Fix security vulnerability in CryptoHal
CryptoHal was not checking that the memory heap set by setHeap
was the same one that was actually used for the decrypt call, allowing
the caller to spoof the decrypt call into accessing arbitrary memory.
test: mediadrmserverpoc included in the bug & GTS media tests
(cherry picked from commit 9a9c3ab4d76f03f3abb3756bca9cdfe55c74326a)
2 files changed