Google Git
Sign in
android / platform / frameworks / base / 783b2efe5f678ac8ad4660bce87fb724d6414c18
commit783b2efe5f678ac8ad4660bce87fb724d6414c18[log] [tgz]
authory <rtmitchell@google.com>Thu Apr 05 17:57:27 2018 -0700
committerandroid-build-team Robot <android-build-team-robot@google.com>Fri Sep 14 20:44:45 2018 +0000
tree80b3e74ea6f5ce92eaba7026721e6cb9f8f906a7
parenta186f7434e4d64354e8cd15ece8ccb76c996e8ca [diff]
ResStringPool: Fix security vulnerability

Adds detection of attacker-modified size and data fields passed to
ResStringPool::setTo(). These attacks are modified apks that AAPT would
not normally generate. In the rare case this occurs, the installation
cannot be allowed to continue.

Bug: 71361168
Bug: 71360999
Test: run cts -m CtsAppSecurityHostTestCases \
          -t android.appsecurity.cts.CorruptApkTests

Change-Id: If7eb93a9e723b16c8a0556fc4e20006aa0391d57
Merged-In: If7eb93a9e723b16c8a0556fc4e20006aa0391d57
(cherry picked from commit 7e54c3f261d81316b75cb734075319108d8bc1d1)
1 file changed
tree: 80b3e74ea6f5ce92eaba7026721e6cb9f8f906a7
  1. api/
  2. cmds/
  3. core/
  4. data/
  5. docs/
  6. drm/
  7. graphics/
  8. include/
  9. keystore/
  10. libs/
  11. location/
  12. media/
  13. native/
  14. nfc-extras/
  15. obex/
  16. opengl/
  17. packages/
  18. proto/
  19. rs/
  20. samples/
  21. sax/
  22. services/
  23. telecomm/
  24. telephony/
  25. test-runner/
  26. tests/
  27. tools/
  28. wifi/
  29. Android.mk
  30. CleanSpec.mk
  31. compiled-classes-phone
  32. MODULE_LICENSE_APACHE2
  33. NOTICE
  34. preloaded-classes