• Ryan Mitchell's avatar
    Fix DynamicRefTable::load security bug · 906afb4f
    Ryan Mitchell authored
    DynamicRefTables parsed from apks are missing bounds checks that prevent
    buffer overflows. This changes verifies the bounds of the header before
    attempting to preform operations on the chunk.
    
    Bug: 79488511
    Test: run cts -m CtsAppSecurityHostTestCases \
            -t android.appsecurity.cts.CorruptApkTests
    
    Change-Id: I02c8ad957da244fce777ac68a482e4e8fa70f846
    Merged-In: I02c8ad957da244fce777ac68a482e4e8fa70f846
    (cherry picked from commit 18a6ada4)
    906afb4f
Name
Last commit
Last update
..
androidfw Loading commit data...
common_time Loading commit data...
hwui Loading commit data...
incident Loading commit data...
input Loading commit data...
services Loading commit data...
storage Loading commit data...
usb Loading commit data...