Prevent exfiltration of system files via avatar picker. - platform/frameworks/base

diff options

author	Oli Lan <olilan@google.com>	2022-08-25 18:03:48 +0100
committer	Oli Lan <olilan@google.com>	2022-08-26 15:37:12 +0100
commit	b76141eb2bace631aabe4c6b55630e7b219044b1 (patch)
tree	c8d838ac539c3fb2c3170f60e4f1b290cbf8430d /libs/androidfw/StringPool.cpp
parent	f18aa11dd5d34196f1f5a2bacdcfc833f1746bac (diff)

Prevent exfiltration of system files via avatar picker.

This adds mitigations to prevent system files being exfiltrated via the settings content provider when a content URI is provided as a chosen user image. The mitigations are: 1) Copy the image to a new URI rather than the existing takePictureUri prior to cropping. 2) Only allow a system handler to respond to the CROP intent. This is a fixed version of ag/17005706, to address b/239513606. Bug: 187702830 Test: atest AvatarPhotoControllerTest Change-Id: I21f1b25154dc00a305bdadb96fdf22edff31d9b8

Diffstat (limited to 'libs/androidfw/StringPool.cpp')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: