5.1.1_r18 (LVY48F) to 5.1.1_r23 (LVY48H)

Changes for the Nexus 6 on Fi

This page includes changes made to the Android Open Source Project between two specific releases. It does not include any changes in any proprietary components included by Google or any hardware manufacturer. This page was generated by a re-implemented script based on scripts from Funky Android Ltd. In turn, those scripts were a modified version of this script written by JBQ.

Please do not copy or link to this content without attributing this site, Funky Android Ltd, and JBQ for the original script.

[show all] [hide all]

Projects removed (0)

Projects added (0)

Projects modified (15) [show][hide]

platform/build (2) [show][hide]

platform/cts (2) [show][hide]

  • bf0aad4 [diff] test if libFLAC is patched against CVE-2014-9028
  • e4f1a59 [diff] CTS: check non-zygote apps are not debuggable

platform/dalvik (1) [show][hide]

  • 71eabef [diff] Ensure deterministic multidex partitioning

platform/external/flac (2) [show][hide]

platform/external/libhevc (1) [show][hide]

  • 5be3540 [diff] Align pic_width_in_luma_samples and pic_width_in_luma_samples to 8

platform/external/libvpx (1) [show][hide]

  • 2f49716 [diff] Try to CP ag/749963 from klp-dev into lmp-mr1-release

platform/external/skia (1) [show][hide]

  • 2adfe26 [diff] SkScaledBitmapSampler: fix memory overwritten

platform/external/sonivox (4) [show][hide]

  • cb21414 [diff] Sonivox: check loopStart/loopLength against one specific wave, not whole wave pool.
  • 584ecd1 [diff] Sonivox: fix overflow in Parse_data in eas_mdls.c
  • e311210 [diff] Sonivox: make sure waveIndex is valid in Parse_rgn() in eas_mdls.c.
  • d18e7fb [diff] Check segments and libs

platform/external/sqlite (1) [show][hide]

  • f8ed480 [diff] sqlite: upgrade to SQLite 3.8.6.1 - DO NOT MERGE

platform/external/tremolo (3) [show][hide]

  • 981e875 [diff] Add sanity checks to fix crash
  • 354b331 [diff] Fix vorbis decoder crash due to out of bounds memory access
  • 8d398eb [diff] Fix allocation failure crash

platform/frameworks/av (38) [show][hide]

  • 9513029 [diff] DO NOT MERGE - Fix software video decoder buffer size calculation
  • 7737a94 [diff] libstagefright: fix overflow in pvdec_api.cpp.
  • 7bd4e71 [diff] Revert "Fix compile after rI431aa2b7d30a942350ab6d105451c6b77e2f99d4"
  • 3021ec3 [diff] libstagefright: check memory size for overflow before allocation.
  • 824a91e [diff] DO NOT MERGE - SoftwareRenderer: sanity check buffer size before copying data.
  • b284823 [diff] libstagefright: check overflow before memory allocation in OMXCodec.cpp
  • 51ffa0b [diff] Prevent integer issues in ID3::Iterator::findFrame
  • b071d94 [diff] DO NOT MERGE Part of fix for libmedia OOB write anywhere
  • 1cd8e17 [diff] libstagefright: fix overflow in MPEG4Source::parseSampleAuxiliaryInformationOffsets.
  • 2a88b64 [diff] Check RTSP payload length
  • 5b89968 [diff] libstagefright: Fix crash in convertMetaDataToMessage
  • 9915646 [diff] libstagefright: fix handling of mSampleTimeEntries and mNumSampleSizes in SampleTable.
  • 749cc1e [diff] DO NOT MERGE - audio flinger: fix fuzz test crash
  • af29aba [diff] Sanity check padding/delay values for gapless playback
  • 3db5231 [diff] SoftAVCEncoder: fix auto merge error, member names have changed.
  • 0071d87 [diff] MatroskaExtractor: detect infinite loop when parsing NALs
  • 04140c8 [diff] Fix for memory corruption in ID3::removeUnsynchronizationV2_4(). Bug: 23227354
  • 7a7100f [diff] SoftAVCEncoder: fix mismatched type for comparison.
  • 7e7e3c1 [diff] Fix compile failure after rI431aa2b7d30a942350ab6d105451c6b77e2f99d4
  • c0516d6 [diff] MPEG4Source::fragmentedRead: check range before writing into buffers
  • 0da401c [diff] Fix compile after rI431aa2b7d30a942350ab6d105451c6b77e2f99d4
  • 0eef754 [diff] do not dequeue from native window after we hit fatal error -- DO NOT MERGE
  • f21f423 [diff] libstagefright: check remaining data size before parsing it.
  • 53e6c35 [diff] SoftAVCEnc: check requested memory size before allocation.
  • e88d2ac [diff] Check integer overflow to prevent memory corruption
  • 21c79a5 [diff] SoftOpus: Fix output buffer capacity.
  • e26e1bd [diff] Check buffer size before using it
  • d9ec03a [diff] Fix comparison sign warnings.
  • 8560d9d [diff] ABuffer: reset members when memory allocation fails.
  • fa7ef6c [diff] Check vector size before accessing
  • f188532 [diff] libstagefright: fix possible overflow in amrwbenc.
  • 6637504 [diff] libstagefright: fix possible overflow in ID3.
  • e0c4398 [diff] Fix Ogg album art
  • 6004bf7 [diff] MPEG4Extractor.cpp: Add check for size == SIZE_MAX
  • 4d88d40 [diff] Extra sanity checks on sample size and resolution
  • bd5a03e [diff] Fix crash on malformed id3
  • e302423 [diff] SampleTable: fix integer overflow checks.
  • 1ad6814 [diff] DO NOT MERGE - IAudioFlinger: add checks on binder calls

platform/frameworks/base (3) [show][hide]

  • 7927a55 [diff] [DO NOT MERGE] Bump up the timeout for uncrypt to 900s.
  • 858470b [diff] DO NOT MERGE. Truncate and ellipsize app name if too long for dialog.
  • e172d9c [diff] Allow debugging only for apps forked from zygote

platform/packages/apps/Bluetooth (1) [show][hide]

  • 014b90e [diff] DO NOT MERGE Fix security vulnerabilities in permission of deleting MMS/SMS

platform/system/core (3) [show][hide]

  • e0a1714 [diff] libutils: fix overflow in String8::allocFromUTF8
  • 28a9f03 [diff] libutils: fix overflow in SharedBuffer [DO NOT MERGE]
  • be20bb0 [diff] Fix compile failure after rIfe1dc0791040150132bea6884f1e6c8d31972d1b

platform/system/security (1) [show][hide]