commit | 7b0686af2f63f63a1a7b703f7414d5f60ab04449 | [log] [tgz] |
---|---|---|
author | Rob Fletcher <rfletch.vol@gmail.com> | Tue Feb 25 18:16:12 2014 +0000 |
committer | Rob Fletcher <rfletch.vol@gmail.com> | Thu Feb 27 19:46:12 2014 +0000 |
tree | 03404fb0f6f0129190fb5f68f8c8307a25bdce03 | |
parent | 0223f9c5ddfdbcd2c759d1b0cf289844ca0438c0 [diff] |
HTML injection fix for bluetooth pairing, issue 65946 During bluetooth pairing, HTML injection is possible via the device name displayed to the user. This escapes the device name, before creating HTML from it, so it will preserve things like < and > but will not affect rendering of HTML Bug: 12976386 Change-Id: I8a02d3be8c1a779dc9ed1c9ef8083a1159ab3f2b