Google Git
Sign in
android / platform / system / core / refs/tags/android-7.0.0_r27
tag1819ba85a234b7232d05c11042bef10faafa1ee8
taggerThe Android Open Source Project <initial-contribution@android.com>Thu Jan 05 10:47:24 2017 -0800
objecte92c5a9ff47b8f26db49c8e914e9b420eccc2a2d 
Android 7.0.0 release 27
commite92c5a9ff47b8f26db49c8e914e9b420eccc2a2d[log] [tgz]
authorTianjie Xu <xunchang@google.com>Wed Sep 21 14:58:11 2016 -0700
committergitbuildkicker <android-build@google.com>Thu Oct 27 15:19:35 2016 -0700
tree34c27432788cf5407fbb727371b6a8f360ab059c
parent0849cb6f1a9981c584861fe7f697d9b85fd1563d [diff]
Fix out of bound access in libziparchive

The boundary check of an invalid EOCD record may succeed due to the
overflow of uint32_t. Fix the check.

Test: Open the crash.apk and libziparchive reports the offset error as expected.

Bug: 31251826
Change-Id: I1d8092a19b73886a671bc9d291cfc27d65e3d236
(cherry picked from commit ae8180c06dee228cd1378c56afa6020ae98d8a24)
(cherry picked from commit 1ee4892e66ba314131b7ecf17e98bb1762c4b84c)
1 file changed
tree: 34c27432788cf5407fbb727371b6a8f360ab059c
  1. adb/
  2. adf/
  3. base/
  4. bootstat/
  5. cpio/
  6. crash_reporter/
  7. debuggerd/
  8. fastboot/
  9. fingerprintd/
  10. fs_mgr/
  11. gatekeeperd/
  12. healthd/
  13. include/
  14. init/
  15. libbacktrace/
  16. libbinderwrapper/
  17. libcutils/
  18. libdiskconfig/
  19. libion/
  20. liblog/
  21. libmemtrack/
  22. libmemunreachable/
  23. libmincrypt/
  24. libnativebridge/
  25. libnativeloader/
  26. libnetutils/
  27. libpackagelistparser/
  28. libpixelflinger/
  29. libprocessgroup/
  30. libsparse/
  31. libsuspend/
  32. libsync/
  33. libsysutils/
  34. libusbhost/
  35. libutils/
  36. libziparchive/
  37. lmkd/
  38. logcat/
  39. logd/
  40. logwrapper/
  41. metricsd/
  42. mkbootimg/
  43. reboot/
  44. rootdir/
  45. run-as/
  46. sdcard/
  47. toolbox/
  48. trusty/
  49. tzdatacheck/
  50. .gitignore
  51. Android.mk
  52. CleanSpec.mk
  53. MODULE_LICENSE_APACHE2
  54. NOTICE