Gitiles
Code Review Sign In
review.shift-gmbh.com / SHIFTPHONES / android_frameworks_base / 6a2c23dc1bb17b3a2819a33dc6af77b293de1aae
commit6a2c23dc1bb17b3a2819a33dc6af77b293de1aae[log] [tgz]
authorVishwath Mohan <vishwath@google.com>Mon Mar 09 18:55:11 2015 -0700
committerVishwath Mohan <vishwath@google.com>Tue Mar 10 12:34:08 2015 -0700
treee4dc3e714d835e93dce3c34f1a487f9ec490db9f
parent53776a2b3c18f3eb2217e5e3af4dda187d0fee62 [diff]
Prevent integer overflow in ResourceTypes

Adds checks to 2 malloc() calls to ensure that the finally allocated
buffer size is not vulnerable to integer overflows. Also includes a
sanity check on the upper bound for type_info.numEntries before each
call.

Bug: 15171384
Change-Id: Ifdf0276bcca7e3d93da7c3577b9486d3c03a9d03
1 file changed
tree: e4dc3e714d835e93dce3c34f1a487f9ec490db9f
  1. api/
  2. cmds/
  3. core/
  4. data/
  5. docs/
  6. drm/
  7. graphics/
  8. include/
  9. keystore/
  10. libs/
  11. location/
  12. media/
  13. native/
  14. nfc-extras/
  15. obex/
  16. opengl/
  17. packages/
  18. rs/
  19. samples/
  20. sax/
  21. services/
  22. telecomm/
  23. telephony/
  24. test-runner/
  25. tests/
  26. tools/
  27. wifi/
  28. Android.mk
  29. CleanSpec.mk
  30. MODULE_LICENSE_APACHE2
  31. NOTICE
  32. preloaded-classes