OpenHarmony 4.1.2 Release provides enhanced system security over OpenHarmony 4.1.1 Release by rectifying certain known vulnerabilities in open-source components such as Linux kernel, and system stability issues.
Table 1 Version mapping of software and tools
| Software/Tool | Version | Remarks |
|---|---|---|
| OpenHarmony | 4.1.2 Release | NA |
| Public SDK | Ohos_sdk_public 4.1.8.5 (API Version 11 Release) | This toolkit is intended for application developers and does not contain system APIs that require system permissions. |
| (Optional) HUAWEI DevEco Studio | 4.1 Release | Recommended for developing OpenHarmony applications How to obtain: SHA-256 checksum: c46be4f3cfde27af1806cfc9860d9c366e66a20e31e15180cf3a90ab05464650 SHA-256 checksum: 15d6136959b715e4bb2160c41d405b889820ea26ceadbb416509a43e59ed7f09 SHA-256 checksum: ac04ca7c2344ec8f27531d5a59261ff037deed2c5a3d42ef88e6f90f4ed45484 |
| (Optional) HUAWEI DevEco Device Tool | 4.0 Release | Recommended for developing OpenHarmony smart devices Click here. |
-
Register your account with Gitee.
-
Register an SSH public key for access to Gitee.
-
Install the git client and git-lfs, and configure user information.
git config --global user.name "yourname" git config --global user.email "your-email-address" git config --global credential.helper store -
Run the following commands to install the repo tool:
curl -s https://gitee.com/oschina/repo/raw/fork_flow/repo-py3 > /usr/local/bin/repo # If you do not have the permission, download the tool to another directory and configure it as an environment variable by running the chmod a+x /usr/local/bin/repo command. pip3 install -i https://repo.huaweicloud.com/repository/pypi/simple requests
Method 1 (recommended)
Use the repo tool to download the source code over SSH. (You must have an SSH public key for access to Gitee.)
Obtain the source code from the version tag, which is the same as that released with the version.
repo init -u git@gitee.com:openharmony/manifest.git -b refs/tags/OpenHarmony-v4.1.2-Release --no-repo-verify
repo sync -c
repo forall -c 'git lfs pull'
Method 2
Use the repo tool to download the source code over HTTPS.
Obtain the source code from the version tag, which is the same as that released with the version.
repo init -u https://gitee.com/openharmony/manifest -b refs/tags/OpenHarmony-v4.1.2-Release --no-repo-verify
repo sync -c
repo forall -c 'git lfs pull'
Table 2 Mirrors for acquiring source code
| Source Code | Version | Mirror | SHA-256 Checksum | Software Package Size |
|---|---|---|---|---|
| Full code base (for mini, small, and standard systems) | 4.1.2 Release | Download | Download | 34.5 GB |
| Hi3861 solution (binary) | 4.1.2 Release | Download | Download | 27.0 MB |
| Hi3516 solution-LiteOS (binary) | 4.1.2Release | Download | Download | 320.1 MB |
| Hi3516 solution-Linux (binary) | 4.1.2 Release | Download | Download | 217.4 MB |
| RK3568 standard system solution (binary) | 4.1.2 Release | Download | Download | 8.4 GB |
| Public SDK package for the standard system (macOS) | 4.1.8.5 | Download | Download | 913.3 MB |
| Public SDK package for the standard system (macOS-M1) | 4.1.8.5 | Download | Download | 884.0 MB |
| Public SDK package for the standard system (Windows/Linux) | 4.1.8.5 | Download | Download | 2.2 GB |
N/A
Table 3 Resolved issues
| Issue No. | Issue Description |
|---|---|
| IB7R74 | [RK3568] When inserting an image from Gallery into the Notepad application, selecting the second image results in the first image being inserted. |
| IB7KDL | [RK3568] After canceling the lock screen password, relocking and unlocking still requires a password input, and the previously used password is ineffective. |
| IB7KDI | [RK3568] On the mixed password unlock screen, the first character entered is not fully displayed. |
| IB7KGX | [RK3568] After a normal firmware update, the home screen icon layout becomes disordered. |
| IB8YCY | [RK3568] The ACTS suite ActsNetManagerHttpEtsTest fails to be executed. |
| IAPYJN | [Small-system LiteOS] After a video in Gallery finishes playing, clicking to replay results in a blue screen. |
| IB21XU | [RK3568] The HATS suites HatsHdfAudioIdlRenderAdditionalTest and HatsHdfAudioIdlCaptureAdditionalTest fail to be executed. |
| IB68WS | [RK3568] The ACTS suite ActsAceWebEnhancedTestTwo has one failed test case. |
| I90N04 | [RK3568] Under Settings > System > Factory reset, upon entering the factory reset page, the text on the screen is disordered and there is no reset button. |
| IAX7SV | [RK3568] The ACTS suite ActsAceWebEnhancedTestTwo has one failed test case. |
| I9PQ6I | [RK3568] A static widget becomes transparent a few seconds after it is added. |
| IATPGW | [RK3568] The ACTS suite ActsRequestAuthorityTest has six failed test cases. |
| I9NDZE | [RK3568] After restarting the phone, upgrading an application, or switching accounts, services that were previously running cannot be automatically restarted. |
| I9SI9E | [RK3568] The overscroll function fails. |
| I9PQFE | [RK3568] After the decoration bar is configured, clicking the split-screen button and then clicking the snapshot to be split-screened does not result in a split-screen. |
| IANK0I | [RK3568] Failed to add a service widget to the home screen. |
| I90GOK | [RK3568] A blank page exists on the home screen. After a user creates a folder and touches the plus sign (+) to add a home screen application to the folder, the blank page disappears. |
| I9SMPC | [RK3568] Enabling color inversion in accessibility settings does not take effect on the home screen and Settings screen. |
| I9RMYL | [RK3568] Clicking a WantAgent notification does not launch another application. |
| I9RZLH | [Small-system LiteOS] After a video in Gallery finishes playing, clicking to replay results in a blue screen. |
| IAHYNM | [RK3568] When users manually select and attempt to delete images from various date categories on the photo page, deletion is only successful for images from the earliest selected date category. |
| I97G7Y | [RK3568] In the media provider, the previous and next operations only switch the song images without changing the text, which remains as the first music. The media controller fails to obtain music information from the media provider. |
| I9OF7E | [RK3568] After a successful or failed upgrade installation, restarting the device does not show any notification in the notification panel. |
| I9CX99 | [RK3568] Some VM interfaces have deteriorated performance when compared with OpenHarmony 4.0. |
| I98KLY | [RK3568] There is an issue with abilityComponent; it should not follow the window pattern's OnAttachToFrameNode. |
| I966DO | [RK3568] System services fail fuzz testing. |
| I9JX99 | [RK3568] In a scenario where Tabs sub-tabs and custom tabs are mixed, the second sub-tab does not display the selected state for the tab text. |
| IAEQQV | [RK3568] A dialog box is displayed indicating that the file cannot be opened after Wi-Fi is connected. |
| I9TEVB | [RK3568] When verifying the capability of restoring the default screen brightness through window settings, clicking the "Default brightness" button results in no change in brightness. |
| I9R4Y1 | [RK3568] When the mouse is connected and the screen is switched to landscape mode, the mouse movement direction and click position are inconsistent with the cursor position. |
| IA9ONV | [RK3568] After the Back key is pressed to exit the application, the task widget on the multi-task screen does not show the last running UI screenshot. |
| I9UKQ3 | [RK3568] In the distributed relational database, clicking to connect a device results in an empty device list. |
| I9UKNG | [RK3568] [sample] [Browser] The Browser home page lacks a new button. |
| I8TS8U | [RK3568] Container testing is blocked. |
| I9TJ5N | [RK3568] There is a possibility that the volume bar disappears and the physical buttons do not work. |
| I90FTY | [RK3568] When renaming a folder on the home screen, the input name is not fully displayed. |
| I9OETO | [RK3568] The "install later" and countdown buttons display a white screen without text. |
| IAF5SS | [RK3568] When a user enables or disables a user certificate in a dialog box, the dialog box is moved to the right, exceeding the screen. |
| I9GLKF | [RK3568] [Sample] During a phone call, detailed information about the call status does not contain the phone number. |
| I9OZC2 | [RK3568] When the mouse cursor style is set to 41 (corresponding to pointer.PointerStyle.CURSOR_CIRCLE), the mouse cursor becomes invisible. |
| IA5EDU | [RK3568] The XTS test suite ActsNativeAVScreenCaptureTest fails to execute in version 4.1. |
| I9UKT8 | [RK3568] The version compatibility test suite DctsDmsHapTest has failed test cases. |
| I9VJLA | [RK3568] The system fails to read recorded internal resources. |
| I9F8M0 | [RK3568] In CertificateFramework, a maximum of 100 characters can be entered in the text box. However, the generated data can exceed this limit (for example, 592/100), which is not user-friendly. |
| I9PK5K | [RK3568] Double-clicking the curve chart in the test report causes the SP application to crash. |
| I93ONW | [RK3568] The resolution in the image names dumped by rkusb camera does not match the actual resolution. |
| I9SSRV | [RK3568] The UT test runtime_core_host_unittest has failed items. |
| I9PIQK | [RK3568] When the indentation of the text in a memo is adjusted, saved, and the application is closed, the text appears without indentation upon reopening. |
| I9QC3M | [RK3568] There are defects in the ACTS test suite. |
| I9R5MJ | [RK3568] After the verifyAbc interface is called to place an invalid .abc file, the abc file remains in the installation directory. |
| I934K9 | [RK3568]The assertPromiseIs assertion function behaves abnormally. |
| I9PPPN | [RK3568] After log flushing is enabled and the device is restarted, the log "SystemWaitParameter failed!" is printed. |
| I9Q6OD | [RK3568] There is a possibility that the test suite in OpenHarmony 4.1 Release fails. |
| I9NCRP | [RK3568] The output of the ./hdf_dbg -q -1 command is abnormal. |
| I9OWYO | [RK3568] Some test cases in the security components fail. |
Table 4 Fixed security vulnerabilities
| Issue No. | Issue Description |
|---|---|
| IB3TKK | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-5290 in the wpa supplicant component |
| IB8L9Y | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-50150 |
| IB8LVR | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-50228 in the Linux kernel component |
| IB8MCA | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-50262 in the Linux kernel component |
| IB8MEM | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-50301 in the Linux kernel component |
| IB8NDV | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-8636 in the skia component |
| IB8ND4 | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-43091 in the skia component |
| IB5RJE | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-49883 in the Linux kernel component |
| IB3RXG | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2023-33953 |
| IB2ZTU | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-50067 |
| IAX809 | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-41049 |
| IAQ16Y | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-44987 |
| IAQ15E | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-43882 |
| I9TCEB | [Vulnerability] [OpenHarmony-4.1-Release] Issues related to compiler security options in kosample.origin.ko |
| I9UV4W | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2023-4807 |
| I9UVFZ | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2023-45853 |
| I9UV9E | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2023-5363 |
| I9UUVH | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-23775 |
| IAI3T3 | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2023-52672 |
| IAI3TF | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-42160 |
| IAI3VC | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-41087 |
| IAI3VS | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-41012 |
| IAI3XX | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-42154 |
| IAI3YK | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-42161 |
| IAI3SI | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-36031 |
| IAEK1E | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-39495 |
| IA4KT2 | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-36894 |
| IAAC05 | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-38577 |
| IAABZK | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-38588 |
| IABPB5 | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-36971 |
| I9TCOO | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-27043 in the Linux kernel component |
| I9TCEJ | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-26934 |
| I9TC6R | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2021-47474 |
| IA47RU | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-36904 |
| IA4BS6 | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-36899 |
| I9UZ0X | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2021-46996 in the Linux kernel component |
| I9UYU0 | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2019-25162 in the Linux kernel component |
| I9TCDG | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2021-47479 |
| I9TCCK | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2021-47521 |
| I9TCBF | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2021-47506 |
| I9TCAI | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2021-47485 |
| I9TC9M | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2021-47483 |
| I9O1FB | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-31578 |
| I9OU4B | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-26883 |
| I9OU4O | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-26885 |
| I9OU3Z | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-26884 |
| I9OU3I | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2022-48655 |
| I9IVLW | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-2398 |
Table 5 Known issues
| Issue No. | Issue Description | Impact | To Be Resolved By |
|---|---|---|---|
| / | / | / | / |