d86de8900a3a2f19147f01d697c6bd9149a89489 - LeafOS-Project/android_packages_apps_Gallery2

commit	d86de8900a3a2f19147f01d697c6bd9149a89489	[log] [tgz]
author	Raman Tenneti <rtenneti@google.com>	Wed Jan 05 12:04:39 2022 -0800
committer	Michael Bestas <mkbestas@lineageos.org>	Tue Jun 21 18:08:43 2022 +0300
tree	31702e7f0f3046e3bc213b3b80fa6b3cf91002ff
parent	495f1c9102ee63648fd512201f08257de77ea5d1 [diff]

AOSP/Gallery2 - Disable copying of arbitrary private file of Gallery2 into External Storage.

+ ContentResolver.SCHEME_FILE is a constant defined as "file". A malicious
  app can use "File:" url to copy private files of Gallery2.

  Fix is to lowercase the scheme before doing the comparison.

Fix: 201535427
Bug: 201535427
Test: manual
Change-Id: I40672a0745ac65549c539da73ebb5b1710fd2821
(cherry picked from commit 0acea168f86f938bc99d872a79558b46e4b61c39)

src/com/android/gallery3d/data/UriImage.java[diff]

1 file changed

tree: 31702e7f0f3046e3bc213b3b80fa6b3cf91002ff

gallerycommon/
jni/
jni_jpegstream/
res/
src/
src_pd/
.gitignore
Android.bp
AndroidManifest.xml
CleanSpec.mk
jarjar-rules.txt
proguard.flags