Merge tag 'android-security-13.0.0_r12' into staging/lineage-20.0_merge-android-security-13.0.0_r12

Android Security 13.0.0 Release 12 (10993242)

# -----BEGIN PGP SIGNATURE-----
#
# iF0EABECAB0WIQRDQNE1cO+UXoOBCWTorT+BmrEOeAUCZW4XzQAKCRDorT+BmrEO
# eIktAJ9Sb9IJYeNf3DnwNDnxvAlXf6u0zgCfd4S4MhRrFW687L9JkAv/Bsq+t/c=
# =DUJZ
# -----END PGP SIGNATURE-----
# gpg: Signature made Mon Dec  4 20:17:49 2023 EET
# gpg:                using DSA key 4340D13570EF945E83810964E8AD3F819AB10E78
# gpg: Good signature from "The Android Open Source Project <initial-contribution@android.com>" [marginal]
# gpg: initial-contribution@android.com: Verified 2099 signatures in the past
#      2 years.  Encrypted 4 messages in the past 23 months.
# gpg: WARNING: This key is not certified with sufficiently trusted signatures!
# gpg:          It is not certain that the signature belongs to the owner.
# Primary key fingerprint: 4340 D135 70EF 945E 8381  0964 E8AD 3F81 9AB1 0E78

# By Hui Peng (8) and Brian Delwiche (3)
# Via Android Build Coastguard Worker
* tag 'android-security-13.0.0_r12':
  Fix timing attack in BTM_BleVerifySignature
  Fix UAF in ~CallbackEnv
  Add bounds checks in btif_avrcp_audio_track.cc
  Fix an OOB bug in parse_gap_data
  Factor out duplicate code for parsing gap data
  Enforce authentication if encryption is required
  Reorganize the code for checking auth requirement
  Reject access to  secure service authenticated from a temp bonding [3]
  Reject access to secure services authenticated from temp bonding [2]
  Reject access to secure service authenticated from a temp bonding [1]
  Fix multiple OOB bugs in btm_ble_gap.cc

Change-Id: I1c8c715967e8715984ed45ad31c53bd4884f6389