Google Git
Sign in
android/platform/packages/apps/DocumentsUI/1f283d5b87d0c8f04a79d1d2a51ed4d9327ae864
commit
1f283d5b87d0c8f04a79d1d2a51ed4d9327ae864
[log]
author
Aditya Singh <adityasngh@google.com>
Thu Jan 23 22:13:09 2025 -0800
committer
Android Build Coastguard Worker <android-build-coastguard-worker@google.com>
Wed Feb 05 21:21:53 2025 -0800
tree
b3f1ca3ace73e58a3fed7dafdf69fa701d7f2b57
parent
954b6d5397eed78a59b570e0cf1df717c76804ce [diff]
Fix for SAF loophole in the lastAccessedStack.

When loading the last accessed stack, the code did not check if the file
path (uri) should be blocked, thereby allowing an attacker to bypass the
scoped storage restriction put on initial uri.
This change adds the check when loading last accessed stack.

Bug: 352294617 
Test: Manual as per http://b/352294617#comment4
Flag: EXEMPT bugfix
(cherry picked from https://googleplex-android-review.googlesource.com/q/commit:55ee091cbcaf62213fc6632bb8e0212166fff43b)
Merged-In: I4de8bad7174273c9390da978e186ad6a85f27be5
Change-Id: I4de8bad7174273c9390da978e186ad6a85f27be5
1 file changed
tree: b3f1ca3ace73e58a3fed7dafdf69fa701d7f2b57
  1. app-perf-tests/
  2. perf-tests/
  3. res/
  4. src/
  5. tests/
  6. Android.bp
  7. AndroidManifest.xml
  8. AndroidManifestForUnitTests.xml
  9. build_apk.mk
  10. lint-baseline.xml
  11. lint.xml
  12. OWNERS
  13. PREUPLOAD.cfg
  14. proguard.flags
  15. TEST_MAPPING
  16. wrap_alpha.py