Android Nougat AOSP Changes

Changes from 7.0.0_r29 (NBD91Z) to 7.0.0_r30 (NBD92D):

Warning Releases with no significant changes other than version bump in platform/build component are likely to only feature proprietary binary blob (e.g. firmwares) changes.

Newly Added Components (0):

None

Removed Components (0):

None

Updated Components (14):

  • platform/bootable/recovery with 2 change(s)
    • 99d19c7 : Add a checker for signature boundary in verifier
    • 739497a : Add a checker for signature boundary in verifier

  • platform/build with 7 change(s)
    • 5fc5f9a : NBD92D
    • cb30cec : Updating Security String to 2017-03-05 on nyc-dev
    • 1f2c8d4 : Updating Security String to 2017-03-01 on nyc-dev
    • ab9f824 : NBD92C
    • 6db92d9 : NBD92B
    • 3de0ad6 : Updating Security String to 2017-03-05 on nyc-dev
    • 1fbfb28 : Updating Security String to 2017-03-01 on nyc-dev

  • platform/external/boringssl with 2 change(s)

  • platform/external/libavc with 28 change(s)
    • a687146 : Decoder: Padded gau1_ih264d_top_left_mb_part_indx_mod to avoid an out of bound read
    • 119aca8 : Decoder: Fix in checking first_mb_in_slice
    • 630f61e : Decoder: Increase memory allocation for weights & offsets for interlaced clips
    • 0d116a9 : Decoder: Fixed DoS in header decode when no PPS is present
    • 7ed3951 : Decoder: Initialize ps_cur_slice-u1_mbaff_frame_flag correctly for error cases
    • bfe86d7 : Decoder: Fixed an out of bound access while parsing SEI
    • f6aac0e : Decoder: Fix in MB count in MBAff error handling
    • 6eceb53 : Call ih264d_deblock_display only for valid process calls
    • 5d5a6cc : Decoder: Fixed allocation of ps_dec-ps_nbr_mb_row
    • 4e1067b : Decoder: Fixed cur_mb_info initialization in error cases
    • c73d480 : Decoder: Fix in error concealment in the case of Mbaff clips
    • a82b4fd : Decoder: Fix in the case of error in the first MB in frame.
    • 8135e4f : Decoder: Fix in returning incomplete frame error
    • d752f25 : Decoder: Fix initialization of ps_next_dpb during reference list creation
    • ff10781 : Decoder: Padded gau1_ih264d_top_left_mb_part_indx_mod to avoid an out of bound read
    • 6c10e27 : Decoder: Fix in checking first_mb_in_slice
    • 94fd75f : Decoder: Increase memory allocation for weights & offsets for interlaced clips
    • d7c960a : Decoder: Fixed DoS in header decode when no PPS is present
    • b1b0d32 : Decoder: Initialize ps_cur_slice-u1_mbaff_frame_flag correctly for error cases
    • 6e3bb35 : Decoder: Fixed an out of bound access while parsing SEI
    • 64c133d : Decoder: Fix in MB count in MBAff error handling
    • c94e3f0 : Call ih264d_deblock_display only for valid process calls
    • 97a2ce2 : Decoder: Fixed allocation of ps_dec-ps_nbr_mb_row
    • 0ea77cf : Decoder: Fixed cur_mb_info initialization in error cases
    • 0cdd389 : Decoder: Fix in error concealment in the case of Mbaff clips
    • 3ce952e : Decoder: Fix in the case of error in the first MB in frame.
    • 953a5be : Decoder: Fix in returning incomplete frame error
    • 29e0bab : Decoder: Fix initialization of ps_next_dpb during reference list creation

  • platform/external/libhevc with 2 change(s)
    • 88cc37f : Added check for invalid log2_max_transform_block_size in SPS
    • 9ab2cd6 : Added check for invalid log2_max_transform_block_size in SPS

  • platform/external/libnfc-nci with 2 change(s)
    • 08ecbb2 : Fix native crash in nfc_ncif_proc_activate
    • 8e1e806 : Fix native crash in nfc_ncif_proc_activate

  • platform/external/libvpx with 2 change(s)
    • df732fa : libvpx: Cherry-pick 1961a92 from upstream
    • eb1740e : libvpx: Cherry-pick 1961a92 from upstream

  • platform/frameworks/av with 3 change(s)
    • c3f1fcc : avc_utils: skip empty NALs from malformed bistreams
    • e4a8ead : Don't initialize sync sample parameters until the end
    • da55f9f : Don't initialize sync sample parameters until the end

  • platform/frameworks/base with 10 change(s)
    • 60e35da : Fix exploit where can hide the fact that a location was mocked am: a206a0f17e am: d417e54872 am: 3380a77516
    • ee6a0dc : Fix issue with saving admins before finishing loading.
    • 4d27e32 : Don't save password metrics to disk.
    • 38d7f62 : Add @GuardedBy annotation to PersistentDataBlockService#mIsWritable.
    • 2ebc16a : Prevent writing to FRP partition during factory reset.
    • 84c19a3 : Fix issue with saving admins before finishing loading.
    • 230fe95 : Don't save password metrics to disk.
    • c9b49b1 : Add @GuardedBy annotation to PersistentDataBlockService#mIsWritable.
    • 6b568a2 : Prevent writing to FRP partition during factory reset.
    • 17503b4 : Fix exploit where can hide the fact that a location was mocked am: a206a0f17e am: d417e54872 am: 3380a77516

  • platform/frameworks/ex with 2 change(s)
    • cdc4cab : Handle small sized webps correctly
    • 51b23cc : Handle small sized webps correctly

  • platform/frameworks/opt/net/wifi with 2 change(s)
    • a370d9d : configparse: do not delete passpoint configuration file
    • b9a6ac9 : configparse: do not delete passpoint configuration file

  • platform/packages/apps/CertInstaller with 3 change(s)
    • fc13026 : WifiInstaller: add permission for access downloaded files
    • febfd9d : WifiInstaller: remove the installation file
    • 04d5089 : WifiInstaller: remove the installation file

  • platform/packages/apps/Messaging with 4 change(s)
    • f49326f : 32764144 Security Vulnerability - heap buffer overflow in libgiftranscode.so in colorMap-Colors[colorIndex]
    • 57592d9 : 33388925 Mismatched new vs delete in framesequence library
    • 9141ee6 : 32764144 Security Vulnerability - heap buffer overflow in libgiftranscode.so in colorMap-Colors[colorIndex]
    • 6e433c9 : 33388925 Mismatched new vs delete in framesequence library

  • platform/packages/apps/PackageInstaller with 2 change(s)
    • 76df227 : Prioritize package installer intent filter
    • ee75066 : Prioritize package installer intent filter