DO NOT MERGE
Fix security vulnerability issue for multi user call redirections. Currently we won't check if the PhoneAccountHandle provided by a CallRedirectionService has multi-user capability or belong to the same user as the current user. Add the check and disconnect the call if this is an unexpected cross-user call redirection. Bug: 235098883 Test: CallsManagerTest, manual test with test app provided in b/235098883. Change-Id: Ia8b9468aa2bb8e3157c227e2617ff6a52e0af119 Merged-In: Ia8b9468aa2bb8e3157c227e2617ff6a52e0af119 (cherry picked from commit f29ab7e1)
Loading
-
mentioned in commit 15a3018b
-
mentioned in commit 05faf0ce
-
mentioned in commit 8cfb0a97
-
mentioned in commit 113506f9
-
mentioned in commit a1fced27
-
mentioned in commit d5983206
-
mentioned in commit fa663a6d
-
mentioned in commit 151fd2f6
-
mentioned in commit afb0aea6
-
mentioned in commit 02ec34a4
-
mentioned in commit 8fa626d5
-
mentioned in commit de386395
Please register or sign in to comment