Android/frameworks_base
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
d0ad4beb52aed0352dbe9b27fece992df5962a89
frameworks_base/cmds
History
Dichen Zhang 23c04c6f62 Fix command injection on screencap 
There is a potential injection by using screencap in case of user handled parameters.
"dumpstate" command launches "screencap", when "-p" is argument is set. At that moment, content of "-o" parameter generates a path with ".png" extension to define "screencap" argument.
"dumpstate" is often run as a service with "root" privileged such as defined in "dumpstate.rc". For instance "bugreportz" call "ctl.start" property with "dumpstatez".
Launching "dumpstate" with "-p" option and a user input as "-o" would result in a root command execution. SE Linux might protect part of this attack.

Cherry-pick from ag/10651695 with fix ag/10700515

Bug: 123230379
Test: please see commands #4 and #5
Change-Id: Icd88cdf4af153e07addb4449cdb117b1a3c881d3
2020-03-25 17:05:43 -07:00
..
am
Make am instrument capture logcat during test run, and return it to the host.
2019-05-01 13:02:25 -07:00
app_process
libhwbinder users use libhidlbase
2019-06-18 17:20:06 -07:00
appops
appwidget
backup
Convert to Soong
2018-05-04 23:17:00 -07:00
bmgr
[Multi-user] Clean up user state stored in the system user directory
2019-04-03 13:36:55 +01:00
bootanimation
bootanimation: Change bootanim ioprio to highest in IOPRIO_CLASS_RT
2019-08-09 14:06:42 -07:00
bu
[Multi-user] Add -user param to adb backup/restore
2018-12-17 16:48:13 +00:00
content
Extract common methods into ContentInterface.
2018-12-08 11:25:13 -07:00
device_config
Add binder implementation to support device config shell commands from the
2018-12-09 00:35:04 +00:00
dpm
Grant Device IDs access to Profile Owner
2018-11-15 10:34:20 +00:00
hid
Preload libnativehelper.so which cannot be loaded through the Java classloader.
2019-03-01 19:40:26 +00:00
idmap
Convert to Soong
2018-05-14 16:47:02 -07:00
idmap2
Fix atoi build errors
2019-06-04 06:05:31 +00:00
ime
incident
Fix lookup of incident section by name to not crash.
2019-05-21 13:29:23 -07:00
incident_helper
userdebug: support perfetto traces as a section in incident reports
2019-06-07 18:13:56 +01:00
incidentd
Fix integer overflow in make_timestamp_ns_locked
2019-08-22 22:46:54 +00:00
input
Inject long press documentation
2019-02-26 13:22:24 -08:00
interrupter
locksettings
media
Convert frameworks/base/cmds/media and bmgr to Android.bp
2019-03-29 12:41:25 -07:00
pm
requestsync
Tweak exemption for sync requests made by FG apps
2018-05-23 14:50:05 -07:00
screencap
Fix command injection on screencap
2020-03-25 17:05:43 -07:00
settings
sm
Remove greylist of apps that gain legacy access.
2019-04-01 18:48:52 -06:00
statsd
Merge changes from topic "cp-log-watchdog" into qt-qpr1-dev
2019-12-20 08:02:11 +00:00
svc
Add ADB command to wait for system server crash
2019-02-20 10:20:31 -08:00
telecom
Add adb command for setting and getting SIMs
2019-05-18 01:00:56 +00:00
uiautomator
Directly update DEFAULT_INPUT_METHOD in UiAutomatorTestCase
2018-12-24 20:15:08 -08:00
vr
wm