Android Oreo AOSP Changes

Changes from 8.0.0_r35 (OPR4.170623.020) to 8.0.0_r36 (OPR5.170623.014):

Warning Releases with no significant changes other than version bump in platform/build component are likely to only feature proprietary binary blob (e.g. firmwares) changes.

Newly Added Components (0):

None

Removed Components (0):

None

Updated Components (18):

  • device/google/dragon with 1 change(s)
    • 6bcd763 : Fix audio record pre-processing

  • device/huawei/angler with 2 change(s)
    • 00ba046 : QCamera2/HAL3: correct mutex lock/unlock sequence
    • e7f84a0 : angler/apns: Update USC apn

  • platform/build with 35 change(s)
    • ef3f84c : Use for Updating OC-release branches to 12-01 after KRACK fix. (cherry picked from commit 43f4cb8d492c7c74fc2a30c8543fcc307552b3e0)
    • 4f56373 : Update Security String to 11-06 for KRACK Fix (cherry picked from commit 89464c994c148c6e3f9ecfa799f5c11737dd9d9d)
    • a38c7de : Version bump to OPR5.170623.012
    • a59322b : Version bump to OPR5.170623.011
    • a752375 : Version bump to OPR5.170623.010
    • 7fc6950 : Version bump to OPR5.170623.009
    • 0d2ca23 : Update Security String to 2017-11-05 on oc-dev bug:65631379 (cherry picked from commit d24487a2f2f215e5de8aad8117e58f81eaf1529c)
    • 8f4ae30 : Update Security String to 2017-11-01 on oc-dev bug:65631379 (cherry picked from commit 8f4a4c213118ce088245abc4f31204393bab62a5)
    • a639af4 : Version bump to OPR5.170623.007
    • bc7fd5e : Version bump to OPR5.170623.006
    • 3b50a6b : Update platform security string to 2017-10-05 in oc-dev Bug:64896113 (cherry picked from commit 4e140ce86ac37b5a5aec06058262fe1a7a835909)
    • 458cb74 : Update platform security string to 2017-10-01 in oc-dev Bug:64896113 (cherry picked from commit 80d3742026e1640e3cbcfb2bcbc9244733dc05d4)
    • 1d36b27 : OPR6.170623.014
    • 1557d3d : OPR6.170623.013
    • 76c1527 : OPR6.170623.012
    • 6277313 : OPR6.170623.011
    • fb692ad : OPR6.170623.010
    • 45bc0d6 : OPR6.170623.010
    • 7b59a93 : OPR6.170623.009
    • 0fc42eb : OPR6.170623.008
    • a37f455 : OPR6.170623.007
    • 9c4de51 : OPR6.170623.006
    • f72a117 : OPR6.170623.005
    • 6a502db : OPR6.170623.004
    • 7620690 : OPR1.170623.021
    • 9b4d2cf : Version bump to OPR6.170623.003
    • 4019c7b : OPR6.170623.001
    • 5e9f867 : Version bump to OPR5.170623.003
    • b41fcb5 : OPR5.170623.002
    • 56f8ff3 : build id config update with OPR5.170623.001 BUG:64436801
    • eb540a4 : Version bump to OPR2.170623.002
    • 57a1ac1 : Version bump to OPR3.170623.002
    • 46574b3 : OPR3-170623.001
    • a4cc61f : OPR2.170623.001
    • 8f53d90 : Version bump to OPR2.170801.002

  • platform/external/dnsmasq with 2 change(s)
    • 6ccfb5e : Add extra (size_t) cast to avoid compiler warning.
    • b6e41af : Make dnsmasq more stable.

  • platform/external/libavc with 5 change(s)
    • cefa9a8 : Decoder: Fixed hang in the case of dangling field
    • 63e4c08 : Decoder: Updated error check while parsing num_ref_idx_lx_active.
    • 444d21d : Decoder: Corrected variable datatypes in ih264d_get_implicit_weights.
    • 7dea7b5 : Added an out of bound check on u4_num_bufs in input argument
    • 85b6186 : Decoder: Conceal picture only if valid picture buffer is obtained.

  • platform/external/libhevc with 7 change(s)
    • 704313e : Alloc extra bytes for bits buf for parse optimzation
    • f8c786a : Fix overflow in sei timing params
    • ecc2f73 : Fix reallocation for new sps
    • 95908ae : Added an out of bound check on u4_num_bufs in input argument
    • 2f17ad3 : Fix tile index buf alloc size
    • 26e98d5 : Fix slice decrement for skipped slices
    • f903d73 : Ensure CTB size 16 for clips with tiles and width/height = 4096

  • platform/external/libmpeg2 with 10 change(s)
    • eea6079 : Update num_mbs_left When mb_x is Reset.
    • 8c4058c : Fix Error When Input Buffer is Full
    • a02ebb6 : Reject Multiple seq_hdr With Different Dimensions
    • e26b29a : DoS error - Bitstream Overflow
    • f017013 : Propagating Error From impeg2d_pre_pic_dec_proc
    • 0d309ee : Check on Picture Dimensions
    • 8bd8158 : Fix Half Pel MC on Last Ref Row
    • 24eb0da : Check Number of MBs to Skip.
    • fbc017f : Replace memcpy with memmove to Solve Memory Overlap Error
    • bbb3005 : Fixed Memory Overflow Errors

  • platform/external/skia with 1 change(s)
    • 6650e19 : Fix truncated webp images

  • platform/external/tremolo with 1 change(s)
    • 1f92949 : Fix out of bounds access in codebook processing

  • platform/external/wpa_supplicant_8 with 8 change(s)
    • f8a80e8 : TDLS: Reject TPK-TK reconfiguration
    • bd6483b : Fix PTK rekeying to generate a new ANonce
    • 287e897 : Extend protection of GTK/IGTK reinstallation of WNM-Sleep Mode cases
    • 24dc740 : FT: Do not allow multiple Reassociation Response frames
    • 5c6cea7 : WNM: Ignore WNM-Sleep Mode Response without pending request
    • a6cff1f : Prevent installation of an all-zero TK
    • 2df9af8 : hostapd: Avoid key reinstallation in FT handshake
    • 55f1b95 : Prevent reinstallation of an already in-use group key

  • platform/frameworks/av with 16 change(s)
    • dd8e655 : OMXNodeInstance: use a lock around OMX::freeNode
    • c61f3ca : Soundtrigger service: fix cross deadlock with audio policy service
    • 31c47bb : Fix information disclosure in mediadrmserver
    • 6afa770 : m4v_h263: fix global buffer overflow
    • d12447d : aaudio: disable MMAP mode by not creating AAudioService
    • ae6cc0b : AudioPolicyService: Acquire mutex for SoundTriggerSession
    • b4afd32 : Revert "Fix memory leaks"
    • 40a9be9 : Fix memory leaks
    • 4720d07 : Put media.metrics service into proper group
    • 992cec5 : EffectBundle: Check parameter and value size
    • 56fed71 : Track graphic buffer mode in OMXNodeInstance
    • f4ff35f : Check buffer size in useBuffer in software components
    • 72a7834 : stagefright: avoid buffer overflow in base64 decoder
    • 74153cf : Add EFFECT_CMD_SET_PARAM parameter checking to Downmix and Reverb
    • 7e63739 : Fix memory leak in OggExtractor
    • a3ca686 : Skip track if verification fails

  • platform/frameworks/base with 20 change(s)
    • 43c3468 : Only construct real Throwable objects.
    • efd4898 : Revert "Prevent getting data from Clipboard if device is locked"
    • 85f78e2 : Prevent getting data from Clipboard if device is locked
    • 45b68a9 : DPC should not be allowed to grant development permission
    • 095af05 : Backport overlay security fix
    • aa58767 : Improve AVRCP quality and state handling (2/2)
    • 0823f8f : Fix security hole in GateKeeperResponse.
    • b5d2f63 : Enforce policy for camera gesture in keyguard
    • dc908e7 : Properly compute default and system set flag on an upgrade
    • 97e5130 : Properly compute default and system set flag on an upgrade
    • 6934c90 : Properly compute default and system set flag on an upgrade
    • 96906be : Properly compute default and system set flag on an upgrade
    • 899eecd : Properly compute default and system set flag on an upgrade
    • 4892e47 : Properly compute default and system set flag on an upgrade
    • 7570d99 : Properly compute default and system set flag on an upgrade
    • 42088fa : Properly compute default and system set flag on an upgrade
    • a08bb62 : Properly compute default and system set flag on an upgrade
    • 6d8eb08 : Properly compute default and system set flag on an upgrade
    • eebfea9 : Properly compute default and system set flag on an upgrade
    • 094535f : Properly compute default and system set flag on an upgrade

  • platform/libcore with 2 change(s)
    • 6b97c7d : Fix failing FileTest#test_canonicalCachesAreOff()
    • b8e5a86 : Disable File.getCanonicalPath caches.

  • platform/packages/apps/Bluetooth with 1 change(s)
    • f51e3ac : Improve AVRCP quality and state handling (1/2)

  • platform/packages/apps/PackageInstaller with 1 change(s)
    • 96fff71 : Backport overlay security fix

  • platform/packages/apps/Settings with 1 change(s)
    • c7c38f8 : Backport overlay security fix

  • platform/system/bt with 2 change(s)
    • 107a944 : Read the correct amount of attributes
    • 0079038 : SDP: Bounds check 'id' parameter for free_sdp_slot()

  • platform/system/core with 2 change(s)
    • 6745ff5 : zip_archive: reject files that don't start with an LFH signature.
    • 2702d25 : Fix integer overflow in utf{16,32}_to_utf8_length