549a39b49510dad27da588714f848dc891913239 - platform_packages_apps_Settings

commit	549a39b49510dad27da588714f848dc891913239	[log] [tgz]
author	Rob Fletcher <rfletch.vol@gmail.com>	Tue Feb 25 18:16:12 2014 +0000
committer	Matthew Xie <mattx@google.com>	Thu Mar 06 11:51:15 2014 -0800
tree	e80e252edc309ec320272a3aa98e0ac873c1b8dd
parent	d83484dba0749e01cf80a85cd0d2648a79f9fdf4 [diff]

DO NOT MERGE HTML injection fix for bluetooth pairing, issue 65946

During bluetooth pairing, HTML injection is possible via the device name displayed to the user. This escapes the device name, before creating HTML from it, so it will preserve things like < and > but will not affect rendering of HTML

Bug: 12976386
Change-Id: I8a02d3be8c1a779dc9ed1c9ef8083a1159ab3f2b

src/com/android/settings/bluetooth/BluetoothPairingDialog.java[diff]

1 file changed

tree: e80e252edc309ec320272a3aa98e0ac873c1b8dd

res/
src/
tests/
Android.mk
AndroidManifest.xml
CleanSpec.mk
MODULE_LICENSE_APACHE2
NOTICE
proguard.flags