Gitiles
Code Review Sign In
gerrit-public.fairphone.software / fp2-dev / platform / packages / apps / Messaging / ffa0e2c04983934ca381c909eaca989349d8f7d6
commitffa0e2c04983934ca381c909eaca989349d8f7d6[log] [tgz]
authorTom Taylor <tomtaylor@google.com>Mon Dec 05 13:57:45 2016 -0800
committerDirk Vogt <dirk@fairphone.com>Wed Jan 25 21:18:10 2017 +0000
treeba08aeddfc9a9d8ecfc0da64b3cbfd38b46c8273
parente11db053b52061943e33d4749b2e126c0b6a142f [diff]
32161610 Security Vulnerability - Information disclosure vulnerability in AOSP Messaging

* Check to make sure the returned uri from the gallery picker does
not point to bugle's data directory (or any subdir).

* Test:
Manual-
* I created the test app in the bug, the one that injects the bad
uri into Bugle. I verified the bad behavior before the fix and the
good behavior after.
* I tested the gallery to make sure picking photos,
from the photos app and drive, still work.
* I verified the behavior in the debugger to be sure the code is
catching the bad uri from the test app.

FPIIM-186: CVE-2017-0413

Change-Id: I3393f3b886c837a49758b91945cf1e17ec9bee41
Fixes: 32161610
(cherry picked from commit 69ed579fb8092395c4ffeb64ff5147622def3d4a)
(cherry picked from commit 4face7d3dde6ff945a85df6d0c682f6986e3eed6)
2 files changed
tree: ba08aeddfc9a9d8ecfc0da64b3cbfd38b46c8273
  1. assets/
  2. build/
  3. jni/
  4. res/
  5. src/
  6. tests/
  7. tools/
  8. Android.mk
  9. AndroidManifest.xml
  10. ForceProguard.mk
  11. proguard-release.flags
  12. proguard-test.flags
  13. proguard.flags
  14. version.mk