Google Git
Sign in
coral / android-core / refs/heads/ics-mr1
commitd6fec06b797695fe1762b489abe5361ccc3c2005[log] [tgz]
authorNick Kralevich <nnk@google.com>Fri Jan 27 13:06:53 2012 -0800
committerNick Kralevich <nnk@google.com>Fri Apr 27 13:32:32 2012 -0700
tree822006f3908db085b8b98620bca2c6499ec8c11a
parent5ebced39093d1223566166b8cc6abfe6729c487d [diff]
Restrict zygote to system user.

CVE-2011-3918: Address denial of service attack against Android's
zygote process. This change enforces that only UID=system can
directly connect to zygote to spawn processes.

Change-Id: I89f5f05fa44ba8582920b66854df3e79527ae067
1 file changed
tree: 822006f3908db085b8b98620bca2c6499ec8c11a
  1. adb/
  2. charger/
  3. cpio/
  4. debuggerd/
  5. fastboot/
  6. gpttool/
  7. include/
  8. init/
  9. libctest/
  10. libcutils/
  11. libdiskconfig/
  12. liblinenoise/
  13. liblog/
  14. libmincrypt/
  15. libnetutils/
  16. libnl_2/
  17. libpixelflinger/
  18. libsysutils/
  19. libusbhost/
  20. libzipfile/
  21. logcat/
  22. logwrapper/
  23. mkbootimg/
  24. netcfg/
  25. nexus/
  26. rootdir/
  27. run-as/
  28. sdcard/
  29. sh/
  30. toolbox/
  31. .gitignore
  32. Android.mk
  33. CleanSpec.mk
  34. README
  35. ThirdPartyProject.prop