This project is mirrored from https://github.com/LineageOS/android_packages_apps_Contacts.git. Pull mirroring updated .
  1. 11 Oct, 2020 2 commits
  2. 25 Sep, 2020 1 commit
  3. 23 Sep, 2020 1 commit
    • Amit Kumar's avatar
      Fix issue 1842 · 3ba9fbaa
      Amit Kumar authored
      Change-Id: Icaedec1fe5dc55af15d2f1681cf2bfc1588f6a4a
      3ba9fbaa
  4. 08 Sep, 2020 2 commits
  5. 07 Aug, 2020 1 commit
    • John Shao's avatar
      Correct vulnerability when setting pending intents on import/export... · f196a40c
      John Shao authored
      Correct vulnerability when setting pending intents on import/export notifications by setting FLAG_IMMUTABLE
      
      For cases where we were setting an empty content intent, setContentIntent has not been required since Gingerbread
      
      Bug: 161718556
      Test: build
      Change-Id: I1f62fdc077401fea2c48a31527464464f08a6b64
      (cherry picked from commit 1d595f80e9c5157f8ca0285b572c9f1463e05c58)
      f196a40c
  6. 27 May, 2020 2 commits
  7. 27 Apr, 2020 1 commit
  8. 14 Apr, 2020 1 commit
  9. 06 Apr, 2020 1 commit
  10. 02 Apr, 2020 1 commit
  11. 31 Mar, 2020 1 commit
  12. 19 Mar, 2020 1 commit
  13. 12 Mar, 2020 1 commit
  14. 06 Mar, 2020 1 commit
  15. 20 Feb, 2020 1 commit
  16. 14 Feb, 2020 1 commit
  17. 06 Aug, 2019 1 commit
  18. 19 Jun, 2019 1 commit
  19. 26 May, 2019 1 commit
  20. 10 Mar, 2019 1 commit
  21. 01 Mar, 2019 1 commit
  22. 11 Jan, 2019 1 commit
    • Gary Mai's avatar
      Patch URI vulnerability in contact photo editing · 01ee7669
      Gary Mai authored
      Don't allow reading of "file://" URIs that don't point to "/storage" during the
      photo saving flow.
      
      This is to prevent malicious apps from asking us to read our own private
      files which we copy into a temporary "content://" URI that we give to a
      cropping app (with permission to read).
      
      Fixing here patches both PhotoSelectionHandler.java and
      AttachPhotoActivity.java.
      
      Tested:
      Manual with the fake gallery app. Confirmed that selecting an "image"
      with a URI of our own shared_pref file fails without reading it.
      ContactPhotoUtilsTest
      
      Bug: 113597344
      Change-Id: Iabb4f8139cedb7d7b865d69a4b95a4997f64c71d
      (cherry picked from commit ccfd94b9)
      01ee7669
  23. 05 Jan, 2019 1 commit
  24. 25 Nov, 2018 1 commit
  25. 15 Nov, 2018 1 commit
  26. 05 Nov, 2018 1 commit
    • Gary Mai's avatar
      Patch URI vulnerability in contact photo editing · 3193aa52
      Gary Mai authored
      Don't allow reading of "file://" URIs that don't point to "/storage" during the
      photo saving flow.
      
      This is to prevent malicious apps from asking us to read our own private
      files which we copy into a temporary "content://" URI that we give to a
      cropping app (with permission to read).
      
      Fixing here patches both PhotoSelectionHandler.java and
      AttachPhotoActivity.java.
      
      Tested:
      Manual with the fake gallery app. Confirmed that selecting an "image"
      with a URI of our own shared_pref file fails without reading it.
      ContactPhotoUtilsTest
      
      Bug: 113597344
      Change-Id: Iabb4f8139cedb7d7b865d69a4b95a4997f64c71d
      (cherry picked from commit ccfd94b9)
      3193aa52
  27. 04 Nov, 2018 1 commit
  28. 13 Oct, 2018 1 commit
  29. 16 Aug, 2018 1 commit
  30. 05 Aug, 2018 1 commit
  31. 25 Jun, 2018 1 commit
  32. 18 Jun, 2018 1 commit
    • Arne Coucheron's avatar
      Revert "Automatically set SIM number to my profile" · 8b9aeff2
      Arne Coucheron authored
      This commit introduces an issue with the SIM number and users handling.
      
      In Settings / System / About / Status / SIM Status, the field
      "My phone number" will either be "Unknown" or the real number,
      depending on what is stored on the SIM card.
      
      If it is the real number, the "Current user" in Settings dashboard will
      be listed as the number "2" instead of "Owner".
      
      If it is "Unknown", the "Current user" is correctly shown as "Owner".
      But if you open the AOSP Contacts app, edit your profile and add your
      phone number, the current user will be shown as "2".
      
      Correct: http://i65.tinypic.com/33vnofa.jpg
      Bug: http://i63.tinypic.com/1zwoh2a.jpg
      
      This reverts commit 7f3c3a32.
      
      Change-Id: Idcab75bc99c5f1d47cd8645417e7d3ba27659a5c
      8b9aeff2
  33. 16 Apr, 2018 1 commit
  34. 01 Apr, 2018 1 commit
  35. 19 Mar, 2018 3 commits