Skip to content

Commit

Permalink
[security] SubscriptionGroup is exposed to unprivileged callers
Browse files Browse the repository at this point in the history
SubscriptionInfo.mGroupUUID is not cleared in
conditionallyRemoveIdentifiers if the caller only has READ_PHONE_STATE
(based on a check to checkReadPhoneState) and not READ_DEVICE_IDENTIFIERS.
Bug: 181053462
Test: atest SubscriptionManagerTest

Change-Id: I68d1edb4e7cc2ad6696363ea1dacb09e839a651e
Merged-In: I68d1edb4e7cc2ad6696363ea1dacb09e839a651e
  • Loading branch information
SongFerngWang committed May 6, 2021
1 parent 04e76f0 commit 1399361
Showing 1 changed file with 1 addition and 0 deletions.
Original file line number Diff line number Diff line change
Expand Up @@ -4000,6 +4000,7 @@ private SubscriptionInfo conditionallyRemoveIdentifiers(SubscriptionInfo subInfo
if (!hasIdentifierAccess) {
result.clearIccId();
result.clearCardString();
result.clearGroupUuid();
}
if (!hasPhoneNumberAccess) {
result.clearNumber();
Expand Down

0 comments on commit 1399361

Please sign in to comment.