Google Git
Sign in
android/platform/packages/providers/TelephonyProvider/0d45a6a15770ca3ec5d0d2264983c057aae41939
commit
0d45a6a15770ca3ec5d0d2264983c057aae41939
[log]
author
Hakjun Choi <hakjunc@google.com>
Mon Jun 23 04:48:00 2025 +0000
committer
Android Build Coastguard Worker <android-build-coastguard-worker@google.com>
Wed Jan 07 21:43:07 2026 -0800
tree
7fd97d1ae6e9fd81c6b75f3e92fbea651dcdfff6
parent
37babc702849821595634b6ecfda6f04404e2cf1 [diff]
Fix SQL injection vulnerability in SMS/MMS providers

This patch prevents SQL injection attacks, by validating the bracketing in the selection string provided to
MmsProvider, SmsProvider, and MmsSmsProvider.

The SQLiteTokenizer is updated to detect unbalanced or improperly nested
parentheses, throwing an IllegalArgumentException if invalid structures
are found. This check is invoked early in the query method of
each provider.

Flag: EXEMPT bug fix
Bug: 388530367
Test: verify using SMSMMSProviderSelectionBug app
Test: atest MmsProviderTest SmsProviderTest MmsSmsProviderTest
Test: run live network sms/mms test for checking regression b/427137135
(cherry picked from commit 98ddf9fa1f937831cbb1af5ad41a12771bc5930b)
Cherrypick-From: https://googleplex-android-review.googlesource.com/q/commit:6da5eeabe962ffcea863def5de2eb8a39d41f8e1
Merged-In: I83078493870aab4d8cc31fb3afc83bb33746e8e9
Change-Id: I83078493870aab4d8cc31fb3afc83bb33746e8e9
9 files changed
tree: 7fd97d1ae6e9fd81c6b75f3e92fbea651dcdfff6
  1. assets/
  2. proto/
  3. res/
  4. src/
  5. tests/
  6. .gitattributes
  7. .gitignore
  8. Android.bp
  9. AndroidManifest.xml
  10. AndroidManifestHsum.xml
  11. CleanSpec.mk
  12. OWNERS
  13. PREUPLOAD.cfg
  14. TEST_MAPPING