1d1cef15c61d9b902cc26922212695afd233b718 - platform_frameworks_base

commit	1d1cef15c61d9b902cc26922212695afd233b718	[log] [tgz]
author	Idriss Juhoor <idriss@google.com>	Mon Jun 03 08:05:30 2024 +0000
committer	Idriss Juhoor <idriss@google.com>	Mon Jun 03 08:05:30 2024 +0000
tree	e374ad007e5e7d1c6bda960172a143556ec898e3
parent	9ec62d0b50fb29b6c823cb9ccfbb96879939eec6 [diff]

Fix Talkback Shortcut Vulnerability

The way the talkback component was selected was vulnerable. Now the
system verifies that the talkback component is provided by the system.

Bug: 339609745
Change-Id: Iabadb129807b0ac02aa2e9ac1580ac0f212930ef
Test: manual - tested that the talkback service is still available
Flag: No Flags: Security High/Critical Severity CVEs

services/core/java/com/android/server/policy/TalkbackShortcutController.java[diff]

1 file changed

tree: e374ad007e5e7d1c6bda960172a143556ec898e3

.prebuilt_info/
apct-tests/
apex/
api/
boot/
cmds/
config/
core/
data/
docs/
drm/
errorprone/
graphics/
identity/
keystore/
libs/
location/
media/
mime/
mms/
native/
nfc/
nfc-extras/
obex/
omapi/
opengl/
packages/
proto/
ravenwood/
rs/
samples/
sax/
services/
startop/
telecomm/
telephony/
test-base/
test-junit/
test-legacy/
test-mock/
test-runner/
tests/
tools/
wifi/
.clang-format
.gitignore
.mailmap
AconfigFlags.bp
ADPF_OWNERS
Android.bp
BAL_OWNERS
BATTERY_STATS_OWNERS
BROADCASTS_OWNERS
CleanSpec.mk
DREAM_MANAGER_OWNERS
framework-jarjar-rules.txt
GAME_MANAGER_OWNERS
INPUT_OWNERS
INTENT_OWNERS
ktfmt_includes.txt
lint-baseline.xml
LSE_APP_COMPAT_OWNERS
MEMORY_OWNERS
METADATA
MODULE_LICENSE_APACHE2
MULTIUSER_OWNERS
NOTICE
OWNERS
OWNERS.md
PACKAGE_MANAGER_OWNERS
pathmap.mk
PERFORMANCE_OWNERS
PREUPLOAD.cfg
ProtoLibraries.bp
Ravenwood.bp
SECURITY_STATE_OWNERS
SQLITE_OWNERS
TEST_MAPPING
TestProtoLibraries.bp
THERMAL_OWNERS
TRACE_OWNERS
WEAR_OWNERS
ZYGOTE_OWNERS