• Home
  • Line#
  • Scopes#
  • Navigate#
  • Raw
  • Download
1# OpenHarmony 4.1.3 Release
2
3
4## Version Overview
5
6OpenHarmony 4.1.3 Release provides enhanced system security over OpenHarmony 4.1.2 Release by rectifying certain known vulnerabilities in open-source components such as Linux kernel, and system stability issues.
7
8## Mapping Relationship
9
10**Table 1** Version mapping of software and tools
11
12| Software/Tool| Version| Remarks|
13| -------- | -------- | -------- |
14| OpenHarmony | 4.1.3 Release | NA |
15| Public SDK | Ohos_sdk_public 4.1.9.4 (API Version 11 Release) | This toolkit is intended for application developers and does not contain system APIs that require system permissions.|
16| (Optional) HUAWEI DevEco Studio| 4.1 Release | Recommended for developing OpenHarmony applications. How to obtain:<br><br>SHA-256 checksum: c46be4f3cfde27af1806cfc9860d9c366e66a20e31e15180cf3a90ab05464650<br><br>SHA-256 checksum: 15d6136959b715e4bb2160c41d405b889820ea26ceadbb416509a43e59ed7f09<br><br>SHA-256 checksum: ac04ca7c2344ec8f27531d5a59261ff037deed2c5a3d42ef88e6f90f4ed45484 |
17| (Optional) HUAWEI DevEco Device Tool| 4.0 Release | Recommended for developing OpenHarmony smart devices<br>[Click here](https://device.harmonyos.com/cn/develop/ide#download). |
18
19
20## Source Code Acquisition
21
22
23### Prerequisites
24
251. Register your account with Gitee.
26
272. Register an SSH public key for access to Gitee.
28
293. Install the [git client](https://git-scm.com/book/en/v2/Getting-Started-Installing-Git) and [git-lfs](https://gitee.com/vcs-all-in-one/git-lfs?_from=gitee_search#downloading), and configure user information.
30   ```
31   git config --global user.name "yourname"
32   git config --global user.email "your-email-address"
33   git config --global credential.helper store
34   ```
35
364. Install the **repo** tool.
37   ```
38   curl -s https://gitee.com/oschina/repo/raw/fork_flow/repo-py3 > /usr/local/bin/repo  # If you do not have the permission, download the tool to another directory and add that directory to environment variables. chmod a+x /usr/local/bin/repo
39   pip3 install -i https://repo.huaweicloud.com/repository/pypi/simple requests
40   ```
41
42
43### Acquiring Source Code Using the repo Tool
44
45**Method 1: Using SSH (Recommended)**
46
47This method requires an SSH public key for access to Gitee.
48
49
50Obtain the source code from the specified version tag, which is the same as that released with the version.
51```
52repo init -u git@gitee.com:openharmony/manifest.git -b refs/tags/OpenHarmony-v4.1.3-Release --no-repo-verify
53repo sync -c
54repo forall -c 'git lfs pull'
55```
56
57**Method 2**
58
59Use the **repo** tool to download the source code over HTTPS.
60
61Obtain the source code from the specified version tag, which is the same as that released with the version.
62```
63repo init -u https://gitee.com/openharmony/manifest -b refs/tags/OpenHarmony-v4.1.3-Release --no-repo-verify
64repo sync -c
65repo forall -c 'git lfs pull'
66```
67
68
69### Acquiring Source Code from Mirrors
70
71
72**Table 2** Mirrors for acquiring source code
73
74| Source Code                               | Version| Mirror                                                | SHA-256 Checksum                                            | Software Package Size|
75| --------------------------------------- | ------------ | ------------------------------------------------------------ | ------------------------------------------------------------ | -------- |
76| Full code base (for mini, small, and standard systems)       | 4.1.3 Release   | [Download](https://repo.huaweicloud.com/openharmony/os/4.1.3-Release/code-v4.1.3-Release.tar.gz) | [Download](https://repo.huaweicloud.com/openharmony/os/4.1.3-Release/code-v4.1.3-Release.tar.gz.sha256) | 34.8 GB |
77| Hi3861 solution (binary)       | 4.1.3 Release    | [Download](https://repo.huaweicloud.com/openharmony/os/4.1.3-Release/hispark_pegasus.tar.gz) | [Download](https://repo.huaweicloud.com/openharmony/os/4.1.3-Release/hispark_pegasus.tar.gz.sha256) | 27.1 MB |
78| Hi3516 solution-LiteOS (binary)| 4.1.3Release   | [Download](https://repo.huaweicloud.com/openharmony/os/4.1.3-Release/hispark_taurus_LiteOS.tar.gz) | [Download](https://repo.huaweicloud.com/openharmony/os/4.1.3-Release/hispark_taurus_LiteOS.tar.gz.sha256) | 320.1 MB |
79| Hi3516 solution-Linux (binary) | 4.1.3 Release   | [Download](https://repo.huaweicloud.com/openharmony/os/4.1.3-Release/hispark_taurus_Linux.tar.gz) | [Download](https://repo.huaweicloud.com/openharmony/os/4.1.3-Release/hispark_taurus_Linux.tar.gz.sha256) | 215.1 MB |
80| RK3568 standard system solution (binary)       | 4.1.3 Release    | [Download](https://repo.huaweicloud.com/openharmony/os/4.1.3-Release/dayu200_standard_arm32.tar.gz) | [Download](https://repo.huaweicloud.com/openharmony/os/4.1.3-Release/dayu200_standard_arm32.tar.gz.sha256) | 8.4 GB |
81| Public SDK package for the standard system (macOS)            | 4.1.9.4 | [Download](https://repo.huaweicloud.com/openharmony/os/4.1.3-Release/ohos-sdk-mac-public.tar.gz) | [Download](https://repo.huaweicloud.com/openharmony/os/4.1.3-Release/ohos-sdk-mac-public.tar.gz.sha256) | 913.3 MB |
82| Public SDK package for the standard system (macOS-M1)            | 4.1.9.4 | [Download](https://repo.huaweicloud.com/openharmony/os/4.1.3-Release/L2-SDK-MAC-M1-PUBLIC.tar.gz) | [Download](https://repo.huaweicloud.com/openharmony/os/4.1.3-Release/L2-SDK-MAC-M1-PUBLIC.tar.gz.sha256) | 884.0 MB |
83| Public SDK package for the standard system (Windows/Linux)  | 4.1.9.4 | [Download](https://repo.huaweicloud.com/openharmony/os/4.1.3-Release/ohos-sdk-windows_linux-public.tar.gz) | [Download](https://repo.huaweicloud.com/openharmony/os/4.1.3-Release/ohos-sdk-windows_linux-public.tar.gz.sha256) | 2.2 GB |
84
85
86## What's New
87
88 N/A
89
90## Fixed Bugs and Security Issues
91
92**Table 3** Resolved issues
93
94| Issue No.| Description|
95| -------- | -------- |
96| [IAOH0J](https://gitee.com/openharmony/useriam_user_auth_framework/issues/IAOH0J?from=project-issue) | [RK3568] The libuserauth_client.z.so process crashes due to the OS_IPC_2_834 thread in the foundation process.|
97| [IBE7FX](https://gitee.com/openharmony/third_party_musl/issues/IBE7FX?from=project-issue) | [RK3568] The cppcrash occurs in the OS_IPC_6_936 thread under the foundation process once. The crash stack is libdistributed_ability_manager_svr.z.so.|
98| [IB7TVH](https://gitee.com/openharmony/communication_netmanager_base/issues/IB7TVH?from=project-issue) | [RK3568] The OS_IPC_2_784 thread under the Process name:foundation process crashes twice. The crash stack is libnet_manager_common.z.so.|
99| [IBBNLR](https://gitee.com/openharmony/commonlibrary_ets_utils/issues/IBBNLR?from=project-issue) | [RK3568] Fixed the worker memory leak.                                |
100| [IAPG6G](https://gitee.com/openharmony/filemanagement_dfs_service/issues/IAPG6G?from=project-issue) | [RK3568] CloudFileService is a non-resident process and is started by the Wi-Fi scanning event loop.|
101| [IAAB5R](https://gitee.com/openharmony/arkui_ace_engine/issues/IAAB5R?from=project-issue) | [RK3568] [10/10] The editable component that is set to.enabled (false) is dragged to the text component area. The component center is 8 vp above the top.|
102| [I9BKLO](https://gitee.com/openharmony/applications_mms/issues/I9BKLO?from=project-issue) | [RK3568] jscrash is displayed under the com.ohos.mms process twice, and the stack name is nameClick.|
103| [IAVSNL](https://gitee.com/openharmony/web_webview/issues/IAVSNL?from=project-issue) | [RK3568] Verifying the UID when processing the edm event                        |
104| [IBH4N7](https://gitee.com/openharmony/distributedhardware_device_manager/issues/IBH4N7?from=project-issue) | [RK3568] UX modification of the 4.1 release branch                              |
105| [IBJL5T](https://gitee.com/openharmony/web_webview/issues/IBJL5T?from=project-issue) | [RK3568] The rendering function is unavailable when nodelesses.hap is installed for the same-layer rendering test.|
106| [IBJ6EC](https://gitee.com/openharmony/arkcompiler_ets_runtime/issues/IBJ6EC?from=project-issue) | [RK3568] Cherry-Pick 10577 to 4.1 Release                  |
107| [IBJ7R4](https://gitee.com/openharmony/arkcompiler_ets_runtime/issues/IBJ7R4?from=project-issue) | [RK3568] Cherry-Pick 10642 to 4.1 Release                  |
108| [IBKK6D](https://gitee.com/openharmony/arkcompiler_ets_runtime/issues/IBKK6D?from=project-issue) | [RK3568] Join Issue After Cherry-Picking PR 10501 to 4.1 Release     |
109| [IBJ90O](https://gitee.com/openharmony/arkcompiler_ets_runtime/issues/IBJ90O?from=project-issue) | [RK3568] Cherry-pick 10670 to 4.1Release                   |
110| [IBH1E9](https://gitee.com/openharmony/window_window_manager/issues/IBH1E9?from=project-issue) | [RK3568] A C++ crash occurs on libmodal_system_ui_extension_client.z.so due to an error of the OS_FFRT_2_0 thread of the foundation process. This issue occurs twice.|
111| [IBIZ14](https://gitee.com/openharmony/arkcompiler_ets_runtime/issues/IBIZ14?from=project-issue) | [RK3568] The vulnerability is incorporated into the OpenHarmony-4.1-Release branch.               |
112| [IBIWKU](https://gitee.com/openharmony/arkcompiler_ets_runtime/issues/IBIWKU?from=project-issue) | [RK3568] Cherry-Pick bug fix to 4.1                        |
113| [IBI74E](https://gitee.com/openharmony/communication_dsoftbus/issues/IBI74E?from=project-issue) | [RK3568] Fixed risky vulnerabilities.                                      |
114| [IBGUBD](https://gitee.com/openharmony/applications_app_samples/issues/IBGUBD?from=project-issue) | [RK3568] Deleted redundant binary files from WorkScheduler.                  |
115| [IBGHNE](https://gitee.com/openharmony/applications_app_samples/issues/IBGHNE?from=project-issue) | [RK3568] Upgrading the HapBuild Project, Deleting Redundant Files, and Replacing the Signing Tool|
116| [IBGJHO](https://gitee.com/openharmony/arkui_ace_engine/issues/IBGJHO?from=project-issue) | [RK3568] The editable component that is set to.enabled(false) is dragged to the text component area. The component is 8 vp from the top center of the component. |
117
118**Table 4** Fixed security vulnerabilities
119
120| Issue No.                                                     | Description                                                    |
121| :----------------------------------------------------------- | ------------------------------------------------------------ |
122| [IBHYAM](https://gitee.com/openharmony/arkcompiler_ets_runtime/issues/IBHYAM?from=project-issue) | [Vulnerability] [OpenHarmony-4.1-Release] CVE-871978016102682624|
123| [IBISRC](https://gitee.com/openharmony/kernel_linux_5.10/issues/IBISRC?from=project-issue) | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-56605 in the Linux kernel component|
124| [IBLGDX](https://gitee.com/openharmony/third_party_NuttX/issues/IBLGDX?from=project-issue) | [Vulnerability] [OpenHarmony-4.1-Release] CVE-884973832148881408 |
125| [IBISTN](https://gitee.com/openharmony/kernel_linux_5.10/issues/IBISTN?from=project-issue) | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-56647 in the Linux kernel component|
126| [IBISOU](https://gitee.com/openharmony/kernel_linux_5.10/issues/IBISOU?from=project-issue) | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-56583 in the Linux kernel component|
127| [IBISPT](https://gitee.com/openharmony/kernel_linux_5.10/issues/IBISPT?from=project-issue) | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-53171 in the Linux kernel component|
128| [IBISSV](https://gitee.com/openharmony/kernel_linux_5.10/issues/IBISSV?from=project-issue) | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-56606 in the Linux kernel component|
129| [IBISUH](https://gitee.com/openharmony/kernel_linux_5.10/issues/IBISUH?from=project-issue) | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-56658 in the Linux kernel component|
130| [IBISV2](https://gitee.com/openharmony/kernel_linux_5.10/issues/IBISV2?from=project-issue) | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-56688 in the Linux kernel component|
131| [IBISWH](https://gitee.com/openharmony/kernel_linux_5.10/issues/IBISWH?from=project-issue) | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-56692 in the Linux kernel component|
132| [IBISXD](https://gitee.com/openharmony/kernel_linux_5.10/issues/IBISXD?from=project-issue) | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-56720 in the Linux kernel component|
133| [IBISYG](https://gitee.com/openharmony/kernel_linux_5.10/issues/IBISYG?from=project-issue) | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-56739 in the Linux kernel component|
134| [IBISZC](https://gitee.com/openharmony/kernel_linux_5.10/issues/IBISZC?from=project-issue) | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-56756 in the Linux kernel component|
135| [IBIT1N](https://gitee.com/openharmony/kernel_linux_5.10/issues/IBIT1N?from=project-issue) | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-56763 in the Linux kernel component|
136| [IBIT2H](https://gitee.com/openharmony/kernel_linux_5.10/issues/IBIT2H?from=project-issue) | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-56769 in the Linux kernel component|
137| [IBIT3K](https://gitee.com/openharmony/kernel_linux_5.10/issues/IBIT3K?from=project-issue) | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-56770 in the Linux kernel component|
138| [IBK84G](https://gitee.com/openharmony/kernel_linux_5.10/issues/IBK84G?from=project-issue) | [Vulnerability] [OpenHarmony-4.1-Release] CVE patches incorporated  |
139| [IBJSHR](https://gitee.com/openharmony/kernel_linux_5.10/issues/IBJSHR?from=project-issue) | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-53173 in the Linux kernel component|
140| [IBJSIV](https://gitee.com/openharmony/kernel_linux_5.10/issues/IBJSIV?from=project-issue) | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-56369 in the Linux kernel component|
141| [IBKPCV](https://gitee.com/openharmony/kernel_liteos_a/issues/IBKPCV?from=project-issue) | [Vulnerability] [OpenHarmony-4.1-Release] CVE-887050703653048320 |
142| [IBINMH](https://gitee.com/openharmony/communication_dsoftbus/issues/IBINMH?from=project-issue) | [Vulnerability] [OpenHarmony-4.1-Release] CVE-871975948294033408 |
143| [IBINMC](https://gitee.com/openharmony/communication_dsoftbus/issues/IBINMC?from=project-issue) | [Vulnerability] [OpenHarmony-4.1-Release] CVE-871976081169584128 |
144| [IBG37W](https://gitee.com/openharmony/kernel_linux_5.10/issues/IBG37W?from=project-issue) | [Vulnerability] [OpenHarmony-4.1-Release] CVE patches incorporated             |
145| [IBIKDC](https://gitee.com/openharmony/kernel_liteos_a/issues/IBIKDC?from=project-issue) | [Vulnerability] [OpenHarmony-4.1-Release] CVE-879923376297086976  |
146| [IBI1JO](https://gitee.com/openharmony/communication_dsoftbus/issues/IBI1JO?from=project-issue) | [Vulnerability] [OpenHarmony-4.1-Release] RecvMessageDeinit in Disc_ble.c is not locked, and no upper limit is set in disc_manager.c, which poses security risks.|
147| [IBHTM4](https://gitee.com/openharmony/kernel_liteos_a/issues/IBHTM4?from=project-issue) | [Vulnerability] [OpenHarmony-4.1-Release] CVE-879883602844717056  |
148| [IBFEJ7](https://gitee.com/openharmony/applications_app_samples/issues/IBFEJ7?from=project-issue) | [Vulnerability] [OpenHarmony-4.1-Release] Problematic axios 1.6.2 referenced|
149| [IBFEWO](https://gitee.com/openharmony/applications_app_samples/issues/IBFEWO?from=project-issue) | [Vulnerability] [OpenHarmony-4.1-Release] Problematic body-parser 1.20.1 and 1.20.2 referenced|
150| [IBFF0F](https://gitee.com/openharmony/applications_app_samples/issues/IBFF0F?from=project-issue) | [Vulnerability] [OpenHarmony-4.1-Release] Problematic braces (dev) 3.0.2 referenced|
151| [IBGB67](https://gitee.com/openharmony/kernel_linux_5.10/issues/IBGB67?from=project-issue) | [Vulnerability] [OpenHarmony-4.1-Release] CVE patches incorporated                |
152| [IB8M92](https://gitee.com/openharmony/kernel_linux_5.10/issues/IB8M92?from=project-issue) | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-50256 in the Linux kernel component|
153| [IB8L2B](https://gitee.com/openharmony/kernel_linux_5.10/issues/IB8L2B?from=project-issue) | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-38594 in the Linux kernel component|
154| [IBE44O](https://gitee.com/openharmony/kernel_linux_5.10/issues/IBE44O?from=project-issue) | [Vulnerability] [OpenHarmony-4.1-Release] CVE patches incorporated             |
155| [IBERYF](https://gitee.com/openharmony/kernel_liteos_a/issues/IBERYF?from=project-issue) | [Vulnerability] [OpenHarmony-4.1-Release] CVE-873354661225041920 |
156| [IBEB48](https://gitee.com/openharmony/kernel_liteos_a/issues/IBEB48?from=project-issue) | [Vulnerability] [OpenHarmony-4.1-Release] CVE-872272903297568768 |
157| [IBDWNM](https://gitee.com/openharmony/kernel_liteos_a/issues/IBDWNM?from=project-issue) | [Vulnerability] [OpenHarmony-4.1-Release] CVE-871586908591886336 |
158| [IBJESO](https://gitee.com/openharmony/third_party_openssl/issues/IBJESO?from=project-issue) | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2024-13176          |
159| [IBFN54](https://gitee.com/openharmony-sig/chromium_src/issues/IBFN54?from=project-issue) | [Vulnerability] [OpenHarmony-4.1-Release] CVE-2023-6112           |
160
161## Known Issues
162
163**Table 5** Known issues
164
165| ISSUE | Description| Impact| To Be Resolved By|
166| :------- | :------- | :------- | :------- |
167| / | /        | /    | /            |
168
169<!--no_check-->