1# OpenHarmony 3.1.7 Release 2 3 4## Version Description 5 6OpenHarmony 3.1.7 Release provides enhanced system security over OpenHarmony 3.1.6 Release by rectifying memory leak issues, certain known vulnerabilities in open-source components such as Linux kernel, and system stability issues. The matching SDK version is also updated. 7 8## Version Mapping 9 10**Table 1** Version mapping of software and tools 11 12| Software/Tool | Version | Remarks | 13| ------------------------------------------------ | ------------------------------------------------------------ | ------------------------------------------------------------ | 14| OpenHarmony | 3.1.7 Release | NA | 15| Full SDK | Ohos_sdk_full 3.1.13.6 (API Version 8 Release) | This toolkit is intended for original equipment manufacturers (OEMs) and contains system APIs that require system permissions.<br>To use the full SDK, manually obtain it from the mirror and switch to it in DevEco Studio. For details, see [Guide to Switching to Full SDK](../application-dev/faqs/full-sdk-switch-guide.md).| 16| Public SDK | Ohos_sdk_public 3.1.13.6 (API Version 8 Release) | This toolkit is intended for application developers and does not contain system APIs that require system permissions.<br>It is provided as standard in DevEco Studio 3.0 Beta4 or later.| 17| (Optional) HUAWEI DevEco Studio | 3.1 Preview for OpenHarmony | Recommended for developing OpenHarmony applications | 18| (Optional) HUAWEI DevEco Device Tool| 3.0 Release | Recommended for developing OpenHarmony smart devices | 19 20 21## Source Code Acquisition 22 23 24### Prerequisites 25 261. Register your account with Gitee. 27 282. Register an SSH public key for access to Gitee. 29 303. Install the [git client](https://git-scm.com/book/en/v2/Getting-Started-Installing-Git) and [git-lfs](https://gitee.com/vcs-all-in-one/git-lfs?_from=gitee_search#downloading), and configure user information. 31 32 ``` 33 git config --global user.name "yourname" 34 git config --global user.email "your-email-address" 35 git config --global credential.helper store 36 ``` 37 384. Run the following commands to install the **repo** tool: 39 40 ``` 41 curl -s https://gitee.com/oschina/repo/raw/fork_flow/repo-py3 > /usr/local/bin/repo # If you do not have the permission, download the tool to another directory and configure it as an environment variable by running the chmod a+x /usr/local/bin/repo command. 42 pip3 install -i https://repo.huaweicloud.com/repository/pypi/simple requests 43 ``` 44 45 46### Acquiring Source Code Using the repo Tool 47 48**Method 1 (recommended)** 49 50Use the **repo** tool to download the source code over SSH. (You must have an SSH public key for access to Gitee.) 51 52 53``` 54repo init -u git@gitee.com:openharmony/manifest.git -b refs/tags/OpenHarmony-v3.1.7-Release --no-repo-verify 55repo sync -c 56repo forall -c 'git lfs pull' 57``` 58 59**Method 2** 60 61Use the **repo** tool to download the source code over HTTPS. 62 63 64``` 65repo init -u https://gitee.com/openharmony/manifest.git -b refs/tags/OpenHarmony-v3.1.7-Release --no-repo-verify 66repo sync -c 67repo forall -c 'git lfs pull' 68``` 69 70 71### Acquiring Source Code from Mirrors 72 73**Table 2** Mirrors for acquiring source code 74 75| Source Code | Version | Mirror | SHA-256 Checksum | 76| ------------------------------------------ | ------------------ | ------------------------------------------------------------ | ------------------------------------------------------------ | 77| Full code base (for mini, small, and standard systems) | 3.1.7 Release | [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.7/code-v3.1.7-Release.tar.gz) | [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.7/code-v3.1.7-Release.tar.gz.sha256) | 78| Hi3516 standard system solution (binary) | 3.1.7 Release | [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.7/standard_hi3516.tar.gz) | [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.7/standard_hi3516.tar.gz.sha256) | 79| RK3568 standard system solution (binary) | 3.1.7 Release | [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.7/standard_rk3568.tar.gz) | [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.7/standard_rk3568.tar.gz.sha256) | 80| Hi3861 mini system solution (binary) | 3.1.7 Release | [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.7/hispark_pegasus.tar.gz) | [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.7/hispark_pegasus.tar.gz.sha256) | 81| Hi3516 small system solution - LiteOS (binary) | 3.1.7 Release | [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.7/hispark_taurus.tar.gz) | [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.7/hispark_taurus.tar.gz.sha256) | 82| Hi3516 small system solution - Linux (binary) | 3.1.7 Release | [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.7/hispark_taurus_linux.tar.gz) | [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.7/hispark_taurus_linux.tar.gz.sha256) | 83| Full SDK package for the standard system (macOS) | 3.1.13.6 | [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.7/ohos-sdk-mac-full-3.1.13.6.tar.gz) | [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.7/ohos-sdk-mac-full-3.1.13.6.tar.gz.sha256) | 84| Full SDK package for the standard system (Windows/Linux) | 3.1.13.6 | [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.7/ohos-sdk-full-3.1.13.6.tar.gz) | [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.7/ohos-sdk-full-3.1.13.6.tar.gz.sha256) | 85| Public SDK package for the standard system (macOS) | 3.1.13.6 | [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.7/ohos-sdk-mac-public-3.1.13.6.tar.gz) | [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.7/ohos-sdk-mac-public-3.1.13.6.tar.gz.sha256) | 86| Public SDK package for the standard system (Windows/Linux)| 3.1.13.6 | [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.7/ohos-sdk-public-3.1.13.6.tar.gz) | [Download](https://mirrors.huaweicloud.com/openharmony/os/3.1.7/ohos-sdk-public-3.1.13.6.tar.gz.sha256) | 87 88 89## What's New 90 91This version has the following updates to OpenHarmony 3.1.7 Release. 92 93 94### Feature Update 95 96This version does not involve feature updates. 97 98### Change APIs 99 100This version does not involve API updates. 101 102### Chip and Development Board Adaptation 103 104For details about the adaptation status, see [SIG_DevBoard](https://gitee.com/openharmony/community/blob/master/sig/sig_devboard/sig_devboard.md). 105 106 107### Resolved Issues 108 109**Table 3** Resolved issues 110 111| Subsystem | Description | 112| ------------ | ------------------------------------------------------------ | 113| Application subsystem | When a user accesses **Contacts**, the default page **No contacts** flashes and the contact list is displayed. ([I5ET9R](https://gitee.com/openharmony/applications_contacts/issues/I5ET9R))<br>A widget is created and pushed to the RK3568 development board. It is then added to the home screen. When a user holds the widget on the home screen, the page showing **Service widget** and **Remove** is displayed, and the application is opened. ([I5YB1O](https://gitee.com/openharmony/applications_hap/issues/I5YB1O))<br>A cpp crash issue is detected using the tool. ([I65H83](https://gitee.com/openharmony/applications_permission_manager/issues/I65H83)).<br>A cpp crash issue is detected using the tool. ([I65TVW](https://gitee.com/openharmony/applications_permission_manager/issues/I65TVW)).<br>Memory leakage occurs when a user repeatedly clicks **Recent** on **Launcher**. ([I67SRG](https://gitee.com/openharmony/xts_acts/issues/I67SRG))| 114| Multimedia subsystem | There is a high probability that the home screen crashes when a user opens **Gallery**, touches the **Albums** tab, and then touches **Camera**. ([I5QUSZ](https://gitee.com/openharmony/applications_hap/issues/I5QUSZ))<br>A cpp crash issue is detected using the tool. ([I65GZ1](https://gitee.com/openharmony/multimedia_medialibrary_standard/issues/I65GZ1))| 115| Globalization subsystem| A cpp crash issue is detected using the tool. ([I65GR8](https://gitee.com/openharmony/global_resmgr_standard/issues/I65GR8))| 116| Accessibility subsystem| The test report of an injection attack test shows that the **ohos.accessibility.IAccessibleAbilityManagerServiceClient** API has an injection exception. ([I65PHE](https://gitee.com/openharmony/accessibility/issues/I65PHE))| 117| ArkUI development framework | The image effect function is invalid. ([I65UID](https://gitee.com/openharmony/arkui_ace_engine/issues/I65UID))<br>Adaptation to the multi-resource build package is required for mini-, small- and stardard-system devices. ([I78S6M](https://gitee.com/openharmony/developtools_ace_js2bundle/issues/I78S6M))| 118| Ability framework| After two windows are paired in split-screen mode, if one window is closed, the other window is also closed. ([I6AF0Y](https://gitee.com/openharmony/ability_ability_runtime/issues/I6AF0Y))| 119| DFX subsystem | **libhilog.z.so** crashes in **ohos.samples.distributedmusicplayer**. ([I6DCSL](https://gitee.com/openharmony/hiviewdfx_hilog/issues/I6DCSL))| 120 121 122### Fixed Security Vulnerabilities 123 124**Table 4** Fixed security vulnerabilities 125 126| Issue No. | Description | PR Link | 127| ------ | ------------------------------------------------------------ | ------------------------------------------------------------ | 128| I67XCL | Security vulnerability of the kernel_linux_5.10 component: CVE-2022-3640. | [PR](https://gitee.com/openharmony/kernel_linux_5.10/pulls/659) | 129| I6A56Q | Security vulnerability of the kernel_linux_5.10 component: CVE-2023-20928 | [PR](https://gitee.com/openharmony/kernel_linux_5.10/pulls/653) | 130| I6B0K7 | Security vulnerability of the kernel_linux_5.10 component: CVE-2022-4696 | [PR](https://gitee.com/openharmony/kernel_linux_5.10/pulls/663) | 131| I6BNVW | Security vulnerabilities of the mbedtls component: CVE-2021-44732 and CVE-2021-45450 | [PR](https://gitee.com/openharmony/third_party_mbedtls/pulls/78) | 132| I6BTZM | Security vulnerability of the flutter component: CVE-2022-37434 | [PR](https://gitee.com/openharmony/third_party_flutter/pulls/247) | 133| I6BXT0 | Security vulnerabilities of the kernel_linux_5.10 component: CVE-2023-23559, CVE-2023-0179, CVE-2023-23454, and CVE-2023-23455| [PR](https://gitee.com/openharmony/kernel_linux_5.10/pulls/661) | 134| I6DQAH | Security vulnerabilities of the kernel_linux_5.10 component: CVE-2023-0590 and CVE-2022-3707| [PR](https://gitee.com/openharmony/kernel_linux_5.10/pulls/687) | 135| I6DTV8 | Security vulnerability of the libexif component: CVE-2019-9278 | [PR](https://github.com/libexif/libexif/commit/75aa73267fdb1e0ebfbc00369e7312bac43d0566) | 136| I6E5KA | Security vulnerability of the openssl component: CVE-2023-0286 | [PR](https://gitee.com/openharmony/third_party_openssl/pulls/83) | 137| I6FFUV | Security vulnerabilities of the kernel_linux_5.10 component: CVE-2023-20938, CVE-2023-0045, and CVE-2023-0615| [PR](https://gitee.com/openharmony/kernel_linux_5.10/pulls/696) | 138| I6FZ3A | Security vulnerability of the cares component: CVE-2022-4904 | [PR](https://gitee.com/openharmony/third_party_cares/pulls/12) | 139| I6HYRO | Security vulnerability of the kernel_linux_4.19 component: CVE-2022-3028 | [PR](https://gitee.com/openharmony/kernel_linux_4.19/pulls/98) | 140| I6JH1I | Security vulnerabilities of the kernel_linux_5.10 component: CVE-2023-0461, CVE-2023-23004, CVE-2023-23000, CVE-2023-1078, CVE-2023-1076, CVE-2023-1118, CVE-2023-22995, and CVE-2023-26545| [PR](https://gitee.com/openharmony/kernel_linux_5.10/pulls/725) | 141| I6JH1L | Security vulnerabilities of the kernel_linux_4.19 component: CVE-2023-0461, CVE-2023-26545, CVE-2022-0480, CVE-2023-1118, CVE-2022-1652, and CVE-2021-3760| [PR](https://gitee.com/openharmony/kernel_linux_4.19/pulls/107) | 142| I6JH2L | Security vulnerabilities of the kernel_linux_4.19 component: CVE-2023-23559, CVE-2022-47929, CVE-2022-2873, and CVE-2023-23455| [PR](https://gitee.com/openharmony/kernel_linux_4.19/pulls/103) | 143| I6LCHO | Security vulnerability of the kernel_linux_4.19 component: CVE-2023-0030 | [PR](https://gitee.com/openharmony/kernel_linux_4.19/pulls/111) | 144 145## Known Issues 146 147**Table 5** Known issues 148 149| Issue No. | Description | Impact | To Be Resolved By| 150| ------------------------------------------------------------ | -------------------------------------- | -------------- | ------------ | 151| [I6HAUC](https://gitee.com/openharmony/xts_acts/issues/I6HAUC) | [3.1] When the Windows API is called, the mouse is distorted in landscape/portrait mode.| Developer experience is affected.| 2023-04-28 | 152