CVE-2022-20522

In getSlice of ProviderModelSlice.java, there is a missing permission check. This could lead to local escalation of privilege from the guest user with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID:...

PT-2022-14747 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions Android-13 Description: A missing permission check in the getSlice function of WifiSlice.java allows for a possible connection to a new WiFi network from guest mode. This could lead to local escalation of privilege without...

PT-2022-14736 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions Android-13 Description: The issue is related to a missing permission check in the getSlice of ProviderModelSlice.java. This could lead to local escalation of privilege from the guest user with no additional execution privileg...

poppler/pdf_fuzzer: Use-of-uninitialized-value in JBIG2Bitmap::getSlice

Project: https://anongit.freedesktop.org/git/poppler/poppler.git Detailed report: https://oss-fuzz.com/testcase?key=5086816502808576 Project: poppler Fuzzer: libFuzzerpopplerpdffuzzer Fuzz target binary: pdffuzzer Job Type: libfuzzermsanpoppler Platform Id: linux Crash Type:...