widevine-partner/android
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
0b18148b094d898e5c5b2cb2007b5e447aaf34c4
android/libwvdrmengine/mediacrypto
History
Edwin Wong 0b18148b09 Fix potential decrypt destPtr overflow. 
There is a potential integer overflow to bypass the
destination base size check in decrypt. The destPtr
can then point to the outside of the destination buffer.

Test: sts-tradefed
  sts-tradefed run sts-engbuild-no-spl-lock -m StsHostTestCases --test android.security.sts.Bug_176444622#testPocBug_176444622

Test: push to device with target_hwasan-userdebug build
  adb shell /data/local/tmp/Bug-17644462264

Bug: 176444622
Bug: 176496353
Change-Id: Id3aece61d46d548c304782d4e1dc3a4747795c01
Merged-In: Id3aece61d46d548c304782d4e1dc3a4747795c01
2021-02-25 17:56:53 +00:00
..
include
Combined Decrypt Calls
2020-02-19 11:44:35 -08:00
include_hidl
Combined Decrypt Calls
2020-02-19 11:44:35 -08:00
src
Treat the (0,0) Pattern as 'cbcs'
2020-03-04 12:11:29 -08:00
src_hidl
Fix potential decrypt destPtr overflow.
2021-02-25 17:56:53 +00:00
test
Treat the (0,0) Pattern as 'cbcs'
2020-03-04 12:11:29 -08:00
Android.mk
Link with actual headers instead of symlinks
2020-01-07 15:26:14 -08:00