fa24917525b708bd653533120c7685a383d35ba1 - platform/frameworks/opt/telephony

commit	fa24917525b708bd653533120c7685a383d35ba1	[log] [tgz]
author	SongFerngWang <songferngwang@google.com>	Wed May 05 21:30:39 2021 +0800
committer	android-build-team Robot <android-build-team-robot@google.com>	Wed Jun 16 01:11:30 2021 +0000
tree	4e6308574bc7a3ecf8a830d5ad258533043a0268
parent	ac114bf880c089a72cbb29007fef07b2bd57256c [diff]

[security] SubscriptionGroup is exposed to unprivileged callers

SubscriptionInfo.mGroupUUID is not cleared in
conditionallyRemoveIdentifiers if the caller only has READ_PHONE_STATE
(based on a check to checkReadPhoneState) and not READ_DEVICE_IDENTIFIERS.
Bug: 181053462
Test: atest SubscriptionManagerTest

Change-Id: I68d1edb4e7cc2ad6696363ea1dacb09e839a651e
Merged-In: I68d1edb4e7cc2ad6696363ea1dacb09e839a651e
(cherry picked from commit f93d57ebb057af5bdb493dfe34519bf97869b023)

src/java/com/android/internal/telephony/SubscriptionController.java[diff]

1 file changed

tree: 4e6308574bc7a3ecf8a830d5ad258533043a0268

proto/
src/
telephony-resources/
tests/
tools/
Android.bp
AndroidManifest_Resources.xml
CleanSpec.mk
jarjar-rules-shared.txt
OWNERS
PREUPLOAD.cfg
README.txt
TEST_MAPPING