Google Git
Sign in
android / platform / packages / services / Telecomm / refs/tags/android-security-10.0.0_r51
tag2db2a8461af47f1b62f234fd706bcc4a90d22595
taggerThe Android Open Source Project <initial-contribution@android.com>Mon Feb 01 22:01:33 2021 -0800
objectdde546798b26c88459d59ecc488f5000a7b63aa1 
Android security 10.0.0 release 51
commitdde546798b26c88459d59ecc488f5000a7b63aa1[log] [tgz]
authorGrace Jia <xiaotonj@google.com>Thu Jun 18 14:12:56 2020 -0700
committerAnis Assi <anisassi@google.com>Thu Sep 10 13:51:40 2020 -0700
tree71c785dd2b10a6419cef15bed6705d932887d3e9
parent631f5a31066c9716d52324467271c9a7ee1e726f [diff]
Fix security vulnerability of TelecomManager#getPhoneAccountsForPackage

Check calling package and READ_PRIVILEGED_PHONE_STATE to avoid potential
PII expotion.

Bug: 153995334
Test: atest TelecomUnitTests:TelecomServiceImpl
Change-Id: Ie834633dc4031d19af90e922ef0f111c3c8d7cb2
(cherry picked from commit 9d8d0cf3dcf741afe7ed50e60da513a47b0e8d59)
(cherry picked from commit f3f2d7c2dcb558081f02e282078c0c42c5c3e1b1)
1 file changed
tree: 71c785dd2b10a6419cef15bed6705d932887d3e9
  1. libs/
  2. proto/
  3. res/
  4. scripts/
  5. src/
  6. testapps/
  7. tests/
  8. .classpath
  9. .project
  10. Android.bp
  11. AndroidManifest.xml
  12. CleanSpec.mk
  13. OWNERS
  14. proguard.flags