CarbonROM Changelog for cr-8.0
*Changes do not indicate successful weekly compilation*
--- Changed on 2023-09-26 ---
android_system_nfc: OOBW in rw_i93_send_to_upper()
android_system_nfc: OOBW in nci_snd_set_routing_cmd()
android_external_icu: DO NOT MERGE Update Android TZDB from 2022g to 2023a [Q]
android_system_timezone: DO NOT MERGE Update Android TZDB from 2022g to 2023a [Q]
android_system_timezone: DO NOT MERGE Add script to automatically apply patches to IANA archive.
android_packages_providers_TelephonyProvider: Update file permissions using canonical path
android_external_aac: Increase patchParam array size by one and fix out-of-bounce write in resetLppTransposer().
android_system_ca-certificates: Update CA certificates for R
android_system_ca-certificates: Drop TrustCor certificates
android_system_ca-certificates: Reformat CA certificates in preparation for an update
android: manifest: track our own fork(s) for 2023-08 patching
android: manifest: track our own timezone data forks
android: manifest: track our own fork(s) for 2023-07 patching
android: manifest: track our own fork(s) for 2023-06 patching
android_build_make: Bump Security String to 2023-08-05
android_build_make: Bump Security String to 2023-07-05
android_build_make: Don't build useless html viewer
android_build_make: Don't build QuickSearchBox
android_build_make: Bump Security String to 2023-06-05
android_vendor_qcom_opensource_system_bt: Fix gatt_end_operation buffer overflow
android_vendor_qcom_opensource_system_bt: Revert "Revert "Fix wrong BR/EDR link key downgrades (P_256->P_192)""
android_vendor_qcom_opensource_system_bt: Revert^2 "Validate buffer length in sdpu_build_uuid_seq"
android_vendor_qcom_opensource_system_bt: Prevent use-after-free of HID reports
android_vendor_qcom_opensource_system_bt: AVDTP: Fix a potential overflow about the media payload offset
android_vendor_qcom_opensource_system_bt: Fix an OOB bug in register_notification_rsp
android_vendor_qcom_opensource_system_bt: AVRCP: Fix potential buffer overflow
android_vendor_qcom_opensource_system_bt: Fix an OOB write in SDP_AddAttribute
android_vendor_qcom_opensource_system_bt: Fix an OOB access bug in A2DP_BuildMediaPayloadHeaderSbc
android_vendor_qcom_opensource_system_bt: Fix an OOB Write bug in gatt_check_write_long_terminate
android_vendor_nxp_opensource_external_libnfc-nci: OOBW in rw_i93_send_to_upper()
android_vendor_nxp_opensource_external_libnfc-nci: OOBW in nci_snd_set_routing_cmd()
android_system_bt: Fix gatt_end_operation buffer overflow
android_system_bt: Revert "Revert "Fix wrong BR/EDR link key downgrades (P_256->P_192)""
android_system_bt: Revert "Revert "[RESTRICT AUTOMERGE] Validate buffer length in sdpu_build_uuid_seq""
android_system_bt: Prevent use-after-free of HID reports
android_packages_services_Telecomm: Resolve StatusHints image exploit across user.
android_packages_services_Telecomm: Call Redirection: unbind service when onBind returns null
android_packages_apps_Settings: Convert argument to intent in AddAccountSettings.
android_packages_apps_Settings: Import translations. DO NOT MERGE ANYWHERE
android_packages_apps_Settings: [Settings] Move display of VPN version into summary text
android_frameworks_opt_net_wifi: DO NOT MERGE: Limit the number of Passpoint per App
android_frameworks_base: Add `PackageParser.Package getPackage(int uid)`
android_frameworks_base: Resolve StatusHints image exploit across user.
android_frameworks_base: Use Settings.System.getIntForUser instead of getInt to make sure user specific settings are used
android_frameworks_base: Verify URI permissions in MediaMetadata
android_frameworks_base: Check URIs in notification public version.
android_frameworks_base: Implement visitUris for RemoteViews ViewGroupActionAdd.
android_frameworks_base: Ensure policy has no absurdly long strings
android_frameworks_base: On device lockdown, always show the keyguard
android_frameworks_base: Verify URI permissions for notification shortcutIcon.
android_frameworks_base: ActivityManagerService: Allow openContentUri from vendor/system/product.
android_frameworks_base: DO NOT MERGE: ActivityManager#killBackgroundProcesses can kill caller's own app only
android_frameworks_base: Visit URIs in landscape/portrait custom remote views.
android_frameworks_base: Truncate ShortcutInfo Id
android_frameworks_base: DO NOT MERGE Increase notification channel limit.
android_frameworks_base: DO NOT MERGE Dismiss keyguard when simpin auth'd and...
android_frameworks_base: Only allow NEW_TASK flag when adjusting pending intents
android_frameworks_base: DO NOT MERGE: Limit the ServiceFriendlyNames
android_frameworks_base: DO NOT MERGE: Add size check on PPS#policy
android_frameworks_base: Import translations. DO NOT MERGE ANYWHERE
android_frameworks_base: Limit the number of supported v1 and v2 signers
android_frameworks_base: Sanitize VPN label to prevent HTML injection
android_frameworks_base: Passpoint Add more check to limit the config size
android_frameworks_base: [RESTRICT AUTOMERGE] Add BubbleMetadata detection to block FSI
android_frameworks_base: Allow filtering of services
android_frameworks_base: Handle invalid data during job loading.
android_frameworks_base: Check key intent for selectors and prohibited flags
android_frameworks_base: [DO NOT MERGE] Prevent RemoteViews crashing SystemUi
android_frameworks_base: [DO NOT MERGE] Wait for preloading images to complete before inflating notifications
android_frameworks_base: Prevent sharesheet from previewing unowned URIs
android_frameworks_base: Remove Activity if it enters PiP without window
android_tools_apksig: Limit the number of supported v1 and v2 signers
android_packages_apps_Traceur: Add DISALLOW_DEBUGGING_FEATURES check
android_packages_apps_Traceur: Update Traceur to check admin user status
android_packages_apps_Traceur: Initialize developer options ContentObserver at app start
android_packages_apps_Traceur: Block Traceur MainTvActivity when development options disabled.
android_packages_apps_Car_Settings: Convert argument to Intent in car settings AddAccountActivity.
android_frameworks_av: Fix NuMediaExtractor::readSampleData buffer Handling
android_external_freetype: Cherrypick following three changes
android_external_freetype: DO NOT MERGE - Cherry-pick two upstream changes
android_vendor_carbon: carbon: Update Vanilla Music
--- Changed on 2023-06-21 ---
android: readme: add git lfs as dependency
--- Changed on 2023-06-18 ---
android_frameworks_base: stop auto-granting location to system browsers
android_frameworks_base: increase default max password length to 64
android_frameworks_base: enforce stricter rules when registering phoneAccounts
android_frameworks_base: Uri: check authority and scheme as part of determining URI path
android_frameworks_base: Checks if AccessibilityServiceInfo is within parcelable size.
android_frameworks_base: [RESTRICT AUTOMERGE][pm] still allow debuggable for system app downgrades
android_frameworks_base: [RESTRICT AUTOMERGE][pm] prevent system app downgrades of versions lower than preload
android_frameworks_base: SUPL: Don't send IMSI / Phone number to SUPL server
android_frameworks_base: use Cloudflare DNS as the default fallback
android_frameworks_base: Delete media tests
android_frameworks_base: Remove unnecessary videos
android_frameworks_base: Use Cloudflare DNS servers as hints
android_frameworks_base: NetworkDiagnostics: switch to Cloudflare DNS
android_frameworks_base: Use Cloudflare DNS servers as defaults for tethering
android_frameworks_base: Language toggle QS
android_frameworks_native: Add removeInstanceForPackageMethod to SensorManager
android_frameworks_native: Remove some new memory leaks from SensorManager
android_frameworks_native: Check for malformed Sensor Flattenable
android_build_make: Bump Security String to 2023-05-05
android_packages_services_Telecomm: enforce stricter rules when registering phoneAccounts
android_packages_apps_Launcher3: Launcher3: Make double tap to sleep gesture optional
android_packages_inputmethods_LatinIME: Fix NPE in KeyboardTheme
android_packages_inputmethods_LatinIME: Change keyboard height
android_packages_inputmethods_LatinIME: Revert "LatinIME: Add fallback loader for JNI lib"
android_packages_inputmethods_LatinIME: LatinIME: fix gesture typing
android_packages_inputmethods_LatinIME: Add Hardslog light theme
android_packages_inputmethods_LatinIME: New theme: BLACKOUT
android_packages_inputmethods_LatinIME: Add new hardslog_dark theme
android_packages_inputmethods_LatinIME: Latin IME bug with deleted text will reappear after screen orientation changes
android_packages_inputmethods_LatinIME: LatinIME: Fix to English dictionary can be added after deleting
android_packages_inputmethods_LatinIME: LatinIME: Fix NPE in getKeyboardThemeName
android_packages_inputmethods_LatinIME: LatinIME: Add setting for theme to follow system setting
android_vendor_carbon: vendor: Update SimpleGallery
android_vendor_carbon: carbon: Update Vanilla Music
android_vendor_carbon: carbon: Update SimpleGallery
--- Changed on 2023-06-02 ---
android_packages_apps_PackageInstaller: DO NOT MERGE Stop managed profile owner granting READ_SMS
android_packages_apps_Settings: Only primary user is allowed to control secure nfc
android_packages_apps_Settings: Add DISALLOW_APPS_CONTROL check into uninstall app for all users
android_packages_apps_Settings: [DO NOT MERGE] FRP bypass defense in the settings app
android_external_zlib: Fix a bug when getting a gzip header extra field with inflate().
android: manifest: track upstream webview
android_packages_services_Telecomm: DO NOT MERGE do not process content uri in call Intents
android_packages_services_Telecomm: Ensure service unbind when receiving a null call screening service in onBind.
android_build_make: Bump Security String to 2023-04-05
android_build_make: Bump Security String to 2023-03-05
android_system_bt: Fix an OOB bug in register_notification_rsp
android_system_bt: Fix OOB access in avdt_scb_hdl_pkt_no_frag
android_system_bt: Fix an OOB write in SDP_AddAttribute
android_system_bt: Fix an OOB access bug in A2DP_BuildMediaPayloadHeaderSbc
android_system_bt: Fix an OOB Write bug in gatt_check_write_long_terminate
android_frameworks_opt_net_wifi: Revert "Revert "[DO NOT MERGE] wifi: remove certificates for network factory reset""
android_frameworks_opt_net_wifi: Revert "[DO NOT MERGE] wifi: remove certificates for network factory reset"
android_frameworks_native: Mitigate the security vulnerability by sanitizing the transaction flags.
android_frameworks_base: [RESTRICT AUTOMERGE] Fix bypass BG-FGS and BAL via package manager APIs
android_frameworks_base: Add a limit on channel group creation
android_frameworks_base: [RESTRICT AUTOMERGE] Strip part of the activity info of another uid if no privilege
android_frameworks_base: [DO NOT MERGE] Backport BAL restrictions from S to R, this blocks apps from using Alarm Manager to bypass BAL restrictions.
android_frameworks_base: Encode Intent scheme when serializing to URI string RESTRICT AUTOMERGE
android_frameworks_base: Fix checkKeyIntentParceledCorrectly's bypass
android_frameworks_base: Checking if package belongs to UID before registering broadcast receiver
android_frameworks_base: DO NOT MERGE: Context#startInstrumentation could be started from SHELL only now.
android_frameworks_base: Fix sharing to another profile where an app has multiple targets
android_frameworks_base: Revert "Ensure that only SysUI can override pending intent launch flags"
android_frameworks_base: Reconcile WorkSource parcel and unparcel code.
android_frameworks_base: RESTRICT AUTOMERGE Revoke dev perm if app is upgrading to post 23 and perm has pre23 flag
android_frameworks_base: Enable user graularity for lockdown mode
android_frameworks_base: Stop managed profile owner granting READ_SMS
android_frameworks_base: Move service initialization
android_frameworks_base: Revert "[RESTRICT AUTOMERGE] Trim the activity info of another uid if no privilege"
android: manifest: track our own fork(s) for 2023-03 ASB patching
--- Changed on 2023-02-18 ---
android_build_make: Bump Security String to 2023-02-05
android_build_make: Bump Security String to 2023-01-05
android_system_bt: Add bounds check in avdt_scb_act.cc
android_system_bt: Report failure when not able to connect to AVRCP
android_frameworks_opt_net_wifi: [DO NOT MERGE] wifi: Reset to default SAP configuration when doing factory reset
android_packages_apps_Bluetooth: Fix OPP comparison
android_packages_apps_Nfc: DO NOT MERGE OOBW in phNciNfc_MfCreateXchgDataHdr
android_packages_apps_Nfc: DO NOT MERGE OOBW in Mfc_Transceive()
android_packages_services_Telephony: prevent overlays on the phone settings
android_packages_services_Telecomm: Fix security vulnerability when register phone accounts.
android_frameworks_av: move MediaCodec metrics processing to looper thread
android_frameworks_base: Use rule package name in addAutomaticZenRule; specify "android" for all system apps
android_frameworks_base: Convert argument to intent in ChooseTypeAndAccountActivity
android_frameworks_base: [RESTRICT AUTOMERGE] Correct the behavior of ACTION_PACKAGE_DATA_CLEARED
android_frameworks_base: Ensure that only SysUI can override pending intent launch flags
android_frameworks_base: [RESTRICT AUTOMERGE] Add protections agains use-after-free issues if cancel() or queue() is called after a device connection has been closed.
android_frameworks_base: RESTRICT AUTOMERGE Revoke SYSTEM_ALERT_WINDOW on upgrade past api 23
android_frameworks_base: [RESTRICT AUTOMERGE] Trim the activity info of another uid if no privilege
android_frameworks_base: [RESTRICT AUTOMERGE][SettingsProvider] key size limit for mutating settings
android_frameworks_base: RESTRICT AUTOMERGE Revert "Revert "RESTRICT AUTOMERGE Validate permission tree size..."
android_frameworks_base: [SettingsProvider] mem limit should be checked before settings are updated
android_frameworks_base: [DO NOT MERGE] Fix conditionId string trimming in AutomaticZenRule
android_frameworks_base: RESTRICT AUTOMERGE Disable all A11yServices from an uninstalled package.
android_frameworks_base: Limit lengths of fields in Condition to a max length.
android: Track LOS fork(s) for 2023-02 ASB patching
--- Changed on 2022-12-18 ---
android_build_make: Bump Security String to 2022-12-05
android_system_bt: Fix integer overflow when parsing avrc response
android_system_bt: Add length check when copy AVDT and AVCT packet
android_system_bt: Add missing increment in bnep_api.cc
android_system_bt: RESTRICT AUTOMERGE Added max buffer length check
android_system_bt: Add length check when copy AVDTP packet
android_packages_services_Telecomm: Hide overlay windows when showing phone account enable/disable screen.
android_packages_apps_Settings: Add FLAG_SECURE for ChooseLockPassword and Pattern
android_packages_apps_Settings: Prevent exfiltration of system files via avatar picker.
android_packages_apps_Settings: Revert "Prevent exfiltration of system files via user image settings."
android_packages_apps_Bluetooth: Fix URI check in BluetoothOppUtility.java
android_frameworks_base: [DO NOT MERGE] Revert "Fix system zen rules by using owner package name if caller is system"
android_frameworks_base: [DO NOT MERGE] Revert "Check rule package name in ZenModeHelper.addAutomaticRule"
android_frameworks_base: Add safety checks on KEY_INTENT mismatch.
android_frameworks_base: [DO NOT MERGE] Fix permanent denial of service via setComponentEnabledSetting
android_frameworks_base: [Do Not Merge] Ignore malformed shortcuts
android_frameworks_base: [DO NOT MERGE] Update window with FLAG_SECURE when bouncer is showing
android_frameworks_base: Fix a security issue in app widget service.
android_frameworks_base: Fix NPE
android_frameworks_base: [pm] forbid deletion of protected packages
android_frameworks_base: Include all enabled services when FEEDBACK_ALL_MASK.
android_frameworks_base: Validate package name passed to setApplicationRestrictions.
android_frameworks_base: RESTRICT AUTOMERGE Prevent non-admin users from deleting system apps.
android_frameworks_base: Limit the size of NotificationChannel and NotificationChannelGroup
android_frameworks_base: Revert "RESTRICT AUTOMERGE Prevent non-admin users from deleting system apps."
--- Changed on 2022-11-20 ---
android_build_make: Bump Security String to 2022-11-05
android_system_bt: Add buffer in pin_reply in bluetooth.cc
android_system_bt: Add negative length check in process_service_search_rsp
android_packages_services_Telecomm: DO NOT MERGE Fix security vulnerability issue for multi user call redirections.
android_packages_services_Telecomm: switch TelecomManager List getters to ParceledListSlice
android_packages_apps_PackageInstaller: Hide overlays on ReviewPermissionsAtivity
android_frameworks_opt_net_wifi: [DO NOT MERGE] wifi: remove certificates for network factory reset
android_frameworks_base: [DO NOT MERGE] Do not dismiss keyguard after SIM PUK unlock
android_frameworks_base: DO NOT MERGE Fix auto-grant of AR runtime permission if device is upgrading from pre-Q
android_frameworks_base: Fix system zen rules by using owner package name if caller is system
android_frameworks_base: [RESTRICT AUTOMERGE] Check permission for VoiceInteraction
android_frameworks_base: Trim any long string inputs that come in to AutomaticZenRule
android_frameworks_base: Check rule package name in ZenModeHelper.addAutomaticRule
android_frameworks_base: Do not send AccessibilityEvent if notification is for different user.
android_frameworks_base: [RESTRICT AUTOMERGE] Do not send new Intent to non-exported activity when navigateUpTo
android_frameworks_base: switch TelecomManager List getters to ParceledListSlice
android_frameworks_base: DO NOT MERGE Move accountname and typeName length check from Account.java to AccountManagerService.
android_frameworks_av: RESTRICT AUTOMERGE - [Fix vulnerability] setSecurityLevel in clearkey
android: Track LOS fork(s) for 2022-11 ASB patching
--- Changed on 2022-10-26 ---
android_vendor_carbon: config: Optimize Launcher3 and Settings for speed
android_vendor_carbon: config: Dexpreopt speed compile SystemUI
--- Changed on 2022-10-15 ---
android_build_make: Bump Security String to 2022-10-05
android_packages_apps_Settings: Validate config activities with their rule owners
android_system_bt: Fix potential interger overflow when parsing vendor response
android_frameworks_base: Enforce zen rule limit on a package level.
android_frameworks_base: Fix NPE when deleting old zen rules
android_frameworks_base: Store DND rule owners
android_frameworks_base: DO NOT MERGE - Exclude TYPE_PRIVATE_PRESENTATION app visiblity
android_frameworks_base: Block FullScreenIntent while device is in use if notification has a silencing GroupAlertBehavior.
android_frameworks_base: Stop crashing the system on hitting the alarm limit
android_frameworks_base: DO NOT MERGE Limit the number of concurrently snoozed notifications
android_frameworks_base: Restrict getInputMethodWindowVisibleHeight
android_frameworks_av: Cache MMAP client silenced state.
android: Track LOS fork(s) for 2022-10 ASB patching
--- Changed on 2022-09-22 ---
android_build_make: Bump Security String to 2022-09-05
android_system_sepolicy: DO NOT MERGE: Move bind permission on netlink to private
android_frameworks_base: Remove package name from SafetyNet logs
android_frameworks_base: IMMS: Make IMMS PendingIntents immutable
android_frameworks_base: Parcel: recycle recycles
android_frameworks_base: Fix duplicate permission privilege escalation
android: Track our own fork(s) for 2022-09 ASB patching
--- Changed on 2022-08-23 ---
android_vendor_carbon: kernel: Use Clang as HOST_{CC,CXX}
android_build_make: Bump Security String to 2022-08-05
android_system_bt: Removing bonded device when auth fails due to missing keys
android_packages_apps_Settings: Extract app label from component name in notification access confirmation UI
android_packages_apps_Settings: [DO NOT MERGE] Fix can't change notification sound for work profile.
android_packages_apps_Settings: [DO NOT MERGE] Fix Settings crash when setting a null ringtone
android_packages_apps_Settings: RESTRICT AUTOMERGE Fix: policy enforcement for location wifi scanning
android_packages_apps_Settings: Do not let guest user disable secuer nfc via SettingsSlice
android_packages_apps_Settings: RESTRICT AUTOMERGE Make bluetooth not discoverable via SliceDeepLinkTrampoline
android_packages_apps_Settings: [DO NOT MERGE] Verify ringtone from ringtone picker is audio
android_frameworks_native: RESTRICT AUTOMERGE SurfaceFlinger: fix a potential race condition in stealReceiveChannel
android_frameworks_base: Only allow the system server to connect to sync adapters
android_frameworks_base: Stop using invalid URL to prevent unexpected crash
android_frameworks_base: Remove package title from notification access confirmation intent
android_frameworks_base: DO NOT MERGE Suppress notifications when device enter lockdown
android_frameworks_base: [RESTRICT AUTOMERGE]Only allow system and same app to apply relinquishTaskIdentity
android_frameworks_av: Avoid read out of bounds
--- Changed on 2022-07-19 ---
android_build_make: Bump Security String to 2022-07-05
android_system_bt: Security: Fix out of bound read in AT_SKIP_REST
android_system_bt: Check Avrcp packet vendor length before extracting length
android_system_bt: Security: Fix out of bound write in HFP client
android_packages_apps_Settings: Fix LaunchAnyWhere in AppRestrictionsFragment
android_frameworks_opt_telephony: Enforce privileged phone state for getSubscriptionProperty(GROUP_UUID)
android_frameworks_base: DO NOT MERGE Crash invalid FGS notifications
android_frameworks_base: [RESTRICT AUTOMERGE] Log to EventLog on prepareUserStorage failure
android_frameworks_base: [RESTRICT AUTOMERGE] Ignore errors preparing user storage for existing users
android_frameworks_base: [RESTRICT AUTOMERGE] UserDataPreparer: reboot to recovery for system user only
android_frameworks_base: [RESTRICT AUTOMERGE] UserDataPreparer: reboot to recovery if preparing user storage fails
android_frameworks_base: [RESTRICT AUTOMERGE] StorageManagerService: don't ignore failures to prepare user storage
--- Changed on 2022-06-19 ---
android_build_make: Bump Security String to 2022-06-05
android_system_core: Backport of Win-specific suppression of potentially rogue construct that can engage in directory traversal on the host.
android_packages_services_Telecomm: limit TelecomManager#registerPhoneAccount to 10
android_packages_apps_Settings: Prevent exfiltration of system files via user image settings.
android_packages_apps_Nfc: OOB read in phNciNfc_RecvMfResp()
android_packages_apps_Dialer: No longer export CallSubjectDialog
android_packages_apps_Contacts: No longer export CallSubjectDialog
android_packages_apps_Bluetooth: Removes app access to BluetoothAdapter#setDiscoverableTimeout by requiring BLUETOOTH_PRIVILEGED permission.
android_packages_apps_Bluetooth: Removes app access to BluetoothAdapter#setScanMode by requiring BLUETOOTH_PRIVILEGED permission.
android_frameworks_base: limit TelecomManager#registerPhoneAccount to 10; api doc update
android_frameworks_base: [qt] RESTRICT AUTOMERGE Add finalizeWorkProfileProvisioning.
android_frameworks_base: Fix NPE
android_frameworks_base: RESTRICT AUTOMERGE Prevent non-admin users from deleting system apps.
android_frameworks_base: Fix security hole in GateKeeperResponse
android_frameworks_base: DO NOT MERGE Add an OEM configurable limit for zen rules
android_frameworks_base: Update GeofenceHardwareRequestParcelable to match parcel/unparcel format.
android: Track LOS fork(s) for 2022-06 ASB patching
--- Changed on 2022-05-16 ---
android_build_make: Bump Security String to 2022-05-05
android_packages_services_Telecomm: Handle null bindings returned from ConnectionService.
android_packages_apps_Settings: Hide private DNS settings UI in Guest mode
android_frameworks_base: Always restart apps if base.apk gets updated.
android_frameworks_base: Verify caller before auto granting slice permission
android_frameworks_base: [RESTRICT AUTOMERGE] Do not resume activity if behind a translucent task
android_frameworks_base: Filter notification APIs by user
android_frameworks_base: [DO NOT MERGE] Keyguard - Treat messsages to lock with priority
--- Changed on 2022-04-23 ---
android_build_make: Bump Security String to 2022-04-05
android_system_bt: Security fix OOB read due to invalid count in stack/avrc/avrc_pars_ct
android_packages_apps_Settings: Do not let guest user disable secure nfc
android_packages_apps_Nfc: Do not set default contactless application without user interaction
android_frameworks_base: [RESTRICT AUTOMERGE] Add hide-non-system-overlay flag for HarmfulAppWarningActivity
android_frameworks_base: DO NOT MERGE Prevent apps from creating blocked channel groups
android_frameworks_av: [RESTRICT AUTOMERGE] C2AllocatorIon:protect mMappings using mutex
--- Changed on 2022-03-19 ---
android_build_make: Bump Security String to 2022-03-05
android_system_sepolicy: Allow adbd to access /proc/net/{tcp,tcp6,udp,udp6}
android_packages_apps_Settings: Add caller check to com.android.credentials.RESET
android_packages_apps_Settings: Fix bypass CALL_PRIVILEGED permission in AppRestrictionsFragment
android_packages_apps_Dialer: Remove PhoneAccountHandle when building the intent to call Voicemail.
android_packages_apps_Dialer: Add a permission to guard receiving intents in StatusSmsFetcher.
android_packages_apps_Dialer: Use an explicit intent to start VoicemailChangePinActivityPeer.
android_packages_apps_Dialer: Hash ICC ID used in the notification tag for voicemail notifications.
android_frameworks_native: Check if the window is partially obscured for slippery enters
android_frameworks_base: Revert "Revert "Do not show the notification footer until the user is set up.""
android_frameworks_base: Check group channels for FGSes
android_frameworks_base: Prevent a crash when constructing NSSL.
android_frameworks_base: Persist destroyed staged sessions until they are cleaned up
android_frameworks_base: Don't abandon child sessions (1/n)
android: Track LOS fork(s) for 2022-03 ASB patching
--- Changed on 2022-03-17 ---
android: Use https protocol for GitHub
--- Changed on 2022-02-17 ---
android_build_make: Bump Security String to 2022-02-05
android_system_bt: Reset the IRK after all devices are unpaired
android_system_bt: security: Use-After-Free in btm_sec_[dis]connected
android_packages_providers_MediaProvider: Open all files with O_NOFOLLOW.
android_packages_apps_Settings: Rephrase dialog message of clear storage dialog for security concern
android_frameworks_base: RESTRICT AUTOMERGE Remove line of code that was mistakently left in.
--- Changed on 2022-01-30 ---
android_build_make: Bump Security String to 2022-01-05
android_packages_services_Telecomm: Fix sorting issue during emergency call attempt.
android_packages_apps_Settings: RESTRICT AUTOMERGE Fix make Bluetooth discoverable without additional permission
android_packages_apps_Dialer: Add FLAG_IMMUTABLE to PendingIntent in LegacyModeSmsHandler.
android_frameworks_opt_telephony: filter deviceIdentifiers for subscriptionInfo if callers without perm
android_frameworks_base: Force-set a ClipData to prevent later migration.
android_frameworks_base: Allow forcing status bar state changes and do so when the screen turns off.
android_frameworks_base: Revert "Revert "[pm] remove old stage dirs on low storage""
android_frameworks_base: Prevent apps from spamming addAccountExplicitly. See comment here for the discussion on solution https://b.corp.google.com/issues/169762606#comment14
android_frameworks_base: Prevent apps from spamming addAccountExplicitly. See comment here for the discussion on solution https://b.corp.google.com/issues/169762606#comment14
android_frameworks_av: SimpleDecodingSource:Prevent OOB write in heap mem
--- Changed on 2021-12-17 ---
android_build_make: Bump Security String to 2021-12-05
android_system_bt: osi: Prevent memory allocations with MSB set
android_packages_apps_Settings: BluetoothSecurity: Add BLUETOOTH_PRIVILEGED permission for pairing dialog
android_packages_apps_Contacts: Address photo editing security bug
android_frameworks_av: C2SoftMp3Dec: fix OOB write in output buffer
android_frameworks_av: Fix heap-buffer-overflow in MPEG4Extractor am: d13a4efc7a
android_frameworks_base: Revert "Do not show the notification footer until the user is set up."
android_frameworks_base: Disallow overlays for ResolverActivity
android_frameworks_base: Do not show the notification footer until the user is set up.
android_frameworks_base: Fix NPE on getTitle()
android_frameworks_base: Fix serialization bug in GpsNavigationMessage
android: Track LOS fork(s) for 2021-12 ASB patching
--- Changed on 2021-11-19 ---
android_build_make: Bump Security String to 2021-11-05
android_packages_apps_Contacts: Add permission to start NFC activity to ensure it is from NFC stack
android_frameworks_native: libbinder: uptimeMillis returns int64_t!
android_frameworks_base: TIF: fix issue of using caller-aware methods after clearCallingIdentity()
android_frameworks_base: Backporting the change of ag/15629060 to qt-dev
android_frameworks_base: DO NOT MERGE Bluetooth: Fix formatting in getAlias()
android_frameworks_base: camera2: Fix exception swallowing in params classes createFromParcel
--- Changed on 2021-10-23 ---
android_build_make: Bump Security String to 2021-10-05
android_frameworks_opt_telephony: fix the issue that clearCallingIdentity before appops check
android_frameworks_base: DO NOT MERGE Apply a maximum char count to the load label api
android_frameworks_base: Send targeted broadcasts to prevent other apps from receiving them.
android_frameworks_base: Guard DISABLE_PLUGIN with PLUGIN permission.
android_frameworks_base: Fix background bypass via notifications
android_frameworks_base: Change ownership of the account request notification.
android_frameworks_base: Fix a potential thread safety issue in VectorDrawable
android_frameworks_av: aaudio: unlock when joining the timestamp thread
android_frameworks_av: aaudio: prevent deadlock when stop() calls disconnect()
--- Changed on 2021-09-20 ---
android_build_make: Bump Security String to 2021-09-05
android_packages_apps_Launcher3: Forward fix for: Set FLAG_IMMUTABLE flag on FirstScreenBroadcast PendingIntent.
android_packages_apps_Launcher3: Set FLAG_IMMUTABLE flag on FirstScreenBroadcast PendingIntent.
android_packages_apps_Settings: RESTRICT AUTOMERGE Fix phishing attacks over Bluetooth due to unclear warning message
android_packages_apps_Settings: RESTRICT AUTOMERGE Update string
android_system_bt: SMP: Reject pairing if public_key.x match
android_frameworks_opt_telephony: [security] SubscriptionGroup is exposed to unprivileged callers
android_frameworks_opt_telephony: filter deviceIdentifiers for subscriptionInfo if callers without perm
android_frameworks_native: Do not modify vector after getting references
android_frameworks_base: Don't attach private Notification to A11yEvent when user locked
android_frameworks_base: Improve ellipsize performance
android_frameworks_base: DO NOT MERGE Add cross-user check for getDefaultSmsPackage().
android_frameworks_base: Fix side effects of trace-ipc and dumpheap commands
android_frameworks_base: Fix race condition between lockNow() and updateLockscreenTimeout
android_frameworks_base: [security] SubscriptionGroup is exposed to unprivileged callers
android: Track LOS fork(s) for 2021-09 ASB patching
--- Changed on 2021-09-15 ---
android_system_bt: Prevent abort in case of command timeout
android_system_bt: Add support to force disable enhanced sco commands
android_system_bt: Bluetooth: Read BLE vendor capability to proceed on Secure conn
android_system_bt: Changed HID_DEV_MTU_SIZE from 64 to 512
--- Changed on 2021-08-19 ---
android_build_make: Bump Security String to 2021-08-05
android_packages_apps_Settings: RESTRICT AUTOMERGE Fix unable to send file via OPP
android_packages_apps_Settings: RESTRICT AUTOMERGE Fix bluetooth settings will broadcast to anywhere when some cases
android_frameworks_opt_telephony: DO NOT MERGE
android_frameworks_base: [RESTRICT AUTOMERGE] Fix OOB write in noteAtomLogged
android_frameworks_av: C2SoftAvcEnc: Allocate output buffer as per clip's dimensions
android_packages_services_Telephony: Add intent-filter priority for CONFIGURE_VOICEMAIL intent.
android: Track LOS fork(s) for 2021-08 ASB patching
--- Changed on 2021-07-26 ---
android_build_make: Bump Security String to 2021-07-05
android_system_bt: Fix memory overflow.
android_packages_apps_Settings: Prevent drawing on top of DevicePickerActivity
android_packages_apps_Settings: [DO NOT MERGE] Modify Wi-Fi details settings to restricted style
android_packages_apps_Settings: Prevent HTML Injection on the Device Admin request screen
android_packages_apps_Contacts: Hide non system overlays in ContactSelectionActivity
android_packages_apps_Bluetooth: Forbid content from MmsFileProvider in Bluetooth Share
android_hardware_interfaces: audio HAL - fix UAFs
android_frameworks_base: Allow empty tokens in strict grammar
android_frameworks_base: Restrict alarm broadcast
android_frameworks_base: Ensure storage permission revoke happens for all users
android_frameworks_base: Detects all activities for whether showing work challenge
android_frameworks_av: DO NOT MERGE Add fmq function instantiations to preserve ABI
android: Track LOS fork(s) for 2021-07 ASB patching
--- Changed on 2021-07-25 ---
android_system_core: LockscreenCharging: squashed (2/3)
--- Changed on 2021-06-27 ---
android_packages_apps_CarbonFibers: Automatic translation import
android_packages_apps_CarbonFibers: Automatic translation import
android_packages_inputmethods_LatinIME: Automatic translation import
android_packages_apps_Snap: Automatic translation import
android_packages_apps_Settings: Automatic translation import
android_packages_apps_Settings: Automatic translation import
android_packages_apps_Messaging: Automatic translation import
android_packages_apps_Launcher3: Automatic translation import
android_packages_apps_CarbonSetupWizard: Automatic translation import
android_packages_apps_CarbonSetupWizard: Automatic translation import
android_packages_apps_CarbonDelta: Automatic translation import
android_frameworks_base: Automatic translation import
android_system_bt: RESTRICT AUTOMERGE Contain avrc_ctrl_pars_vendor_cmd OOB write
android_system_bt: AVRCP: pass bdaddr by value when use SdpCb
android_packages_apps_Settings: Hide non-system overlay window on ActivityPicker
android_packages_apps_Settings: [Security Report] Fix Settings WifiScanModeActivity Overlaid issue
android_hardware_interfaces: [RESTRICT AUTOMERGE] Fix CryptoPlugin use after free vulnerability.
android_hardware_interfaces: [RESTRICT AUTOMERGE] Fix potential decrypt destPtr overflow.
android_frameworks_base: DO NOT MERGE - Disallow deletion of channels with FGS notifications
android_frameworks_base: Increase maximum allowed size for status bar icons
android_frameworks_base: Limit maximum allowed size for a status bar icon
android_frameworks_base: Adds caller check to getAllPackages()
android_frameworks_av: [RESTRICT AUTOMERGE] Fix clearkey CryptoPlugin use after free vulnerability.
android_frameworks_av: Fix possible uaf of play policy state
android_frameworks_av: [RESTRICT AUTOMERGE] Fix UAF in clearkey service's MemoryFileSystem
android_frameworks_av: [RESTRICT AUTOMERGE] Fix potential decrypt destPtr overflow.
android_art: Fix dm-test invocation
android_art: Do not accept vdex with dex sections from .dm files
android_build_make: Bump Security String to 2021-06-05
android: Track Lineage fork(s) for 2021-06 ASB patching
android: manifest: Track master branch of crowdin
--- Changed on 2021-06-03 ---
android_packages_apps_Contacts: Contacts: Fix light dropdown lists on dark theme
android_packages_apps_Contacts: Contacts: Fix light dialogs on dark theme
--- Changed on 2021-05-22 ---
android_packages_apps_Snap: Automatic translation import
android_packages_apps_Settings: Automatic translation import
android_packages_apps_Messaging: Automatic translation import
android_packages_apps_Launcher3: Automatic translation import
android_packages_apps_CarbonSetupWizard: Automatic translation import
android_packages_apps_CarbonFibers: Automatic translation import
android_packages_apps_CarbonDelta: Automatic translation import
android_frameworks_base: Automatic translation import
--- Changed on 2021-05-17 ---
android_build_make: Bump Security String to 2021-05-05
android_system_bt: smp: Use SMP_TRACE_WARNING
android_system_bt: smp: Reject pairing if the public keys match
android_system_bt: avrcp: Ignore AVCT commands that are too long
android_system_bt: btif: Return after closing the socket
android_system_bt: DO NOT MERGE Add mutex for std::map in btif_av.cc
android_packages_apps_Settings: Prevent using invalid result uri during multi user image change
android_packages_apps_Settings: RESTRICT AUTOMERGE Update String
android_packages_apps_Settings: RESTRICT AUTOMERGE Fix phishing attacks over Bluetooth due to unclear warning message
android_frameworks_opt_net_wifi: Use EUI64 IPv6 link-local address generation only when randomizing MAC
android_frameworks_opt_net_wifi: Revert "Don't expose MAC address in IPv6 address"
android_frameworks_base: Add pkg target to snoozing alarm
android_frameworks_base: Revoke storage on SDK downgrade or new full storage request
android_frameworks_base: [RESTRICT AUTOMERGE] Use userId instead of USER_CURRENT in shouldLockKeyguard.
android_frameworks_av: aaudio: fix race when disconnecting
android_frameworks_av: aaudio: lock transport methods
android_frameworks_av: Prevent read of uninitialized memory
android: Track LOS fork(s) for 2021-05 ASB patching
--- Changed on 2021-04-30 ---
android_packages_apps_CarbonFibers: CF: Properly handle battery icon selection when icon is hidden
--- Changed on 2021-04-18 ---
android_build_make: Bump Security String to 2021-04-05
android_hardware_interfaces: Fix potential decrypt src pointer overflow.
android_system_bt: AVRCP: Use calloc to zero reserved fields
android_system_bt: avrc_copy_packet: Zero initialize packet
android_system_bt: Legacy pairing: Reject device with same BD_ADDR
android_packages_apps_Contacts: Prevent overlays on vCard import flows
android_packages_apps_Contacts: Stop returning intent data in QuickContact in onActivityResult
android_frameworks_opt_telephony: Remove unecessary locking to avoid dead lock.
android_frameworks_opt_telephony: Move permission checks out of synchronized block
android_frameworks_opt_telephony: Guard ICC ID card string behind new identifier access requirements
android_frameworks_opt_telephony: Guard ICC ID behind new identifier access requirements
android_frameworks_base: [DO NOT MERGE] Close screenshot process on user switched
android_frameworks_base: [SettingsProvider] extend font size scale range
android_frameworks_base: DO NOT MERGE: Do not inject mock location to chipset
android_frameworks_base: Add method to clear out SubscriptionInfo#getCardString
android_frameworks_base: Whitelist READ_PRIVILEGED_PHONE_STATE for the contacts provider
android_frameworks_base: Update the getIccId docs to reflect access requirements
android_frameworks_base: DO NOT MERGE: WM: Only allow system to use NO_INPUT_CHANNEL.
android_frameworks_base: RESTRICT AUTOMERGE Allow CDM to hide overlays
android_frameworks_base: RESTRICT AUTOMERGE Prevent non-system overlays from showing over CDM UI
android_frameworks_av: Fix double free of play policy in a race condition.
android_frameworks_av: Fix potential decrypt src pointer overflow.
android: Track LOS fork(s) for 2021-04 ASB patching
--- Changed on 2021-03-18 ---
android_build_make: Bump Security String to 2021-03-05
android_frameworks_native: libbinder: readString*Inplace SafetyNet (II)
android_frameworks_native: libbinder: check null bytes in readString*Inplace
android_system_bt: SDP: Only start discovery once
android_frameworks_opt_net_wifi: [Suggestion] Check foreground user for API call
android_frameworks_base: Protect account chooser activities against overlay.
android_art: Add SafetyNet logging to JNI::NewStringUTF.
android_art: Validate input of JNI::NewStringUTF().