summaryrefslogtreecommitdiff
path: root/libs/surfaceflinger/SurfaceFlinger.cpp
diff options
context:
space:
mode:
author Christopher Tate <ctate@google.com> 2010-04-21 17:58:07 -0700
committer Christopher Tate <ctate@google.com> 2010-04-21 18:02:56 -0700
commita32504fce826fb66b53991d04819ece3e6bf105e (patch)
treeb51c9b09c4c071e5d90adac6ad766388676c873d /libs/surfaceflinger/SurfaceFlinger.cpp
parent0dde41fbe0e36bfe059399c839604267ad0318c1 (diff)
Fix security hole in Google backup transport registration
Previously, it was conceivable that a 3rd party application on a non-GED device could publish a service that supported the (hidden) IBackupTransport interface and spoofed the Google backup transport's package and component name. This could allow it to secretly intercept all data moved through the backup mechanism. Fix by ensuring that the package in question exists and is part of the OS itself (FLAG_SYSTEM in its ApplicationInfo description) before binding to it. Fixes bug #2457063 Change-Id: I3487572be45c2014fa209beacfe3ac6f8270f872
Diffstat (limited to 'libs/surfaceflinger/SurfaceFlinger.cpp')
0 files changed, 0 insertions, 0 deletions