git.osdn.net Git - android-x86/frameworks-base.git/commit

(root) / android-x86 / frameworks-base.git / commit

author	Seigo Nonaka <nona@google.com>
	Thu, 22 Jun 2017 15:22:18 +0000 (08:22 -0700)
committer	Seigo Nonaka <nona@google.com>
	Thu, 22 Jun 2017 15:36:03 +0000 (08:36 -0700)
commit	6d6cd68660635d670b0cb17f348b7c1da13704b3
tree	46ff413dabcfa566e5e7174ed24b41da1ce13ec8	tree \| snapshot
parent	58aeff811f2da99537a8a9531fc58cea8ffbb867	commit \| diff

Stop loading other package's font by default.

Since CONTEXT_RESTRICTED is not a default flag of createPackageContext,
we can't rely on it for preventing unexpected font injections.
To protect developers and existing apps from a risk of font injection,
stop loading font from other package's resouce unless the developer
explicitly set CONTEXT_IGNORE_SECURITY.

Bug: 62813533
Bug: 62879353
Test: Manually done
Change-Id: I4442ddc48dadb5c968b444be86038b602074d301

frameworks/base

RSS Atom

About OSDN

Find Software

Develop Software

Help

core/java/android/app/ContextImpl.java		diff \| blob \| history
core/java/android/content/Context.java		diff \| blob \| history
core/java/android/content/ContextWrapper.java		diff \| blob \| history
core/java/android/widget/TextView.java		diff \| blob \| history
test-runner/src/android/test/mock/MockContext.java		diff \| blob \| history