widevine-partner/android
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
0921b04e416807637a49be1c16b47249559b134e
android/libwvdrmengine/mediacrypto
History
Edwin Wong 68b5b00567 [RESTRICT AUTOMERGE] Fix potential decrypt destPtr overflow. 
sc-dev branch is missing this fix, it did not auto merge from
http://ag/13617980

There is a potential integer overflow to bypass the
destination base size check in decrypt. The destPtr
can then point to the outside of the destination buffer.

Test: sts-tradefed
  sts-tradefed run sts-engbuild-no-spl-lock -m StsHostTestCases --test android.security.sts.Bug_176444622#testPocBug_176444622

Test: push to device with target_hwasan-userdebug build
  adb shell /data/local/tmp/Bug-17644462264

Bug: 176444622
Bug: 176496353
Change-Id: I88fff54de09d6753672b2a46c029960b5c30f5e7
2021-04-20 16:36:11 +00:00
..
include
Update Widevine Copyright header for android
2020-10-21 02:49:05 -07:00
include_hidl
Fix WVCryptoPlugin use after free vulnerability.
2021-03-08 21:37:42 -08:00
src
Update Widevine Copyright header for android
2020-10-21 02:49:05 -07:00
src_hidl
[RESTRICT AUTOMERGE] Fix potential decrypt destPtr overflow.
2021-04-20 16:36:11 +00:00
test
[LSC] Add LOCAL_LICENSE_KINDS to vendor/widevine
2021-03-25 09:52:52 -07:00
Android.bp
Merge "Fix WVCryptoPlugin use after free vulnerability." into sc-dev
2021-04-05 20:47:48 +00:00