Android/frameworks_base
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
4e7fbda6338aee3da5eaf89714ddd09511543439
frameworks_base/libs/androidfw
History
y e46df9d47e ResStringPool: Fix security vulnerability 
Adds detection of attacker-modified size and data fields passed to
ResStringPool::setTo(). These attacks are modified apks that AAPT would
not normally generate. In the rare case this occurs, the installation
cannot be allowed to continue.

Bug: 71361168
Bug: 71360999
Test: run cts -m CtsAppSecurityHostTestCases \
          -t android.appsecurity.cts.CorruptApkTests
Change-Id: If7eb93a9e723b16c8a0556fc4e20006aa0391d57
2018-04-06 18:12:42 +00:00
..
include/androidfw
Added decoding of truncated AAPT string lengths.
2018-04-04 15:56:11 +00:00
tests
Added decoding of truncated AAPT string lengths.
2018-04-04 15:56:11 +00:00
.clang-format
Android.bp
Refactor AssetManager
2018-02-28 19:06:48 -08:00
ApkAssets.cpp
Refactor AssetManager
2018-02-28 19:06:48 -08:00
Asset.cpp
Don't use cutils/Atomic.h
2018-02-23 15:02:42 -08:00
AssetDir.cpp
AssetManager2.cpp
Fixed resource bag retrieval infinite recursion.
2018-04-04 15:55:34 +00:00
AssetManager.cpp
Merge "Don't use cutils/Atomic.h" am: 07735797a2 am: a272d540d8
2018-02-28 14:13:52 +00:00
AttributeResolution.cpp
Refactor AssetManager
2018-02-28 19:06:48 -08:00
BackupData.cpp
BackupHelpers.cpp
ChunkIterator.cpp
CursorWindow.cpp
DisplayEventDispatcher.cpp
Properly run window animations at vsync-sf (1/2)
2017-06-08 17:22:43 -07:00
Idmap.cpp
AssetManager2: Implement IDMAP support
2017-10-13 10:23:34 -07:00
libandroidfw_blacklist.txt
Disable sanitizer entirely in ResourceTypes.cpp
2017-12-28 09:14:42 -08:00
LoadedArsc.cpp
Refactor AssetManager
2018-02-28 19:06:48 -08:00
LocaleData.cpp
LocaleDataTables.cpp
misc.cpp
MODULE_LICENSE_APACHE2
NOTICE
ObbFile.cpp
OWNERS
Change ownership of AAPT2 and libandroidfw
2018-03-02 12:11:03 -08:00
ResourceTypes.cpp
ResStringPool: Fix security vulnerability
2018-04-06 18:12:42 +00:00
ResourceUtils.cpp
Fix resource by name lookup
2018-03-22 20:59:05 -07:00
StreamingZipInflater.cpp
TypeWrappers.cpp
Util.cpp
ZipFileRO.cpp
Fully implement "install" and "install-write" in PackageManagerShellCommand.
2017-10-31 10:54:31 -07:00
ZipUtils.cpp
ZipUtils: Rewrite in terms of zip_archive::Inflate.
2017-11-02 12:01:17 +00:00