Vulnerability Description: The method does not always return the actual package name of the calling application, which may lead to security issues. Fix: Use the method to obtain the correct calling package name. Related File: Commit Information: - Commit ID: cc1b1b5e493affcb1ef9c3543b10c89141f245c4 - Author: Rubin Xu - Committer: Android Build Coastguard Worker - Commit Time: Wed May 21 15:34:51 2025 +0100 - Merge Time: Fri Jul 11 12:16:38 2025 -0700 Associated Bug: 389681530 Test Method: Manual testing Label: EXEMPT bugfix Cherry-pick Source: - commit 70bd3efe0674bccb0d454845d86fb2402779a7bf - https://golang.org/x/android-review.googlesource.com/c/commit/j7343b33d617a0bdc288030c24a39d8d7a3eb689 Merged Into: Idbdc45e53f4aa46fae79fa234705b3735bfdad4cd Change-ID: Idbdc45e53f4aa46fae79fa234705b3735bfdad4cd