Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / frameworks / base / e46df9d47e5b3a90f0a010026881ec22462fe502
commite46df9d47e5b3a90f0a010026881ec22462fe502[log] [tgz]
authory <rtmitchell@google.com>Thu Apr 05 17:57:27 2018 -0700
committerRyan Mitchell <rtmitchell@google.com>Fri Apr 06 18:12:42 2018 +0000
tree1b4176aa65927b56193c7570d0da9b534d3a7ba5
parent28faced9734d509f8829ea710fe93bf33a4be324 [diff]
ResStringPool: Fix security vulnerability

Adds detection of attacker-modified size and data fields passed to
ResStringPool::setTo(). These attacks are modified apks that AAPT would
not normally generate. In the rare case this occurs, the installation
cannot be allowed to continue.

Bug: 71361168
Bug: 71360999
Test: run cts -m CtsAppSecurityHostTestCases \
          -t android.appsecurity.cts.CorruptApkTests
Change-Id: If7eb93a9e723b16c8a0556fc4e20006aa0391d57
1 file changed
tree: 1b4176aa65927b56193c7570d0da9b534d3a7ba5
  1. apct-tests/
  2. api/
  3. cmds/
  4. config/
  5. core/
  6. data/
  7. docs/
  8. drm/
  9. graphics/
  10. keystore/
  11. libs/
  12. location/
  13. lowpan/
  14. media/
  15. native/
  16. nfc-extras/
  17. obex/
  18. opengl/
  19. packages/
  20. proto/
  21. rs/
  22. samples/
  23. sax/
  24. services/
  25. telecomm/
  26. telephony/
  27. test-base/
  28. test-legacy/
  29. test-mock/
  30. test-runner/
  31. tests/
  32. tools/
  33. vr/
  34. wifi/
  35. Android.bp
  36. Android.mk
  37. CleanSpec.mk
  38. MODULE_LICENSE_APACHE2
  39. NOTICE
  40. pathmap.mk
  41. PREUPLOAD.cfg