diff options
author | Geremy Condra <gcondra@google.com> | 2012-03-24 21:24:57 -0700 |
---|---|---|
committer | Geremy Condra <gcondra@google.com> | 2012-03-26 11:00:43 -0700 |
commit | f7a94ad459bc09a49a19c6b03c32d28843d5e6d7 (patch) | |
tree | 58a5c281ab19aac552b37dff62e17025c5fe2e44 | |
parent | 3ab5bec554013c655c8d7439b708ba1380c8eef8 (diff) | |
download | android_external_sqlite-f7a94ad459bc09a49a19c6b03c32d28843d5e6d7.tar.gz android_external_sqlite-f7a94ad459bc09a49a19c6b03c32d28843d5e6d7.tar.bz2 android_external_sqlite-f7a94ad459bc09a49a19c6b03c32d28843d5e6d7.zip |
Changed default mode for journal files created by sqlite.
Previous to this, the temporary journal files created by sqlite
were globally readable, leading to the possible leakage of
sensitive data (CVE-2011-3901).
Bug: 6222215
Change-Id: I29a85c9077c622b038e7fb190c3d7833b924df99
-rw-r--r-- | dist/Android.mk | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/dist/Android.mk b/dist/Android.mk index e380c9b..90dc411 100644 --- a/dist/Android.mk +++ b/dist/Android.mk @@ -26,7 +26,8 @@ common_sqlite_flags := \ -DSQLITE_ENABLE_FTS4 \ -DSQLITE_OMIT_BUILTIN_TEST \ -DSQLITE_OMIT_COMPILEOPTION_DIAGS \ - -DSQLITE_OMIT_LOAD_EXTENSION + -DSQLITE_OMIT_LOAD_EXTENSION \ + -DSQLITE_DEFAULT_FILE_PERMISSIONS=0600 common_src_files := sqlite3.c |