commit | c6608fdbaf1d4789625c5392cfa43d08df4893f4 | [log] [tgz] |
---|---|---|
author | Ashish Kumar <akgaurav@google.com> | Fri May 26 14:18:46 2023 +0000 |
committer | Prashantsinh Parmar <prashantsinh.parmar@fairphone.partners> | Mon Oct 09 23:43:26 2023 +0530 |
tree | 48a84eeed219f3e666df63f0a398d24f74419bec | |
parent | e4aa9512accfb5a24f27a84fae768d9d5d6cc00a [diff] |
RESTRICT AUTOMERGE Fixed leak of cross user data in multiple settings. - Any app is allowed to receive GET_CONTENT intent. Using this, an user puts back in the intent an uri with data of another user. - Telephony service has INTERACT_ACROSS_USER permission. Using this, it reads and shows the deta to the evil user. Fix: When telephony service gets the intent result, it checks if the uri is from the current user or not. Bug: b/256591023 , b/256819787 Test: The malicious behaviour was not being reproduced. Unable to import contact from other users data. Test2: Able to import contact from the primary user or uri with no user id (These settings are not available for secondary users) (cherry picked from https://googleplex-android-review.googlesource.com/q/commit:36e10a6d0d7b9efc543f8004729fa85751f4f70d) Merged-In: I1e3a643f17948153aecc1d0df9ffd9619ad678c1 Change-Id: I1e3a643f17948153aecc1d0df9ffd9619ad678c1 Change-Id: I5b35c31b35981de69fbe38d1001f9c40bcdf7d05