tag | dc45642fd23e001ebb4d7c05f128d256c6b3dd8b | |
---|---|---|
tagger | The Android Open Source Project <initial-contribution@android.com> | Tue Nov 02 10:19:35 2021 -0700 |
object | 9e4480d4062781c7ea46f8ebaef6ae834be7cc44 |
Android security 11.0.0 release 49
commit | 9e4480d4062781c7ea46f8ebaef6ae834be7cc44 | [log] [tgz] |
---|---|---|
author | Grace Jia <xiaotonj@google.com> | Thu Jun 18 14:12:56 2020 -0700 |
committer | Anis Assi <anisassi@google.com> | Tue Sep 15 20:44:39 2020 -0700 |
tree | 830aff0990e3f4186bcf0a532469a4ea328252dd | |
parent | 9d83abae226a1ffd6d0e9bca4b2c998d6126d51c [diff] |
Fix security vulnerability of TelecomManager#getPhoneAccountsForPackage Check calling package and READ_PRIVILEGED_PHONE_STATE to avoid potential PII expotion. Bug: 153995334 Test: atest TelecomUnitTests:TelecomServiceImpl Change-Id: Ie834633dc4031d19af90e922ef0f111c3c8d7cb2 (cherry picked from commit 9d8d0cf3dcf741afe7ed50e60da513a47b0e8d59) (cherry picked from commit f3f2d7c2dcb558081f02e282078c0c42c5c3e1b1)