2e16d5fac149dab3c3e8f1b2ca89f45cf55a7b34 - platform/frameworks/native

commit	2e16d5fac149dab3c3e8f1b2ca89f45cf55a7b34	[log] [tgz]
author	Fabien Sanglard <[email protected]>	Tue Nov 08 15:35:02 2016 -0800
committer	gitbuildkicker <[email protected]>	Mon Dec 19 14:41:21 2016 -0800
tree	6456e31c8b573aa2293b953cbc5011b86a16d7c7
parent	b4d6b292bce7d82c93fd454078dedf5a1302b9fa [diff]

Fix SF security vulnerability: 32706020

Because of lack of mutex lock when get mConsumerName, if one thread
getConsumerName, another thread setConsumerName frequently, an UAF will
be triggered.

Change-Id: Id1bbf0d15de6d16def2f54ecade385058cda3b65
Test: Marling with poc provided in bug report.
Bug: 32706020
(cherry picked from commit d073eb7a3f28fd74bfa24c8b7599465cb7de5436)

libs/gui/BufferQueueProducer.cpp[diff]

1 file changed

tree: 6456e31c8b573aa2293b953cbc5011b86a16d7c7

aidl/
build/
cmds/
data/
docs/
include/
libs/
opengl/
services/
vulkan/
MODULE_LICENSE_APACHE2
NOTICE

	
		OSZAR »