发布于2024.06.04 以下为三方库漏洞,只提供CVE、严重程度、受影响的OpenHarmony版本 CVE严重程度CVSS 3.1 得分受影响的仓库受影响的OpenHarmony版本修复链接 CVE-2024-39417低危3.5third_party_mbedtlsOpenHarmony-v4.0-Release OpenHarmony-v4.1-Release4.0.x CVE-2024-2478中危4.9third_party_wpa_supplicantOpenHarmony-v4.0-Release4.0.x 4.1.x CVE-2024-2398高危7.5third_party_curlOpenHarmony-v4.1-Release4.1.x CVE-2024-2004中危5.3third_party_curlOpenHarmony-v4.1-Release4.1.x CVE-2024-0450中危6.2third_party_pythonOpenHarmony-v4.0-Release4.0.x CVE-2023-6597高危7.8third_party_pythonOpenHarmony-v4.0-Release4.0.x CVE-2023-52474高危7.8kernel_linux_5.10OpenHarmony-v4.0-Release4.0.x CVE-2023-52160中危6.5third_party_wpa_supplicantOpenHarmony-v4.0-Release4.0.x CVE-2022-21499中危6.7kernel_linux_5.10OpenHarmony-v4.0-Release4.0.x CVE-2022-2078中危5.5kernel_linux_5.10OpenHarmony-v4.0-Release4.0.x CVE-2022-1012高危8.2kernel_linux_5.10OpenHarmony-v4.0-Release4.0.x CVE-2022-0854中危5.5kernel_linux_5.10OpenHarmony-v4.0-Release4.0.x CVE-2021-4001中危4.1kernel_linux_5.10OpenHarmony-v4.0-Release4.0.x CVE-2021-33655中危6.7kernel_linux_5.10OpenHarmony-v4.0-Release4.0.x CVE-2024-1059高危8.8web_webviewOpenHarmony-v4.0-Release OpenHarmony-v4.1-Release4.0.x 4.1.x CVE-2024-1283高危9.8web_webviewOpenHarmony-v4.0-Release4.0.x CVE-2024-0810高危7.8web_webviewOpenHarmony-v4.0-Release4.0.x CVE-2024-0808中危4.3web_webviewOpenHarmony-v4.0-Release4.0.x CVE-2024-2625高危8.8web_webviewOpenHarmony-v4.0-Release4.0.x CVE-2024-1672中危6.1web_webviewOpenHarmony-v4.0-Release4.0.x CVE-2024-0519高危8.8web_webviewOpenHarmony-v4.0-Release4.0.x CVE-2024-0224高危8.8web_webviewOpenHarmony-v4.0-Release4.0.x 4.0.x CVE-2024-1676中危4.3web_webviewOpenHarmony-v4.0-Release4.0.x CVE-2024-0223高危8.8web_webviewOpenHarmony-v4.0-Release4.0.x CVE-2024-1670高危8.6web_webviewOpenHarmony-v4.0-Release4.0.x CVE-2024-0333中危5.3web_webviewOpenHarmony-v4.0-Release4.0.x CVE-2024-1077高危8.8web_webviewOpenHarmony-v4.0-Release4.0.x CVE-2024-0518高危8.8web_webviewOpenHarmony-v4.0-Release4.0.x CVE-2024-0222高危8.8web_webviewOpenHarmony-v4.0-Release4.0.x CVE-2024-0807高危8.8web_webviewOpenHarmony-v4.0-Release4.0.x 4.0.x CVE-2024-3157高危8.1web_webviewOpenHarmony-v4.0-Release4.0.x CVE-2024-3839中危6.5web_webviewOpenHarmony-v4.0-Release OpenHarmony-v4.1-Release4.0.x 4.1.x CVE-2024-3516高危8.8web_webviewOpenHarmony-v4.0-Release4.0.x CVE-2024-3837高危8.8web_webviewOpenHarmony-v4.0-Release4.0.x CVE-2024-3159高危8.8web_webviewOpenHarmony-v4.0-Release4.0.x CVE-2023-5480中危6.1web_webviewOpenHarmony-v4.0-Release4.0.x CVE-2023-6347高危8.8web_webviewOpenHarmony-v4.0-Release4.0.x CVE-2023-6703高危8.8web_webviewOpenHarmony-v4.0-Release4.0.x CVE-2023-6345高危9.6web_webviewOpenHarmony-v4.0-Release4.0.x CVE-2023-6112高危8.8web_webviewOpenHarmony-v4.0-Release4.0.x CVE-2023-5482高危8.8web_webviewOpenHarmony-v4.0-Release4.0.x 4.0.x 4.0.x CVE-2023-7024高危8.8web_webviewOpenHarmony-v4.0-Release4.0.x CVE-2023-6510高危8.8web_webviewOpenHarmony-v4.0-Release4.0.x CVE-2023-6508高危8.8web_webviewOpenHarmony-v4.0-Release4.0.x CVE-2023-5997高危8.8web_webviewOpenHarmony-v4.0-Release4.0.x CVE-2023-6705高危8.8web_webviewOpenHarmony-v4.0-Release4.0.x CVE-2023-6702高危8.8web_webviewOpenHarmony-v4.0-Release4.0.x CVE-2023-5996高危8.8web_webviewOpenHarmony-v4.0-Release4.0.x 请在合入当月及之前全部已公开安全补丁之后,参考如下各维护版本的安全补丁标签更新方法,更新安全补丁标签至06月。 对应维护版本安全补丁修改方式参考链接 4.1.xhttps://gitee.com/openharmony/startup_init/pulls/2809 4.0.xhttps://gitee.com/openharmony/startup_init/pulls/2808
participants (1)
-
王晨