Donate to e Foundation | Murena handsets with /e/OS | Own a part of Murena! Learn more

Commit dffa0782 authored by Fabien Sanglard's avatar Fabien Sanglard
Browse files

Fix security vulneratibly 31960359 

BufferQueueCore features a variable mLastQueuedSlot which is not
initialized in its constructor resulting in security vulnerability

Bug: 31960359
Change-Id: If892f59f6288d8b81b1e312995832a20c8341494
Tests: Manually on Angler
parent e81a4f15

libs/gui/BufferQueueCore.cpp

+1 −0
Original line number Diff line number Diff line
@@ -89,6 +89,7 @@ BufferQueueCore::BufferQueueCore(const sp<IGraphicBufferAlloc>& allocator) : 
    mSharedBufferSlot(INVALID_BUFFER_SLOT),

    mSharedBufferCache(Rect::INVALID_RECT, 0, NATIVE_WINDOW_SCALING_MODE_FREEZE,

            HAL_DATASPACE_UNKNOWN),

    mLastQueuedSlot(INVALID_BUFFER_SLOT),

    mUniqueId(getUniqueId())

{

    if (allocator == NULL) {