HarmonyOS
HarmonyOS July 2021 security patch details for smartphones released
With the unveiling of HarmonyOS 2.0, Huawei’s self-developed and later open-source operating system, Huawei has entered a new era of the software ecosystem. Since then, this brand new OS started making its way to smartphone devices.
Currently, the HarmonyOS 2.0 software update rollout is limited to the Chinese market. However, Huawei also plans for the global models, which the company is delaying for the moment.
Now, HarmonyOS 2.0 installed devices are officially available in the market and Huawei will continue to send new software updates to improve the overall software experience on the device respectively.
But what about the regular security patches? Well, Huawei has built a separate security bulletin and security patch program for the HarmonyOS 2 devices with its own security bulletins just like Android.
Under the security bulletin, Huawei described the latest vulnerabilities found in the HarmonyOS 2 operating system for smartphone devices. These then are fixed by security patches.
Under the latest development, this update describes the security vulnerabilities that have been fixed by security patch level 2021-07-01. The security vulnerabilities may affect Huawei mobile phones and tablets that run HarmonyOS.
If the security patch level of your Huawei mobile phone or tablet is 2021-07-01 or later, all issues described in this update and the HarmonyOS Security Patch Update Notice – July 2021 have been resolved. For details about how to check the security patch level and update the HarmonyOS version.
July 2021 HarmonyOS 2 security patch in detail:
The July 2021 security patch that fixes 43 CVEs in the Kernel, 6 CVEs in the framework, 6 CVEs in the system, 5 CVEs in apps, and 65 CVEs third-party libraries for improved system security.
The following are the CVE announced in July 2021 security update HarmonyOS security bulletin.
Framework:
CVE-2021-22376, CVE-2021-22451, CVE-2021-22457, CVE-2021-22459, CVE-2021-22460, CVE-2021-22470
Kernel:
CVE-2021-22450, CVE-2021-22456, CVE-2021-22465, CVE-2020-24586, CVE-2020-24587, CVE-2020-24588, CVE-2020-26139, CVE-2020-26140, CVE-2020-26141, CVE-2020-26142, CVE-2020-26143, CVE-2020-26144, CVE-2020-26145, CVE-2020-26146, CVE-2020-26147, CVE-2020-26555, CVE-2020-26558, CVE-2021-22380, CVE-2021-22386, CVE-2021-22392, CVE-2021-22429, CVE-2021-22432, CVE-2021-22442, CVE-2021-22443, CVE-2021-22444, CVE-2021-22445, CVE-2021-22446, CVE-2021-22384, CVE-2021-22426, CVE-2021-22430, CVE-2021-22431, CVE-2021-22433, CVE-2021-22434, CVE-2021-22438, CVE-2021-22447, CVE-2021-22326, CVE-2021-22452, CVE-2021-22455, CVE-2021-22462, CVE-2021-22463, CVE-2021-22466, CVE-2021-22468, CVE-2021-22469
System:
CVE-2021-22367, CVE-2021-22370, CVE-2021-22376, CVE-2021-22454, CVE-2021-22458, CVE-2021-22467
Apps:
CVE-2021-22435, CVE-2021-22453, CVE-2021-22461, CVE-2021-22464, CVE-2021-22471
Third-Party library:
CVE-2020-0267, CVE-2020-26558, CVE-2021-0507, CVE-2021-0516, CVE-2020-11267, CVE-2020-11292, CVE-2020-14305, CVE-2020-26555, CVE-2020-27059, CVE-2021-0304, CVE-2021-0446, CVE-2021-0478, CVE-2021-0505, CVE-2021-0506, CVE-2021-0508, CVE-2021-0509, CVE-2021-0510, CVE-2021-0511, CVE-2021-0512, CVE-2021-0517, CVE-2021-0520, CVE-2021-0521, CVE-2021-0522, CVE-2021-0523, CVE-2021-1905, CVE-2019-9358, CVE-2020-0009, CVE-2020-0298, CVE-2020-0299, CVE-2020-0359, CVE-2020-0473, CVE-2020-0478, CVE-2020-1971, CVE-2020-27046, CVE-2020-27054, CVE-2021-0534, CVE-2021-0536, CVE-2021-0537, CVE-2021-0538, CVE-2021-0539, CVE-2021-0541, CVE-2021-0542, CVE-2021-0544, CVE-2021-0545, CVE-2021-0546, CVE-2021-0547, CVE-2021-0548, CVE-2021-0549, CVE-2021-0553, CVE-2021-0554, CVE-2021-0555, CVE-2021-0556, CVE-2021-0557, CVE-2021-0558, CVE-2021-0559, CVE-2021-0561, CVE-2021-0562, CVE-2021-0564, CVE-2021-0567, CVE-2021-0570, CVE-2021-0572, CVE-2021-0605, CVE-2021-0606, CVE-2021-1906