binder: Fix Elevation of privilege vulnerability in system_server
authorGagan Grover <ggrover@nvidia.com>
Mon, 14 Nov 2016 19:52:08 +0000 (00:52 +0530)
committermobile promotions <svcmobile_promotions@nvidia.com>
Wed, 23 Nov 2016 01:14:00 +0000 (17:14 -0800)
commit44a2b2f3184bf6bef75c6f9119a69d1c99fb11d8
tree6e410df9ba65f69a03d762bece63d3df0b0e4e98
parentd7c321508f96181ace4448a39921ff886616429c
binder: Fix Elevation of privilege vulnerability in system_server

The usage of weak references instead of strong references in Binder
can potentially lead to a use-after-free vulnerability in
system_server. The fix is designed to no longer allow weak references
in cases where strong references are needed.

CVE-2016-6674 A-30445380

Bug 1812688

Change-Id: Ic4e028e8f1f6ae4b1ff562127f87a4a15d0a0999
Signed-off-by: Gagan Grover <ggrover@nvidia.com>
Reviewed-on: http://git-master/r/1252938
Reviewed-by: Bharat Nihalani <bnihalani@nvidia.com>
drivers/android/binder.c