commit 4cda45544a1e5d097100afbbb549ec2e6c610763
author Jordan Liu <jminjie@google.com> Mon Mar 23 11:55:07 2020 -0700
committer Jordan Liu <jminjie@google.com> Tue Mar 24 12:03:57 2020 -0700
tree 243dfe0470dac250f79352bc469399382fba1145
parent a11c59ab911cd8bd982c2693c5488eea78e3a355

Used checkPackage to check UID and package

This is our best guess at a fix, but there's unfortunately no way to
verify it currently.

Bug: 150979331
Test: builds
Change-Id: I567639aa789c6c4db8e230d5db4938f92901f44e

src/com/android/phone/PhoneInterfaceManager.java

diff --git a/src/com/android/phone/PhoneInterfaceManager.java b/src/com/android/phone/PhoneInterfaceManager.java
index ec6e0c6..fee5ecc 100755
--- a/src/com/android/phone/PhoneInterfaceManager.java
+++ b/src/com/android/phone/PhoneInterfaceManager.java
@@ -7451,6 +7451,10 @@
 
     @Override
     public List<UiccCardInfo> getUiccCardsInfo(String callingPackage) {
+        // Verify that tha callingPackage belongs to the calling UID
+        mApp.getSystemService(AppOpsManager.class)
+                .checkPackage(Binder.getCallingUid(), callingPackage);
+
         boolean hasReadPermission = false;
         try {
             enforceReadPrivilegedPermission("getUiccCardsInfo");