tag | 3b899c12b5e718b0e89f7de44e758148a500faa1 | |
---|---|---|
tagger | The Android Open Source Project <initial-contribution@android.com> | Mon Jan 23 14:56:11 2017 -0800 |
object | e8e6d11d9982a70ffaf07d7408994436b5ea788e |
Android 6.0.1 Release 78 (MOB31S)
commit | e8e6d11d9982a70ffaf07d7408994436b5ea788e | [log] [tgz] |
---|---|---|
author | Tianjie Xu <xunchang@google.com> | Wed Sep 21 14:58:11 2016 -0700 |
committer | gitbuildkicker <android-build@google.com> | Thu Nov 03 14:00:24 2016 -0700 |
tree | 1c133ecda03951ff009b6104574f2d61af99bbce | |
parent | dc7cf2204e8dbb2c825bad52f8504921e4a0f2b9 [diff] |
Fix out of bound access in libziparchive The boundary check of an invalid EOCD record may succeed due to the overflow of uint32_t. Fix the check. Test: Open the crash.apk and libziparchive reports the offset error as expected. Bug: 31251826 Change-Id: I1d8092a19b73886a671bc9d291cfc27d65e3d236 (cherry picked from commit ae8180c06dee228cd1378c56afa6020ae98d8a24) (cherry picked from commit 1ee4892e66ba314131b7ecf17e98bb1762c4b84c)