As part of Huawei’s monthly security maintenance release process, Huawei aims to fix dozens of vulnerabilities found in the running version. It is likely that Huawei released details of the August 2022 security update for eligible devices when HarmonyOS 3 launched.
Notably, HarmonyOS 3.0 has already hit the Chinese smartphone market, with lots of supporting features that help manage all the software systems on your smartphone to help you perform basic tasks and give full control over peripherals like Bluetooth. and FreeBuds.
On the other hand, the August 2022 security update for Huawei devices helps close security vulnerabilities for the following major operating systems. July 2022 security update issues also occur on Huawei devices.
With the August 2022 security patch, Huawei aims to fix dozens of vulnerabilities found in the previous update. In accordance with the monthly security update criteria, the company strives to resolve exploits in the running version and prevent your devices from being unhealthy.
Below you can check the following August 2022 security update details mentioned:
Framework section:
The August 2022 security patch in the Framework section marks one (CVE-2021-40034) as severity level critical, one (CVE-2021-40052) as severity level high, and two marked as severity level medium ( CVE-2022-37007, CVE-2021-40012).
It aims to address the memory overwrite vulnerability caused by additional overflow of video frames. Meanwhile, another module has an out-of-bounds read vulnerability which is a successful exploit in the August 2022 security patch.
Core section:
The kernel section marks a severity from the high level of CVE-2022-37001, which aims to address the excessive long and short instruction intercept vulnerability of the diag0router module.
System section:
It also exploits the CVE of the medium severity level (CVE-2022-37008), which aims to patch the recovery module by bypassing the check for a vulnerability in the update package.
Application section:
The August 2022 security patch includes 5 different CVE levels from the applications section which marked two severity levels as high (CVE-2022-37002 CVE-2022-37004) and three marked as a medium severity level (CVE -2022-37003, CVE-2022-37005, CVE-2021-40030).
It aims to fix the design flaw of the My Huawei app and also to fix the permission assignment of the AOD module.
Third-party library:
The August 2022 Security Update encountered a total of 5 high severity levels (CVE-2022-25845, CVE-2021-44732, CVE-2022-30594, CVE-2021-22570, CVE-2022-0778 ) and 2 CVE of the medium severity level of the third-party library.
In particular, users should continue to check on their device whether they have received the August 2022 patch or not through the Settings>> System update>> now follow the on-screen instructions.