Connect with us

EMUI

November 2022 EMUI security patch fixes these 20 privacy issues

Published

on

November 2022 EMUI issues

Huawei keeps on rolling monthly security patches to enhance its devices. Similarly, the November 2022 EMUI security patch fixes 20 privacy issues and makes your phones more efficient.

Following the tradition, the company has released the November 2022 EMUI patch with a big bundle of fixes for the terrible issues. In detail, the package marks an end to 1 critical, 8 high, and 14 medium levels of CVEs.

On the other hand, the latest security patch also includes fixes for 20 additional security troubles. For your information, these bugs can cause major problems in terms of data privacy.

Consequently, these fixes are related to memory management, kernel module, display services, and more. Besides, the company has also optimized some errors in the lock screen module and the Bluetooth functions. As a result, you will notice better stability in the respective fields.

Advertisement

Thus, by eliminating every harmful defect in your device, the November 2022 EMUI security patch improves data security and privacy aspects.

Further, these fixes will occur for EMUI 12 as well as EMUI 11 versions. Hence, if you are holding any of the builds on your handsets then you must install this update. To get a more detailed view of these issues, you can check the below-given section.

November 2022 EMUI issues

November 2022 security update fixed the following EMUI issues:

CVE 1
  • CVE-2021-46851: Vulnerability of unstrict verification of the memory’s security attribute in the DRM module
  • Risk Level: High
  • Affected versions: EMUI12.0.0
  • Impact of this CVE on devices: Successful exploitation of this vulnerability by attackers may cause the video playback to be abnormal.
CVE 2
  • CVE-2021-46852: Logic bypass vulnerability in the memory management module
  • Risk Level: Medium
  • Affected Versions: EMUI 12.0.0
  • Impact of this CVE on devices: Successful exploitation of this vulnerability will affect confidentiality
CVE 3
  • CVE-2022-44546: Vulnerability that the kernel module automatically frees the memory but does not clear the mapping
  • Risk Level: High
  • Affected Versions: EMUI 12.0.0
  • Impact of this CVE on devices: Successful exploitation of this vulnerability may cause the system to restart
CVE 4
  • CVE-2022-44547: UAF vulnerability in the Display Service module
  • Risk Level: High
  • Affected versions: EMUI 12.0.0
  • Impact of this CVE on devices: Successful exploitation of this vulnerability may cause Display Service to reset and restart.
CVE 5
  • CVE-2022-44548: Vulnerability of unstrict permission verification during Bluetooth pairing
  • Risk Level: Medium
  • Affected versions: EMUI 12.0.1, EMUI 12.0.0, EMUI 11.0.1
  • Impact of this CVE on devices: Successful exploitation of this vulnerability may cause the dialog box to confirm the pairing not to be displayed during Bluetooth pairing.
CVE 6
  • CVE-2022-44549: Geofencing API access vulnerability in the LBS module
  • Risk Level: Medium
  • Affected versions: EMUI 12.0.1, EMUI 12.0.0, EMUI 11.0.1
  • Impact of this CVE on devices: Successful exploitation of this vulnerability may cause third-party apps to access the geofencing API without authorization, affecting user confidentiality.
CVE 7
  • CVE-2022-44550: UAF vulnerability when traversing layers in the graphics display module.
  • Risk Level: High
  • Affected versions: EMUI 12.0.1, EMUI 12.0.0, EMUI 11.0.1
  • Impact of this CVE on devices: Successful exploitation of this vulnerability may affect availability.
CVE 8
  • CVE-2022-44551: Thread security vulnerability in the iaware module
  • Risk Level: Medium
  • Affected versions: EMUI 12.0.1, EMUI 12.0.0, EMUI 11.0.1
  • Impact of this CVE on devices: Successful exploitation of this vulnerability will affect confidentiality, integrity, and availability.
CVE 9
  • CVE-2022-44552: Vulnerability of defects being introduced in the design process in the lock screen module
  • Risk Level: Medium
  • Affected versions: EMUI 11.0.1
  • Impact of this CVE on devices: Successful exploitation of this vulnerability may affect availability.
CVE 10
  • CVE-2022-44553: Vulnerability of not filtering third-party apps out while the HiView module traverses to invoke the system provider
  • Risk Level: Medium
  • Affected versions: EMUI 12.0.1, EMUI 12.0.0, EMUI 11.0.1
  • Impact of this CVE on devices: Successful exploitation of this vulnerability may cause third-party apps to be activated periodically.
CVE 11
  • CVE-2022-44554: Unstrict permission verification vulnerability in the power module
  • Risk Level: Medium
  • Affected versions: EMUI 12.0.0
  • Impact of this CVE on devices: Successful exploitation of this vulnerability may cause the status of a module to be abnormal.
CVE 12
  • CVE-2022-44555: Service hijacking vulnerability in the DDMP/ODMF module
  • Risk Level: Medium
  • Affected versions: EMUI 12.0.1, EMUI 12.0.0, EMUI 11.0.1
  • Impact of this CVE on devices: Successful exploitation of this vulnerability may cause service unavailability.
CVE 13
  • CVE-2022-44556: Missing parameter type validation in the DRM module
  • Risk Level: High
  • Affected versions: EMUI 12.0.0
  • Impact of this CVE on devices: Successful exploitation of this vulnerability may affect availability.
CVE 14
  • CVE-2022-44557: Vulnerability of obtaining the read and write permissions on arbitrary system files in the SmartTrimProcessEvent module
  • Risk Level: High
  • Affected versions: EMUI 12.0.1, EMUI 12.0.0, EMUI 11.0.1
  • Impact of this CVE on devices: Successful exploitation of this vulnerability will affect confidentiality.
CVE 15
  • CVE-2022-44558: Mismatch between serialization as well as deserialization in the AMS module
  • Risk Level: Medium
  • Affected versions: EMUI 12.0.1, EMUI 12.0.0, EMUI 11.0.1
  • Impact of this CVE on devices: Successful exploitation of this vulnerability may cause privilege escalation.
CVE 16
  • CVE-2022-44559: Mismatch between serialization as well as deserialization in the AMS module
  • Risk Level: Medium
  • Affected versions: EMUI 12.0.1, EMUI 12.0.0, EMUI 11.0.1
  • Impact of this CVE on devices: Successful exploitation of this vulnerability may cause privilege escalation.
CVE 17
  • CVE-2022-44560: Intent redirection vulnerability in the launcher module
  • Risk Level: Medium
  • Affected versions: EMUI 12.0.1, EMUI 12.0.0, EMUI 11.0.1
  • Impact of this CVE on devices: Successful exploitation of this vulnerability may cause launcher module data to be modified.
CVE 18
  • CVE-2022-44561: Permission verification vulnerability in the preset launcher module
  • Risk Level: Medium
  • Affected versions: EMUI 12.0.1, EMUI 12.0.0, EMUI 11.0.1
  • Impact of this CVE on devices: Successful exploitation of this vulnerability allows unauthorized apps to add arbitrary widgets as well as shortcuts without interaction.
CVE 19
  • CVE-2022-44562: Mismatch between serialization as well as deserialization at the system framework layer
  • Risk Level: Medium
  • Affected versions: EMUI 12.0.1, EMUI 12.0.0, EMUI 11.0.1
  • Impact of this CVE on devices: Successful exploitation of this vulnerability may cause privilege escalation.
CVE 20
  • CVE-2022-44563: Race condition vulnerability in SD upgrade mode
  • Risk Level: High
  • Affected versions: EMUI 12.0.1, EMUI 12.0.0, EMUI 11.0.1
  • Impact of this CVE on devices: Successful exploitation of this vulnerability will affect confidentiality.

Yash is a graduate of computer science and followed his way into journalism, he is interested in various subjects related to technologies and politics. Yash likes to listen classical songs and has a huge library of classical mixes.

EMUI

January 2023 update out for global Huawei P40 series and Mate 40 Pro

Published

on

Huawei P40 Series January 2023 Update

January 2023 security update began to rollout for the global model of the Huawei P40 series and Mate 40 Pro smartphone to bring up more security for these EMUI 12 powered devices.

According to the information, the latest security patch brings improvements to the smartphone and software capability. On the other hand, the January 2023 security update with a build version of 12.0.0.300 for the Huawei P40 series and Mate 40 Pro.

However, there are no other major changes mentioned in the changelog. On the flip side, the January 2023 EMUI security patch fixes 4 issues in critical condition, 24 vulnerabilities in high mode, and 7 issues in the medium level. On the other hand, the security patch also includes fixes CVEs that were included in the December 2022 EMUI security updates.

Huawei has already seeded January 2023 security patch on EMUI 12 powered P50 Pro and the Nova 7 5G. Such software updates are essential to the smartphone and it’s suggested that the corresponding models download the latest available firmware.

Advertisement

EMUI 13:

Aside from the security patch, Huawei’s top flagship smartphones are waiting for the EMUI 13 software update, which is packed with new features. However, Huawei has not released any information on this matter.

Huawei P40 Series January 2023 Update

How to update:

Huawei P40 series and Mate 40 Pro users can download the latest software update by visiting the software update section, opening up Settings > tapping on System & update > clicking Software updates > and CHECK FOR UPDATES.

You should know that this update will not delete your personal data and we suggest that you back up all important data before updating.

If you face any issues during the update, call the Huawei customer hotline or visit a Huawei customer service center. The update package will be automatically deleted after the update is complete.

Advertisement

Huawei P40 and Mate 40 Pro are one of the last Huawei flagships to feature 5G functionality. These Huawei phones will have to wait just a little bit longer to get the latest EMUI version.

(Via – Huaweiailesi)

Continue Reading

EMUI

Huawei EMUI January 2023 Updates List

Published

on

Huawei EMUI

January 2023 is on and Huawei is rolling out new EMUI software updates for smartphones. In addition, there is a bunch of information surrounding us this month and expectations.

In the first week, Huawei published EMUI 2023 security update details and fixed 4 issues in critical condition, 24 vulnerabilities in high, and 7 issues in the medium level.

In the meantime, Huawei began this month by rolling out January 2023 security update for Huawei Nova 7 smartphone in the global market. The upgrade is there with major security improvements. This firmware will seed more flaghip smartphones in the coming month.

Meanwhile, Huawei EMUI 12 is expanding for some old models but some are still far away.

Advertisement

EMUI 13

This year brought in a lot of expectations for Huawei smartphone users and the EMUI 13 is one of them. The company has still not shared the EMUI 13 roadmap for the eligible devices.

Also, the EMUI 13 is not in the sight of beta activity, which, we are eagerly waiting for. Still, the January 2023 window is open for us to wait for the next part of this upgrade procedure. EMUI 13 brings a lot of new features and it would be interesting to see this release trigger this month.

Below you can check all of the software updates rolling out this month and stay up to date:

Huawei EMUI

January 28, 2023:

Advertisement
  • We’re about to close this year, and Huawei is now rolling out a new software update with EMUI version 9.1.0.210 for 3 years old Honor Play 3e smartphone. The update installs new optimizations for WiFi and system stability. This update is also noted on old Honor and Huawei devices.

January 21, 2023:

  • Huawei is sending a brand new software upgrade for the P50 Pro smartphone with EMUI 12 and build version 12.0.1.290.

January 18, 2023:

  • Huawei P30 Pro getting December 2022 security update in Europe. Read more here.

January 16, 2023:

  • Huawei P50 Pro is getting a new patch in the global market that brings it display optimizations for a better user experience.

January 14, 2023:

  • In a surprising event, Huawei P30 Pro users are now gaining access to brand new software 12.0.0.146 and a package size of 228 megabytes. This update brings a security patch released in December 2022.

January 13, 2023:

  • Huawei P30 Lite grabs a new firmware with EMUI 12 version 12.0.0.255 and it will install the latest security patch for this smart device.

January 12, 2023:

  • Huawei Nova Y90 is getting a new software patch with display improvements and it has a small size.

January 9, 2023:

  • Huawei is expanding this super large software update for the Mate 50 Pro global version with EMUI 13.0.0.187 build version. It brings new improvements for cameras, networks, apps, audio, and system along with security.

January 7, 2023:

  • The first January 2023 EMUI security update began to rollout for Huawei phones and Nova 7 is the first to receive this patch in the line with EMUI 12.0.0.244.

January 5, 2023:

  • Huawei Nova 10 and Nova 10 Pro are the latest Huawei Nova series devices to get a new software update with EMUI version 12.0.1.175. However, this update doesn’t bring anything else than the patch itself.

January 2, 2023:

  • Huawei Nova Y90 smartphone is getting December 2022 EMUI security update with EMUI version 12.0.1.175 build. The update will improve the phone’s capability against dangerous threats.
Continue Reading

EMUI

EMUI 9.1.0.210 update for Honor Play 3e installs improvements

Published

on

honor play 3e

Huawei is rolling out an EMUI 9.1.0.210 update for the Honor Play 3e smartphone that comes with a number of new optimizations for a better user experience.

For your information, Honor Play 3e was launched in 2019 and it’s a handy device that is packed with a 5.71-inch screen with a hole punch design, a 3020mAh battery, a single rear 13MP camera, and a 5MP selfie camera.

Despite the fact that the phone is still running EMUI 9.1 and the company keeps on sending new software updates for the Honor Play 3e, which is quite impressive.

Honor Play 3e with model KSA-AL10  is getting a new software update with EMUI to build version 9.1.0.210, upgrading from EMUI 9.1.0.206. The changelog reveals that the phone is getting a new Petal Light Tour app as well as new network optimizations as well as system stability improvements for Honor Play 3e.

Advertisement

Honor Play 3e

To be mentioned, this is not the only old smartphone to get these new improvements as there are other EMUI 9.1 devices incorporated with such ability.

Below you can check the changelog:

Application:

  • Added a quick download icon for the Petal Light Tour app, click it to download and use it directly. Note: If the “Automatically update apps” in the app market is set to “On” or “Only under Wi-Fi”, it will be updated according to the network.

Add:

  • Network conditions automatically download applications, no need to click)

System:

  • Optimize system stability in some scenarios.

Below you can check the update notes:

  • Make sure you phone is not rooted. You can upgrade to EMUI 9.1.0.210 via OTA.
  • This update is rolling out in batches and users who have not received it yet, please wait patiently.
  • This update will not delete your data, but it is still recommended that you back up all important data to the PC or the cloud (please do not back up to the internal storage space of the phone) before the upgrade, and confirm that the backup content is complete and valid.
  • After the upgrade, the system will perform self-optimization, which may cause the phone to generate some heat, fast power consumption, freezing, or slow charging. It will return to normal after 2-3 days. It is recommended to charge the phone with the screen off for over 2 hours after the upgrade is complete (it is best to charge it overnight with the screen off), and then restart the phone to ensure that the mobile phone application is quickly adapted.
  • After the update is complete, the system will restart, please wait patiently for about five minutes.
Continue Reading