526325879915808753869", "138344645973504630717914566244438963984", "146885620058357543268040305569022955453"], "threshold":0.9}, "id":"PUB-A-269738057-42b9241b", "signature_type":"Line", "signature_version":"v1", "source":"https://android.googlesource.com/platform/frameworks/base/+/d88e3522c6dc15a30875f810a2dd830657c482dc", "target":{"file":"services/core/java/com/android/server/notification/NotificationManagerService.java"}}, {"deprecated":false, "digest":{"function_hash":"187391855468368959923851713318301334502", "length":5055}, "id":"PUB-A-269738057-43978bbb", "signature_type":"Function", "signature_version":"v1", "source":"https://android.googlesource.com/platform/frameworks/base/+/d88e3522c6dc15a30875f810a2dd830657c482dc", "target":{"file":"services/core/java/com/android/server/notification/NotificationManagerService.java", "function":"enqueueNotificationInternal"}}, {"deprecated":false, "digest":{"function_hash":"193190198217629380855161219689323077320", "length":4214}, "id":"PUB-A-269738057-77d728f5", "signature_type":"Function", "signature_version":"v1", "source":"https://android.googlesource.com/platform/frameworks/base/+/d88e3522c6dc15a30875f810a2dd830657c482dc", "target":{"file":"services/core/java/com/android/server/notification/NotificationManagerService.java", "function":"fixNotification"}}, {"deprecated":false, "digest":{"line_hashes":["102580151532020817651757524858089080866", "66554477197568812191758632051680872084", "197138248013674296920468478617445192476", "237783404032002928573774197550746374124", "158565824480158959320596339880668900135", "41263151994992397904985065614435412555", "159441869495033598437210893815745634705"], "threshold":0.9}, "id":"PUB-A-269738057-f48f949e", "match_only_versions":["13-next"], "signature_type":"Line", "signature_version":"v1", "source":"https://android.googlesource.com/platform/frameworks/base/+/d88e3522c6dc15a30875f810a2dd830657c482dc", "target":{"file":"core/java/android/app/Notification.java"}}]}}, {"package":{"name":"platform/frameworks/base", "ecosystem":"Android"}, "ranges":[{"type":"ECOSYSTEM", "events":[{"introduced":"13:0"}, {"fixed":"13:2023-06-01"}]}], "versions":["13"], "ecosystem_specific":{"fixes":["https://android.googlesource.com/platform/frameworks/base/+/dc62f2e638221aad8d245d3f37b4048868c190a2"], "severity":"Moderate", "spl":"2023-06-01", "types":["EoP"], "vanir_signatures":[{"deprecated":false, "digest":{"line_hashes":["22958080035816717202560403664685991890", "78123315983861430364359015650840499123", "264818102733208233404114960612536518451", "220721070864769730041838505286883611655", "113049233724584447393567710487169853896", "237983200387033568921256815932296682395", "97307592675584412153987711539848374371", "83306181552364255535335304842347694303", "95659900456201053813128161858554883628", "68365380766032065253713403367385517434", "294393001502481507908713363479461138777", "175304995561996539491900536675455832233", "277669100791928012520514654314054844502", "134353294257664686943686203745812916452", "69154479499990868016645441502148358882", "270021099346729461439639111952246852741", "183856406065227123892773425565102501940", "85679316129049360054569676662694906448", "13549590592486121308503808933030620588", "249457318294885799272067929034026690418", "84641245149402994679783644774669844098", "16699496012393502426038688768324289971", "314187314827919320136176759322348381114", "262333844503341372164981295343067069679", "308818903745529776665203353569457307478", "65162265104857293240296365857903256242", "250038241571607401975207519069169091790", "116223325954622672097059423387504811086", "317012980656875293477715192279483513626", "169136890297647878219963562309007339548", "98120493992643444677959930722952129214", "171092876395883995941703438902801565535", "223744387640231771577192520241538123720", "210628608512236499611118482407437745751", "32151109611727911825148037131345065832", "37428572747060745710376682437976165082", "209073089254353515124410963701700073762", "237621716200335714559829348162207524038", "309974565009443495523105760274801533526"], "threshold":0.9}, "id":"PUB-A-269738057-2e133e0e", "signature_type":"Line", "signature_version":"v1", "source":"https://android.googlesource.com/platform/frameworks/base/+/dc62f2e638221aad8d245d3f37b4048868c190a2", "target":{"file":"services/core/java/com/android/server/notification/NotificationManagerService.java"}}, {"deprecated":false, "digest":{"function_hash":"295791645786204031815727152512633789924", "length":540}, "id":"PUB-A-269738057-9abaff58", "match_only_versions":["13"], "signature_type":"Function", "signature_version":"v1", "source":"https://android.googlesource.com/platform/frameworks/base/+/dc62f2e638221aad8d245d3f37b4048868c190a2", "target":{"file":"services/core/java/com/android/server/notification/NotificationManagerService.java", "function":"removeForegroundServiceFlagFromNotification"}}, {"deprecated":false, "digest":{"function_hash":"86168517221964858455829221119892033573", "length":5049}, "id":"PUB-A-269738057-b08a9bb9", "signature_type":"Function", "signature_version":"v1", "source":"https://android.googlesource.com/platform/frameworks/base/+/dc62f2e638221aad8d245d3f37b4048868c190a2", "target":{"file":"services/core/java/com/android/server/notification/NotificationManagerService.java", "function":"enqueueNotificationInternal"}}, {"deprecated":false, "digest":{"line_hashes":["237783404032002928573774197550746374124", "158565824480158959320596339880668900135", "41263151994992397904985065614435412555", "159441869495033598437210893815745634705"], "threshold":0.9}, "id":"PUB-A-269738057-b4337241", "match_only_versions":["13"], "signature_type":"Line", "signature_version":"v1", "source":"https://android.googlesource.com/platform/frameworks/base/+/dc62f2e638221aad8d245d3f37b4048868c190a2", "target":{"file":"core/java/android/app/Notification.java"}}, {"deprecated":false, "digest":{"function_hash":"197280277836961241919512445178391444049", "length":2837}, "id":"PUB-A-269738057-bc80f24c", "signature_type":"Function", "signature_version":"v1", "source":"https://android.googlesource.com/platform/frameworks/base/+/dc62f2e638221aad8d245d3f37b4048868c190a2", "target":{"file":"services/core/java/com/android/server/notification/NotificationManagerService.java", "function":"fixNotification"}}]}}], "references":[{"type":"ADVISORY", "url":"https://source.android.com/security/bulletin/2023-06-01"}]}