64ee30920d5b7d8d70b09fbcc48cadaab29b07ed - platform_frameworks_base

commit	64ee30920d5b7d8d70b09fbcc48cadaab29b07ed	[log] [tgz]
author	Daniel Micay <daniel.micay@grapheneos.org>	Tue Apr 08 22:04:15 2025 -0400
committer	Jackeagle <jackeagle102@gmail.com>	Tue May 27 23:55:02 2025 -0400
tree	c410e487fe98763aa3b6cd23e44df905cccb43e8
parent	b6bf3b6202666cf2dd2466dd42a2328d8664931d [diff]

fix upstream RecoverySystem.verifyPackage vulnerability

This was not directly exploitable due to there being 2 layers of update
package signature verification and downgrade protection, but the first
layer of protection should work properly to avoid a vulnerability in the
2nd layer being exploited.

Signed-off-by: Jackeagle <jackeagle102@gmail.com>

core/java/android/os/RecoverySystem.java[diff]

1 file changed

tree: c410e487fe98763aa3b6cd23e44df905cccb43e8

.prebuilt_info/
android-sdk-flags/
apct-tests/
apex/
api/
boot/
cmds/
config/
core/
data/
docs/
drm/
errorprone/
graphics/
identity/
keystore/
libs/
location/
media/
mime/
mms/
native/
nfc/
nfc-extras/
obex/
omapi/
opengl/
packages/
proto/
ravenwood/
rs/
samples/
sax/
services/
startop/
telecomm/
telephony/
test-base/
test-junit/
test-legacy/
test-mock/
test-runner/
tests/
tools/
wifi/
.clang-format
.gitignore
.mailmap
AconfigFlags.bp
ACTIVITY_MANAGER_OWNERS
ACTIVITY_SECURITY_OWNERS
ADPF_OWNERS
Android.bp
BAL_OWNERS
BATTERY_STATS_OWNERS
BROADCASTS_OWNERS
CleanSpec.mk
FF_LEADS_OWNERS
framework-jarjar-rules.txt
GAME_MANAGER_OWNERS
INPUT_OWNERS
INTENT_OWNERS
libcore-readonly.aconfig
lint-baseline.xml
LSE_APP_COMPAT_OWNERS
MEMORY_OWNERS
METADATA
MODULE_LICENSE_APACHE2
MULTIUSER_OWNERS
NOTICE
OOM_ADJUSTER_OWNERS
OWNERS
OWNERS.md
PACKAGE_MANAGER_OWNERS
pathmap.mk
PERFORMANCE_OWNERS
PREUPLOAD.cfg
ProtoLibraries.bp
Ravenwood.bp
SDK_OWNERS
SECURITY_STATE_OWNERS
SQLITE_OWNERS
TEST_MAPPING
TestProtoLibraries.bp
THERMAL_OWNERS
TRACE_OWNERS
WEAR_OWNERS
ZYGOTE_OWNERS