e783e4b24b9e4080e50c50d62a24bcbfabb3e03d - android_frameworks_av

commit	e783e4b24b9e4080e50c50d62a24bcbfabb3e03d	[log] [tgz]
author	James Wei <jameswei@google.com>	Tue May 28 17:18:21 2019 +0800
committer	James Wei <jameswei@google.com>	Thu May 30 22:36:27 2019 +0800
tree	06c7e3e2e47002e6e9ee6c99e2597606b8d706d2
parent	8b43461ccef647345a49d65698c7e03c50e78e3b [diff]

MTP: Sanitize filename provided from MTP host

Fix potential security vulnerability via MTP path traversal

Bug: 130656917
Test: atest frameworks/av/media/mtp/tests
Test: Manual test: modified libmtp for path traversal attack
Test: Manual test: normal recursive folder copy
Change-Id: I467e1e6a76d09951050f7f45e5a63419e540c572

media/mtp/MtpServer.cpp[diff]

1 file changed

tree: 06c7e3e2e47002e6e9ee6c99e2597606b8d706d2

CleanSpec.mk
MODULE_LICENSE_APACHE2
NOTICE
OWNERS
apex/
camera/
cmds/
drm/
include/
media/
services/
soundtrigger/
tools/