Merge pull request #474 from shikoko/ANDROID-618

ANDROID-618 SQL Injection Vulnerability
Alfresco · Jun 6, 2018 · 6019025 · 6019025
2 parents 2483058 + cb9cca6
commit 6019025
Show file tree

Hide file tree

Showing 4 changed files with 7 additions and 3 deletions.
diff --git a/alfresco-mobile-android/build.gradle b/alfresco-mobile-android/build.gradle
@@ -27,7 +27,7 @@ android {
 
         minSdkVersion 19
         targetSdkVersion 23
-        versionCode 81
+        versionCode 82
 
         versionName VERSION_NAME
 

diff --git a/...o-mobile-android/src/main/java/org/alfresco/mobile/android/application/VersionNumber.java b/...o-mobile-android/src/main/java/org/alfresco/mobile/android/application/VersionNumber.java
@@ -76,5 +76,8 @@ public interface VersionNumber
     /** Release 24 April 2018. */
     int VERSION_1_8_1 = 81;
 
-    int LATEST_VERSION = VERSION_1_8_1;
+    /** Release 5 June 2018 */
+    int VERSION_1_8_2 = 82;
+
+    int LATEST_VERSION = VERSION_1_8_2;
 }
diff --git a/gradle.properties b/gradle.properties
@@ -39,7 +39,7 @@
 ## DEFAULT BUILD VARIANT
 ####################################################################
 # Current Version number of the application
-VERSION_NAME=1.8.1
+VERSION_NAME=1.8.2
 
 # Build Number of the application
 # Overrides by Continuous Integration System during build

diff --git a/platform/foundation/src/main/java/org/alfresco/mobile/android/sync/SyncContentProvider.java b/platform/foundation/src/main/java/org/alfresco/mobile/android/sync/SyncContentProvider.java
@@ -132,6 +132,7 @@ public Cursor query(Uri uri, String[] projection, String selection, String[] sel
         // Check if the caller has requested a column which does not exists
         checkColumns(projection);
 
+        queryBuilder.setStrict(true);
         queryBuilder.setTables(SyncContentSchema.TABLENAME);
 
         int uriType = URI_MATCHER.match(uri);