Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / frameworks / base / 5bab9daf3cf66f4de19f8757e386030e8bef23ce
commit5bab9daf3cf66f4de19f8757e386030e8bef23ce[log] [tgz]
authorCarlos Valdivia <carlosvaldivia@google.com>Sun Sep 29 05:11:56 2013 -0700
committerCarlos Valdivia <carlosvaldivia@google.com>Sun Sep 29 05:23:16 2013 -0700
tree99acf5026c8aad1e7205eff5b1f771e43e4220fc
parentc6568719671206e726f260fad390680f7fb0ee9e [diff]
Prevent authenticators from using Settings to  launch arbitrary activities.

Various authenticator results such as getAuthToken and addAccount might
result in an Intent returned to the AccountManager caller. A malicious
authenticator could exploit the fact that the Settings are a system app,
lead the user to launch add account for their account type and thus get
Settings to use the intent to start some arbitrary third parties Activity.

The fix is to make sure that the UID of the app associated with Activity
to be launched by the supplied intent and the Authenticators UID share
the same signature.  This means that an authenticator implementer can only
exploit apps they control.

Bug: 7699048
Change-Id: I34330454c341e6a8422ca1ed3b390466a0feedce
1 file changed
tree: 99acf5026c8aad1e7205eff5b1f771e43e4220fc
  1. api/
  2. cmds/
  3. core/
  4. data/
  5. docs/
  6. drm/
  7. graphics/
  8. include/
  9. keystore/
  10. libs/
  11. location/
  12. media/
  13. native/
  14. nfc-extras/
  15. obex/
  16. opengl/
  17. packages/
  18. policy/
  19. samples/
  20. sax/
  21. services/
  22. telephony/
  23. test-runner/
  24. tests/
  25. tools/
  26. wifi/
  27. Android.mk
  28. CleanSpec.mk
  29. MODULE_LICENSE_APACHE2
  30. NOTICE
  31. preloaded-classes