1# OpenHarmony 3.1.4 Release 2 3 4## Version Description 5 6OpenHarmony 3.1.4 Release provides enhanced system security over OpenHarmony 3.1.3 Release by rectifying certain known vulnerabilities in open-source components such as Linux kernel. It also provides new SDK versions and resolves previewer issues. 7 8 9## Mapping relationship 10 11 **Table 1** Version mapping of software and tools 12 13| Software/Tool| Version| Remarks| 14| -------- | -------- | -------- | 15| OpenHarmony | 3.1.4 Release| NA | 16| Full SDK | Ohos_sdk_full 3.1.9.7 (API Version 8 Relese) | This toolkit is intended for original equipment manufacturers (OEMs) and contains system APIs that require system permissions.<br>To use the Full SDK, you must manually obtain it from the mirror and switch to it in DevEco Studio. For details, see [Guide to Switching to Full SDK](../application-dev/quick-start/full-sdk-switch-guide.md).| 17| Public SDK | Ohos_sdk_public 3.1.9.7 (API Version 8 Release)| This toolkit is intended for application developers and does not contain system APIs that require system permissions.<br>It is provided as standard in DevEco Studio 3.0 Beta4 or later.| 18| (Optional) HUAWEI DevEco Studio| 3.1 Preview for OpenHarmony| Recommended for developing OpenHarmony applications| 19| (Optional) HUAWEI DevEco Device Tool| 3.0 Release| Recommended for developing OpenHarmony smart devices| 20 21 22## Source Code Acquisition 23 24 25### Prerequisites 26 271. Register your account with Gitee. 28 292. Register an SSH public key for access to Gitee. 30 313. Install the [git client](https://git-scm.com/book/en/v2/Getting-Started-Installing-Git) and [git-lfs](https://gitee.com/vcs-all-in-one/git-lfs?_from=gitee_search#downloading), and configure user information. 32 33 ``` 34 git config --global user.name "yourname" 35 git config --global user.email "your-email-address" 36 git config --global credential.helper store 37 ``` 38 394. Run the following commands to install the **repo** tool: 40 41 ``` 42 curl -s https://gitee.com/oschina/repo/raw/fork_flow/repo-py3 > /usr/local/bin/repo # If you do not have the permission, download the tool to another directory and configure it as an environment variable by running the chmod a+x /usr/local/bin/repo command. 43 pip3 install -i https://repo.huaweicloud.com/repository/pypi/simple requests 44 ``` 45 46 47### Acquiring Source Code Using the repo Tool 48 49**Method 1 (recommended)** 50 51Use the **repo** tool to download the source code over SSH. (You must have an SSH public key for access to Gitee.) 52 53 54``` 55repo init -u git@gitee.com:openharmony/manifest.git -b refs/tags/OpenHarmony-v3.1.4-Release --no-repo-verify 56repo sync -c 57repo forall -c 'git lfs pull' 58``` 59 60**Method 2** 61 62Use the **repo** tool to download the source code over HTTPS. 63 64 65``` 66repo init -u https://gitee.com/openharmony/manifest.git -b refs/tags/OpenHarmony-v3.1.4-Release --no-repo-verify 67repo sync -c 68repo forall -c 'git lfs pull' 69``` 70 71 72### Acquiring Source Code from Mirrors 73 74**Table 2** Mirrors for acquiring source code 75 76| Source Code| Version| Mirror| SHA-256 Checksum| 77| -------- | -------- | -------- | -------- | 78| Full code base (for mini, small, and standard systems)| 3.1.4 Release| [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.4/code-v3.1.4-Release-2022-12-12.tar.gz)| [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.4/code-v3.1.4-Release-2022-12-12.tar.gz.sha256)| 79| Hi3516 standard system solution (binary)| 3.1.4 Release| [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.4/standard_hi3516.tar.gz) | [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.4/standard_hi3516.tar.gz.sha256) | 80| RK3568 standard system solution (binary)| 3.1.4 Release| [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.4/standard_rk3568.tar.gz) | [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.4/standard_rk3568.tar.gz.sha256) | 81| Hi3861 mini system solution (binary)| 3.1.4 Release| [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.4/hispark_pegasus.tar.gz) | [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.4/hispark_pegasus.tar.gz.sha256) | 82| Hi3516 small system solution - LiteOS (binary)| 3.1.4 Release| [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.4/hispark_taurus.tar.gz) | [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.4/hispark_taurus.tar.gz.sha256) | 83| Hi3516 small system solution - Linux (binary)| 3.1.4 Release| [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.4/hispark_taurus_linux.tar.gz) | [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.4/hispark_taurus_linux.tar.gz.sha256) | 84| Full SDK package for the standard system (macOS)| 3.1.9.7 | [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.4/ohos-sdk-mac-full.tar.gz) | [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.4/ohos-sdk-mac-full.tar.gz.sha256) | 85| Full SDK package for the standard system (Windows/Linux)| 3.1.9.7 | [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.4/ohos-sdk-full.tar.gz) | [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.4/ohos-sdk-full.tar.gz.sha256) | 86| Public SDK package for the standard system (macOS)| 3.1.9.7 | [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.4/ohos-sdk-mac-public.tar.gz) | [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.4/ohos-sdk-mac-public.tar.gz.sha256) | 87| Public SDK package for the standard system (Windows/Linux)| 3.1.9.7 | [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.4/ohos-sdk-public.tar.gz) | [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.4/ohos-sdk-public.tar.gz.sha256) | 88 89 90## What's New 91 92This version has the following updates to OpenHarmony 3.1.3 Release. 93 94 95### Feature Updates 96 97This version does not involve feature updates. 98 99### API Updates 100 101This version does not involve API updates. 102 103 104 105### Chip and Development Board Adaptation 106 107For details about the adaptation status, see [SIG_DevBoard](https://gitee.com/openharmony/community/blob/master/sig/sig_devboard/sig_devboard.md). 108 109 110### Resolved Issues 111 112**Table 3** Resolved issues 113 114| Subsystem | Description | 115| --------- | ------------------------------------------------------------ | 116| SDK subsystem| Previewer issues. ([I59433](https://gitee.com/openharmony/arkui_ace_engine/issues/I59433), [I5K6B1](https://gitee.com/openharmony/arkui_ace_engine/issues/I5K6B1), [I5C9XJ](https://gitee.com/openharmony/arkui_ace_engine/issues/I5C9XJ), and [I5AVZT](https://gitee.com/openharmony/arkui_ace_engine/issues/I5AVZT))| 117| Demo application | Applications become inaccessible after you exit **Settings** on a small-system device. ([I5KTI8](https://gitee.com/openharmony/applications_sample_camera/issues/I5KTI8))| 118 119 120 121 122### Fixed Security Vulnerabilities 123 124**Table 4** Fixed security vulnerabilities 125 126| Issue No.| Description| PR Link| 127| -------- | -------- | -------- | 128| I5SD5S | Security vulnerability of the expat component: CVE-2022-40674. | [PR](https://gitee.com/openharmony/third_party_expat/pulls/20) | 129| I5XTS9 | Security vulnerability of the expat component: CVE-2022-43680.| [PR](https://gitee.com/openharmony/third_party_expat/pulls/23) | 130| I5VNM9 | Security vulnerability of the skia component: CVE-2022-27405. | [PR](https://gitee.com/openharmony/third_party_skia/pulls/24) | 131| I5VGM0 | Security vulnerabilities of the kernel_linux_5.10 component: CVE-2022-20421, CVE-2022-42719, CVE-2022-42720, CVE-2022-42721, CVE-2022-42722, CVE-2022-41674, CVE-2022-3535, CVE-2022-3521, CVE-2022-3565, CVE-2022-3594, CVE-2022-3435, CVE-2022-41849, CVE-2022-3524, CVE-2022-3542, and CVE-2022-3534.| [PR](https://gitee.com/openharmony/kernel_linux_5.10/pulls/502) | 132| I5SBWK | Security vulnerabilities of the kernel_linux_5.10 component: CVE-2022-3202 and CVE-2022-40307.| [PR](https://gitee.com/openharmony/kernel_linux_5.10/pulls/463) | 133| I5QBUR | Security vulnerability of the kernel_linux_5.10 component: CVE-2022-1184. | [PR](https://gitee.com/openharmony/kernel_linux_5.10/pulls/474) | 134| I5WSJ5 | Security vulnerabilities of the chromium component: CVE-2022-3199, CVE-2022-3046, CVE-2022-3041, CVE-2022-3040, CVE-2022-3039, CVE-2022-3038, CVE-2022-3057, CVE-2022-3195, CVE-2022-3054, and CVE-2022-3075. The webview HAP file is updated.| [PR](https://gitee.com/openharmony/web_webview/pulls/349) | 135| I5UF8Z | MAC addresses are leaked in **dhd_linux.c** on the standard system.| [PR](https://gitee.com/openharmony/kernel_linux_patches/pulls/315) | 136| I5VISW | MAC addresses are displayed in plaintext in Bluetooth logs on the standard system. | [PR](https://gitee.com/openharmony/communication_bluetooth/pulls/626) | 137| I5WJU0 | Device UDIDs are displayed in distributed networking logs of the standard system. | [PR](https://gitee.com/openharmony/security_access_token/pulls/761) | 138