Updates

Huawei released March 2022 EMUI patch details

Published

3 years ago

March 3, 2022

Amit

Huawei has officially started the EMUI 12 stable rollout for global devices. In terms of security patches, Huawei also focuses on the HarmonyOS update for its eligible devices in a regular manner.

Apart from the EMUI 12 and HarmonyOS, the March 2022 Huawei EMUI security patch is now live and it fixes 14 high levels of CVEs, 2 medium levels of CVEs while there’s no low level of CVEs. It also fixes the 9 CVEs announced in February 2022.

Critical: none

High: CVE-2020-13112, CVE-2020-13113, CVE-2021-39619, CVE-2021-39663, CVE-2021-39666, CVE-2021-39669, CVE-2021-39674, CVE-2021-39676, CVE-2021-39631, CVE-2021-35068, CVE-2021-35074, CVE-2021-35075, CVE-2021-35077, CVE-2021-35069

Medium: CVE-2021-30324, CVE-2021-30325

Low: none

Already included in previous updates: CVE-2021-39626, CVE-2021-39633, CVE-2021-39634, CVE-2021-0775, CVE-2021-1027, CVE-2021-1028, CVE-2021-1029, CVE-2021-0759, CVE-2021-0852

This security update includes the following HUAWEI patches:

CVE-2021-40054: Integer underflow vulnerability in the atcmdserver module

Severity: High

Affected versions: EMUI 12.0.0, EMUI 11.0.1, EMUI 11.0.0, EMUI 10.1.1, EMUI 10.1.0, EMUI 10.0.0, Magic UI 4.0.0, Magic UI 3.1.1, Magic UI 3.1.0, Magic UI 3.0.0

Impact: Successful exploitation of this vulnerability may affect integrity.

CVE-2021-40011: Uncontrolled resource consumption vulnerability in the display module

Severity: High

Affected versions: EMUI 12.0.0

Impact: Successful exploitation of this vulnerability may affect integrity.

CVE-2021-40053: Permission control vulnerability in the Nearby module

Severity: Medium

Affected versions: EMUI 11.0.0, EMUI 10.1.1, EMUI 10.1.0, EMUI 10.0.0, Magic UI 4.0.0, Magic UI 3.1.1, Magic UI 3.1.0, Magic UI 3.0.0

Impact: Successful exploitation of this vulnerability will affect availability and integrity.

CVE-2021-40052: Incorrect buffer size calculation vulnerability in the video framework

Severity: High

Affected versions: EMUI 11.0.1, EMUI 11.0.0, Magic UI 4.0.0

Impact: Successful exploitation of this vulnerability may affect availability.

CVE-2021-40051: Unauthorized access vulnerability in system components

Severity: Medium

Affected versions: EMUI 12.0.0, EMUI 11.0.1, EMUI 11.0.0, EMUI 10.1.1, EMUI 10.1.0, Magic UI 4.0.0, Magic UI 3.1.1, Magic UI 3.1.0

Impact: Successful exploitation of this vulnerability will affect confidentiality.

CVE-2021-40050: Out-of-bounds read vulnerability in the IFAA module

Severity: High

Affected versions: EMUI 12.0.0, EMUI 11.0.1, EMUI 11.0.0, EMUI 10.1.1, EMUI 10.1.0, Magic UI 4.0.0, Magic UI 3.1.1, Magic UI 3.1.0

Impact: Successful exploitation of this vulnerability may cause stack overflow.

CVE-2021-40049: Permission control vulnerability in the PMS module

Severity: Medium

Affected versions: EMUI 12.0.0, EMUI 11.0.0, EMUI 10.1.1, EMUI 10.1.0, Magic UI 4.0.0, Magic UI 3.1.1, Magic UI 3.1.0

Impact: Successful exploitation of this vulnerability can lead to sensitive system information being obtained without authorization.

CVE-2021-40048: Incorrect buffer size calculation vulnerability in the video framework

Severity: High

Affected versions: EMUI 12.0.0, EMUI 11.0.1, EMUI 11.0.0, EMUI 10.1.1, EMUI 10.1.0, EMUI 10.0.0, Magic UI 4.0.0, Magic UI 3.1.1, Magic UI 3.1.0, Magic UI 3.0.0

Impact: Successful exploitation of this vulnerability will affect availability.

CVE-2021-40062: Vulnerability of copying input buffer without checking its size in the video framework

Severity: High

Affected versions: EMUI 10.1.1, EMUI 10.1.0, Magic UI 3.1.1, Magic UI 3.1.0

Impact: Successful exploitation of this vulnerability may affect availability.

CVE-2021-40047: Vulnerability of memory not being released after effective lifetime in the Bastet module

Severity: High

Affected versions: EMUI 12.0.0, EMUI 11.0.1, EMUI 11.0.0, EMUI 10.1.1, EMUI 10.1.0, EMUI 10.0.0, Magic UI 4.0.0, Magic UI 3.1.1, Magic UI 3.1.0, Magic UI 3.0.0

Impact: Successful exploitation of this vulnerability may affect integrity.

CVE-2021-40061: Vulnerability of accessing resources using an incompatible type (type confusion) in the Bastet module

Severity: Medium

Affected versions: EMUI 12.0.0, EMUI 11.0.1, EMUI 11.0.0, EMUI 10.1.1, EMUI 10.1.0, Magic UI 4.0.0, Magic UI 3.1.1, Magic UI 3.1.0

Impact: Successful exploitation of this vulnerability may affect integrity.

CVE-2021-40060: Heap-based buffer overflow vulnerability in the video framework

Severity: High

Affected versions: EMUI 10.1.1, EMUI 10.1.0, Magic UI 3.1.1, Magic UI 3.1.0

Impact: Successful exploitation of this vulnerability may affect availability.

CVE-2021-40059: Permission control vulnerability in the Wi-Fi module

Severity: Medium

Affected versions: EMUI 12.0.0, EMUI 11.0.1, EMUI 11.0.0, EMUI 10.1.1, EMUI 10.1.0, Magic UI 4.0.0, Magic UI 3.1.1, Magic UI 3.1.0

Impact: Successful exploitation of this vulnerability may affect confidentiality.

CVE-2021-40058: Heap-based buffer overflow vulnerability in the video framework

Severity: High

Affected versions: EMUI 10.1.1, EMUI 10.1.0, Magic UI 3.1.1, Magic UI 3.1.0

Impact: Successful exploitation of this vulnerability may affect availability.

CVE-2021-40057: Heap-based and stack-based buffer overflow vulnerabilities in the video framework

Severity: High

Affected versions: EMUI 10.1.1, EMUI 10.1.0, Magic UI 3.1.1, Magic UI 3.1.0

Impact: Successful exploitation of this vulnerability may affect availability.

CVE-2021-40056: Vulnerability of copying input buffer without checking its size in the video framework

Severity: High

Affected versions: EMUI 10.1.1, EMUI 10.1.0, Magic UI 3.1.1, Magic UI 3.1.0

Impact: Successful exploitation of this vulnerability may affect availability.

CVE-2021-40063: Improper access control vulnerability in the video module

Severity: High

Affected versions: EMUI 12.0.0, EMUI 11.0.1, EMUI 11.0.0, EMUI 10.1.1, EMUI 10.1.0, Magic UI 4.0.0, Magic UI 3.1.1, Magic UI 3.1.0

Impact: Successful exploitation of this vulnerability may affect confidentiality.

CVE-2021-40064: Heap-based buffer overflow vulnerability in system components

Severity: Medium

Affected versions: EMUI 12.0.0, EMUI 11.0.1, EMUI 11.0.0, EMUI 10.1.1, EMUI 10.1.0, EMUI 10.0.0, Magic UI 4.0.0, Magic UI 3.1.1, Magic UI 3.1.0, Magic UI 3.0.0

Impact: Successful exploitation of this vulnerability may affect system stability.

CVE-2021-40055: Man-in-the-middle attack vulnerability during system update download in recovery mode

Severity: Critical

Affected versions: EMUI 12.0.0, EMUI 11.0.1, EMUI 11.0.0, EMUI 10.1.1, EMUI 10.1.0, EMUI 10.0.0, Magic UI 4.0.0, Magic UI 3.1.1, Magic UI 3.1.0, Magic UI 3.0.0

Impact: Successful exploitation of this vulnerability may affect integrity.

Up Next

These Huawei devices will get HarmonyOS Monthly and Quarterly patch update

Don't Miss

Looking for the latest Huawei AppGallery APK, Download it from here 12.0.1.301

Amit

I write about Huawei Latest News, EMUI Updates & more. I am also a fitness freak. For any information, tip or help send me an email at huaweiupdatenews@gmail.com

Click to comment

Updates

Huawei Mate 70 lineup launch event details revealed: Mate X6, MatePad Pro 13.2 and more

Published

1 week ago

November 15, 2024

Amit

According to the latest information, the Chinese tech giant Huawei is said to launch the new products at the same time as the Huawei Mate70 series launch conference include Mate X6/MatePad Pro 13.2/Master Watch/Freebuds Pro4/Watch D2/Smart World S7 facelift.

Huawei’s executive director, chairman of the Terminal BG, and chairman of the Intelligent Automotive Solutions BU, Yu Chengdong, revealed in the Guangzhou Auto Show’s Hongmeng Zhixing live broadcast that during this auto show, the first model of the million-level luxury brand “Zunjie” in cooperation with JAC will be displayed to professional media, and the appearance of the new car will be unveiled to the public at the Mate70 series mobile phone launch conference (on the 26th) .

Yu Chengdong has confirmed that the car will be released together with the “most powerful Mate in history.”

HarmonyOS 4

Huawei FreeBuds 6i HarmonyOS 4.2.0.216 update rolling out

Published

2 weeks ago

November 6, 2024

Amit

Huawei has started rolling out the HarmonyOS 4.2.0.216 software update to its FreeBuds 6i wireless headphones. The latest update brings support for spatial sound effects.

Version Number
Headphone firmware version: HarmonyOS 4.2.0.216

Smart Life App: 14.0.7.372

Audio Manager App: 14.0.7.372

Updates
Added spatial sound effect function.

Huawei FreeBuds 6i

Huawei Apps Apk

Huawei Browser November 2024 update brings 15.0.7.301 version

Published

3 weeks ago

November 1, 2024

Amit

Huawei has started rolling out a new update to its Browser App. As per the changelog, users can now download the new version 15.0.7.301 and it includes the latest security patch. Huawei Browser offers you high-speed web browsing, convenient searching, and comprehensive privacy protection for HUAWEI smartphone users.

Huawei Browser Key Features

Search – Search instantly through the search bar.
Ultra fast speed – Access fast web browsing through HUAWEI Browser’s brand-new engine.
Night mode – Effectively reduce blue light to protect your eyes.
Private browsing – Keep your browsing activities and history private.
Saved passwords – Conveniently save your passwords for fast access to all of your favorite services.

Download the latest Huawei Browser App Apk

Huawei Browser App 15.0.7.301 APK [November 01, 2024]
Huawei Browser App 15.0.6.301 APK [September 13, 2024]
Huawei Browser App 15.0.5.301 APK [August 12, 2024]
Huawei Browser App 15.0.4.302 APK [July 07, 2024]
Huawei Browser App 15.0.3.300 APK [June 01, 2024]
Huawei Browser App 15.0.1.301 APK [April 15, 2024]
Huawei Browser App 15.0.1.300 APK [March 23, 2024]
Huawei Browser App 14.0.7.302 APK [February 18, 2024]
Huawei Browser App 14.0.7.301 APK [February 13, 2024]
Huawei Browser App 14.0.6.300 APK [January 17, 2024]
Huawei Browser App 14.0.5.301 APK [December 13, 2023]
Huawei Browser App 14.0.4.301 APK [November 21, 2023]
Huawei Browser App 14.0.3.340 APK [October 27, 2023]
Huawei Browser App 14.0.3.300 APK [October 06, 2023]
Huawei Browser App 14.0.2.310 APK [September 28, 2023]
Huawei Browser App 14.0.1.302 APK [August 13, 2023]
Huawei Browser App 14.0.0.323 APK [July 10, 2023]
Huawei Browser App 14.0.0.320 APK [July 05, 2023]
Huawei Browser App 13.0.6.302 APK [May 08, 2023]
Huawei Browser App 13.0.5.301 APK [April 24, 2023]
Huawei Browser App 13.0.4.302 APK [April 01, 2023]
Huawei Browser App 13.0.4.300 APK [March 03, 2023]
Huawei Browser App 13.0.3.320 APK [February 23, 2023]
Huawei Browser App 13.0.3.301 APK [January 21, 2023]
Huawei Browser App 13.0.1.301 APK [January 05, 2023]
Huawei Browser App 13.0.0.310 APK [December 13, 2022]
Huawei Browser App 13.0.0.303 APK [December 01, 2022]
Huawei Browser App 12.1.3.304 APK [November 11, 2022]
Huawei Browser App 12.1.4.302 APK [October 28, 2022]
Huawei Browser App 12.1.2.312 APK [October 15, 2022]
Huawei Browser App 12.1.3.311 APK [October 11, 2022]
Huawei Browser App 12.1.3.303 APK [September 16, 2022]
Huawei Browser App 12.1.1.324 APK [August 26, 2022]
Huawei Browser App 12.1.1.323 APK [August 22, 2022]
Huawei Browser App 12.1.2.311 APK [August 15, 2022]
Huawei Browser App 12.1.1.321 APK [July 03, 2022]
Huawei Browser App 12.1.1.301 APK [June 30, 2022]
Huawei Browser App 12.1.0.301 APK [May 05, 2022]
Huawei Browser App 12.0.5.302 APK [April 18, 2022]
Huawei Browser App 12.0.4.301 APK [April 03, 2022]
Huawei Browser App 12.0.4.300 APK [March 31, 2022]

12.0.4.301 Huawei Browser App

Join HU On Telegram

Huawei News1 hour ago

Huawei FreeBuds Pro 4 official announcement

Leave a Reply
Cancel reply