MozillaWiki

Security/Reviews/Gaia/Music

< Security‎ | Reviews‎ | Gaia
Revision as of 17:01, 20 November 2015 by Yyang (talk | contribs) (→‎Overview)

App Review Details

Overview

Music is the music player application. It plays music stored on the SD card and also allows to share music via NFC and Bluetooth.

The app keeps a database containing references to audio files and meta data. It uses musicdb to access the files and has code to parse FLAC/ID3/Ogg/MP4 meta data like song title, artist, album, etc. It can also extract the album art from a file.

Architecture

Components

Relevant Source Code

Permissions

Web Activity Handlers

Web Activity Usage

Notable Event Handlers

Code Review Notes

1. XSS & HTML Injection attacks

2. Secure Communications

3. Secure data storage

4. Denial of Service

5. Use of Privileged APIs

6. Interfaces with other Apps/Content

Security Risks & Mitigating Controls

Actions & Recommendations

Previous Review

Security/Reviews/Gaia/Music_2013-02

Retrieved from "https://wiki.allizom.org/index.php?title=Security/Reviews/Gaia/Music&oldid=1106555"