发布于2025.11.04 备注:OpenHarmony 5.0阶段各分支中当前主要对OpenHarmony-5.0.3-Release分支进行安全漏洞维护。 CVE漏洞描述漏洞影响严重程度CVSS 3.1得分受影响的版本受影响的仓库修复链接 CVE-2025-25277arkcompiler_ets_runtime类型混淆漏洞特定场景下, 本地攻击者可造成任意代码执行中危6.3OpenHarmony-v5.0.3-Release OpenHarmony-v5.1.0-Releasearkcompiler_ets_runtime5.1.0 5.0.3 以下为三方库漏洞,只提供CVE、严重程度、受影响的OpenHarmony版本,详细信息请参考三方公告。 CVE严重程度CVSS 3.1得分受影响的仓库受影响的OpenHarmony版本修复链接 CVE-2025-38692无尚未提供kernel_linux_5.10OpenHarmony-5.0.3-Release5.0.3.x CVE-2025-38677低危3.5kernel_linux_5.10OpenHarmony-5.0.3-Release5.0.3.x CVE-2025-38668中危5.7kernel_linux_5.10OpenHarmony-5.0.3-Release5.0.3.x CVE-2025-38652低危3.5kernel_linux_5.10OpenHarmony-5.0.3-Release5.0.3.x CVE-2025-38635中危5.7kernel_linux_5.10OpenHarmony-5.0.3-Release5.0.3.x CVE-2025-38626中危4.6kernel_linux_5.10OpenHarmony-5.0.3-Release5.0.3.x CVE-2025-38622中危4.8kernel_linux_5.10OpenHarmony-5.0.3-Release5.0.3.x CVE-2025-38617低危2.6kernel_linux_5.10OpenHarmony-5.0.3-Release5.0.3.x CVE-2025-38588无尚未提供kernel_linux_5.10OpenHarmony-5.0.3-Release5.0.3.x CVE-2025-38587无尚未提供kernel_linux_5.10OpenHarmony-5.0.3-Release5.0.3.x CVE-2025-38578无尚未提供kernel_linux_5.10OpenHarmony-5.0.3-Release5.0.3.x CVE-2025-38577无尚未提供kernel_linux_5.10OpenHarmony-5.0.3-Release5.0.3.x CVE-2025-38565无尚未提供kernel_linux_5.10OpenHarmony-5.0.3-Release5.0.3.x CVE-2025-38555无尚未提供kernel_linux_5.10OpenHarmony-5.0.3-Release5.0.3.x CVE-2025-38512无尚未提供kernel_linux_5.10OpenHarmony-5.0.3-Release5.0.3.x CVE-2025-38499无尚未提供kernel_linux_5.10OpenHarmony-5.0.3-Release5.0.3.x CVE-2025-38342无尚未提供kernel_linux_5.10OpenHarmony-5.0.3-Release5.0.3.x CVE-2025-27809中危5.4third_party_mbedtlsOpenHarmony-v5.0.3-Release5.0.3.x CVE-2024-58239低危3.5kernel_linux_5.10OpenHarmony-5.0.3-Release5.0.3.x 以下是各维护版本的安全补丁标签,请在合入当月及之前全部对应安全补丁之后,更新安全补丁标签。 对应维护版本安全补丁修改方式参考链接 5.1.0.xhttps://gitcode.com/openharmony/startup_init/pull/4151 5.0.3.xhttps://gitcode.com/openharmony/startup_init/pull/4223