commit | 9660ba0ebe60a4c7ad6fb81693c6d583d52ce368 | [log] [tgz] |
---|---|---|
author | Sergey Nikolaienkov <sergeynv@google.com> | Tue Mar 28 12:22:31 2023 +0200 |
committer | Prashantsinh Parmar <prashantsinh.parmar@fairphone.partners> | Tue Oct 10 12:47:38 2023 +0530 |
tree | c204a15bd3de8763d27ac22c8da049e23bed7728 | |
parent | bfe8fb5f5d45d5fae8447fd0f156c2f809b89c7b [diff] |
Fix path traversal vulnerabilities in MediaProvider Canonicalize filepath provided by the caller when hanling SCAN_FILE_CALL method call in MediaProvider. Additionally, make sure to check access permission in SCAN_FILE_CALL (using enforceCallingPermissionInternal()). Preemptively canonicalize Files provided as an arguments to the public API methods in ModernMediaScanner (scanFile(), scanDirectory() and onDirectoryDirty()) to prevent path traversal attacks. Bug: 262244882 Test: atest MediaProviderTests (cherry picked from https://googleplex-android-review.googlesource.com/q/commit:5d2808f30c9dbe35ddbefeda4845328557569a93) Merged-In: I61e77d69ae857984b819fa0ea27bec5c26a34842 Change-Id: I61e77d69ae857984b819fa0ea27bec5c26a34842 Change-Id: I54b6e16d2cc9ec5067d1102226feaf8a886d27dc