Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / system / core / e7fd911fd42b1f8bea6a004e2bcc1d2dda4ec718
commite7fd911fd42b1f8bea6a004e2bcc1d2dda4ec718[log] [tgz]
authorNick Kralevich <nnk@google.com>Fri Jan 27 13:06:53 2012 -0800
committerNick Kralevich <nnk@google.com>Fri Jan 27 13:06:53 2012 -0800
treec3453665a18a4de328e584202877332a153c02e8
parent46f86f11d446a650602057f8a07eba1f609d7fe9 [diff]
Restrict zygote to system user.

CVE-2011-3918: Address denial of service attack against Android's
zygote process. This change enforces that only UID=system can
directly connect to zygote to spawn processes.

Change-Id: I89f5f05fa44ba8582920b66854df3e79527ae067
1 file changed
tree: c3453665a18a4de328e584202877332a153c02e8
  1. adb/
  2. charger/
  3. cpio/
  4. debuggerd/
  5. fastboot/
  6. gpttool/
  7. include/
  8. init/
  9. libcorkscrew/
  10. libctest/
  11. libcutils/
  12. libdiskconfig/
  13. liblinenoise/
  14. liblog/
  15. libmincrypt/
  16. libnetutils/
  17. libnl_2/
  18. libpixelflinger/
  19. libsysutils/
  20. libusbhost/
  21. libzipfile/
  22. logcat/
  23. logwrapper/
  24. mkbootimg/
  25. netcfg/
  26. nexus/
  27. rootdir/
  28. run-as/
  29. sdcard/
  30. sh/
  31. toolbox/
  32. .gitignore
  33. Android.mk
  34. CleanSpec.mk
  35. README
  36. ThirdPartyProject.prop