1 /** 2 * Copyright (C) 2022 The Android Open Source Project 3 * 4 * Licensed under the Apache License, Version 2.0 (the "License"); 5 * you may not use this file except in compliance with the License. 6 * You may obtain a copy of the License at 7 * 8 * http://www.apache.org/licenses/LICENSE-2.0 9 * 10 * Unless required by applicable law or agreed to in writing, software 11 * distributed under the License is distributed on an "AS IS" BASIS, 12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 13 * See the License for the specific language governing permissions and 14 * limitations under the License. 15 */ 16 17 package android.security.cts; 18 19 import android.platform.test.annotations.AsbSecurityTest; 20 21 import com.android.sts.common.tradefed.testtype.NonRootSecurityTestCase; 22 import com.android.tradefed.testtype.DeviceJUnit4ClassRunner; 23 24 import org.junit.Test; 25 import org.junit.runner.RunWith; 26 27 @RunWith(DeviceJUnit4ClassRunner.class) 28 public class CVE_2019_2180 extends NonRootSecurityTestCase { 29 30 /** 31 * b/110899492 32 * Vulnerability Behaviour: EXIT_VULNERABLE (113) 33 */ 34 @AsbSecurityTest(cveBugId = 110899492) 35 @Test testPocCVE_2019_2180()36 public void testPocCVE_2019_2180() throws Exception { 37 String binaryName = "CVE-2019-2180"; 38 String inputFiles[] = {"cve_2019_2180_ipp.mp4"}; 39 String arguments = AdbUtils.TMP_PATH + inputFiles[0]; 40 try { 41 AdbUtils.pushResources(inputFiles, AdbUtils.TMP_PATH, getDevice()); 42 AdbUtils.runPocAssertExitStatusNotVulnerable(binaryName, arguments, null, getDevice(), 43 AdbUtils.TIMEOUT_SEC); 44 } finally { 45 AdbUtils.removeResources(inputFiles, AdbUtils.TMP_PATH, getDevice()); 46 } 47 } 48 } 49