发布于2024.08.06

以下为三方库漏洞，只提供CVE、严重程度、受影响的OpenHarmony版本，详细信息请参考三方公告。

CVE	严重程度	CVSS 3.1得分	受影响的仓库	受影响的OpenHarmony版本	修复链接
CVE-2024-3914	低危	3.6	web_webview	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.0.x 4.1.x
CVE-2024-3843	低危	2.7	web_webview	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-3841	低危	2.7	web_webview	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-4671	致命	9.6	web_webview	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-4603	中危	5.3	third_party_openssl	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-4761	高危	8.8	web_webview	OpenHarmony-v4.0-Release	4.0.x
CVE-2024-5274	高危	8.8	web_webview	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-4947	高危	8.8	web_webview	OpenHarmony-v4.0-Release	4.0.x
CVE-2024-3840	低危	2.7	web_webview	OpenHarmony-v4.1-Release	4.1.x 4.1.x 4.1.x
CVE-2024-4331	低危	3.1	web_webview	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.1.x
CVE-2024-4558	低危	3.1	web_webview	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-5158	低危	2.7	web_webview	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-3845	低危	2.7	web_webview	OpenHarmony-v4.1-Release	4.1.x 4.1.x
CVE-2024-35807	中危	5.5	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-35978	中危	5.7	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-35950	中危	5.7	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-27431	中危	5.5	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-35815	低危	3.5	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-5159	中危	4.7	web_webview	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-5157	低危	0.0	web_webview	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-36941	中危	5.7	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-36940	中危	5.5	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-36939	中危	4.6	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-36938	中危	5.5	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-36929	中危	5.7	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-36905	中危	4.6	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-36904	高危	7.1	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-36903	中危	4.8	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-36902	中危	5.5	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-36901	中危	5.5	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-36899	高危	7.1	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-36883	低危	3.5	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-36017	低危	3.5	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-36008	中危	5.5	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-35997	中危	5.5	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-35984	中危	5.5	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-35969	中危	4.6	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-35962	中危	5.5	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-35955	中危	5.5	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-35910	中危	5.5	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-35904	中危	5.7	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-35896	低危	2.6	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-35822	低危	3.5	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-35789	中危	5.5	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-35785	中危	5.5	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-28182	中危	5.3	third_party_nghttp2	OpenHarmony-v4.0-Release	4.0.x
CVE-2024-27417	中危	5.5	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-27414	中危	5.5	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-27399	中危	5.3	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-27013	中危	5.5	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-26934	高危	7.8	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2024-26805	低危	2.7	kernel_linux_5.10	OpenHarmony-v4.0-Release	4.0.x
CVE-2024-26801	低危	2.7	kernel_linux_5.10	OpenHarmony-v4.0-Release	4.0.x
CVE-2024-26735	低危	2.7	kernel_linux_5.10	OpenHarmony-v4.0-Release	4.0.x
CVE-2024-26733	低危	2.7	kernel_linux_5.10	OpenHarmony-v4.0-Release	4.0.x
CVE-2024-26601	中危	5.5	kernel_linux_5.10	OpenHarmony-v4.0-Release	4.0.x
CVE-2023-52881	低危	3.7	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2023-52879	低危	2.7	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2023-52869	低危	2.7	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2023-52868	低危	2.7	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2023-52845	中危	5.5	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2023-52835	低危	3.8	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2023-52832	低危	2.7	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2023-52803	中危	4.6	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2023-52781	低危	3.5	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2023-52756	低危	2.7	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2023-52739	低危	2.7	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2023-52730	中危	4.7	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2023-52462	中危	5.5	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x
CVE-2023-52454	中危	5.5	kernel_linux_5.10	OpenHarmony-v4.0-Release	4.0.x
CVE-2021-47469	低危	2.7	kernel_linux_5.10	OpenHarmony-v4.0-Release OpenHarmony-v4.1-Release	4.0.x 4.1.x

如下是各维护版本的安全补丁标签，请在合入当月及之前全部对应安全补丁之后，更新安全补丁标签。

安全补丁标签	链接
2024年08月	[4.1.x]
	[4.0.x]