Gitiles
Code Review Sign In
review.blissroms.org / platform_frameworks_base / df9a44e1fb3968c6e3121aa76515a58f5e69fbee
commitdf9a44e1fb3968c6e3121aa76515a58f5e69fbee[log] [tgz]
authorZim <zezeozue@google.com>Wed Dec 16 10:36:40 2020 +0000
committerZim <zezeozue@google.com>Wed Dec 16 10:36:40 2020 +0000
treeac1580bc80d0d660e81238d075e9a3e5882c2f4c
parent302b47583976bb077c69c5671f8da8a4ccc8f2b1 [diff]
Make low storage notification PendingIntent immutable

Malicious apps, especially NotificationListeners can hijack such
intents and grant themselves access to sensitive URIs by relying on
the OS URI granting mechanism. This change mitigates the security
issue and also adheres to the new enforcement requiring Android S+
targeting apps to explicitly specifiy a mutability flag.

Test: Manual
Bug: 153466381
Change-Id: If478386d68cf25c8f93c2685824700679e6b9ea9
1 file changed
tree: ac1580bc80d0d660e81238d075e9a3e5882c2f4c
  1. .prebuilt_info/
  2. apct-tests/
  3. apex/
  4. api/
  5. cmds/
  6. config/
  7. core/
  8. data/
  9. docs/
  10. drm/
  11. errorprone/
  12. graphics/
  13. identity/
  14. keystore/
  15. libs/
  16. location/
  17. lowpan/
  18. media/
  19. mime/
  20. mms/
  21. native/
  22. nfc-extras/
  23. obex/
  24. opengl/
  25. packages/
  26. proto/
  27. rs/
  28. samples/
  29. sax/
  30. services/
  31. startop/
  32. telecomm/
  33. telephony/
  34. test-base/
  35. test-legacy/
  36. test-mock/
  37. test-runner/
  38. tests/
  39. tools/
  40. wifi/
  41. .clang-format
  42. .gitignore
  43. .mailmap
  44. Android.bp
  45. Android.mk
  46. ApiDocs.bp
  47. BATTERY_STATS_OWNERS
  48. CleanSpec.mk
  49. framework-jarjar-rules.txt
  50. METADATA
  51. MODULE_LICENSE_APACHE2
  52. NOTICE
  53. OWNERS
  54. OWNERS.md
  55. pathmap.mk
  56. PREUPLOAD.cfg
  57. StubLibraries.bp
  58. TEST_MAPPING
  59. ZYGOTE_OWNERS