From 322daad90988ce5c8d91276aa0d2dd2fd7fe0bdb Mon Sep 17 00:00:00 2001 From: Keirthana Date: Tue, 7 Jan 2025 17:09:34 +0530 Subject: [PATCH 1/8] Create 1.24.2 release documentation --- reference/component-versions.md | 54 +++++++++++++++++++++++ reference/release-notes/1.24.2.md | 55 ++++++++++++++++++++++++ reference/release-notes/release-notes.md | 5 ++- 3 files changed, 112 insertions(+), 2 deletions(-) create mode 100644 reference/release-notes/1.24.2.md diff --git a/reference/component-versions.md b/reference/component-versions.md index fc5ac9d4..64845610 100644 --- a/reference/component-versions.md +++ b/reference/component-versions.md @@ -5,6 +5,60 @@ This documents the versions of the different components for each Anbox Cloud rel Not all components are updated with each release. When components are not updated, they are marked with `n/a` below. +## 1.24.2 + +### Charms + +#### Ubuntu 22.04 + +| Name | Channel | Revision | +|----------|--------------|--------------| +| `anbox-cloud-dashboard` | `1.24/stable` | | +| `ams-node-controller` (Deprecated) | `1.24/stable` | | +| `coturn` | `1.24/stable` | | +| `ams` | `1.24/stable` | | +| `anbox-stream-gateway` | `1.24/stable` | | +| `ams-lxd` | `1.24/stable` | | +| `anbox-stream-agent` | `1.24/stable` | | +| `aar` | `1.24/stable` | | +| `nats` | `latest/stable` | 9 (AMD64), 11 (ARM64) | + +### Bundles + +| Name | Channel | Revision | +|----------|--------------|--------------| +| `anbox-cloud` | `1.24/stable` | | +| `anbox-cloud-core` | `1.24/stable` | | + +### Snaps + +| Name | Channel | Version | +|----------|--------------|---------| +| `ams` | `1.24/stable` | | +| `aar` | `1.24/stable` | | +| `anbox-cloud-dashboard` | `1.24/stable` | | +| `anbox-stream-agent` | `1.24/stable` | | +| `anbox-stream-gateway` | `1.24/stable` | | +| `anbox-cloud-appliance` | `1.24/stable` | | +| `nats` | `latest/stable` | | + +### Anbox images + +The following Anbox images are available in two variants: one based on a container and one based on a virtual machine. + +| Name | Version | +|----------|--------------| +| `jammy:android14:amd64` | | +| `jammy:android14:arm64` | | +| `jammy:android13:amd64` | | +| `jammy:android13:arm64` | | +| `jammy:android12:amd64` | | +| `jammy:android12:arm64` | | +| `jammy:aaos13:amd64` | | +| `jammy:aaos13:arm64` | | +| `jammy:aaos14:amd64` | | +| `jammy:aaos14:arm64` | | + ## 1.24.1 ### Charms diff --git a/reference/release-notes/1.24.2.md b/reference/release-notes/1.24.2.md new file mode 100644 index 00000000..e04f905a --- /dev/null +++ b/reference/release-notes/1.24.2.md @@ -0,0 +1,55 @@ +--- +orphan: true +--- +# 1.24.2 + +These release notes cover new features and changes in Anbox Cloud 1.24.2. + +Anbox Cloud 1.24.2 is a patch release. To understand minor and patch releases, see [Release notes](https://documentation.ubuntu.com/anbox-cloud/en/latest/reference/release-notes/release-notes). + +Please see [Component versions](https://documentation.ubuntu.com/anbox-cloud/en/latest/reference/component-versions/) for a list of updated components. + +## Requirements + +See [Requirements](https://documentation.ubuntu.com/anbox-cloud/en/latest/reference/requirements/) for details on general and deployment specific requirements to run Anbox Cloud. + +## New features + +* The `anbox-cloud-appliance config show` command lists the available endpoints and their URLs. +* Android security updates for January 2025 (see [Android Security Bulletin - January 2025](https://source.android.com/docs/security/bulletin/2025-01-01) for more information). +* The Android WebView has been updated to 131.0.6778.200. + +## Deprecations + +There are no new deprecations announced for 1.24.2. For the list of features or components that were deprecated earlier and are planned to be removed in future releases, see [deprecation notices](https://documentation.ubuntu.com/anbox-cloud/en/latest/reference/deprecation-notices/). + +## Known issues + + +## CVEs + +The Anbox Cloud 1.24.2 release includes fixes from the respective upstreams and components for the following CVEs: + +| CVE | Affected Components | +|-----|---------------------| +| [CVE-2024-55565](https://nvd.nist.gov/vuln/detail/CVE-2024-55565)| Anbox Cloud dashboard | +| [CVE-2024-6156](https://nvd.nist.gov/vuln/detail/CVE-2024-6156) | AMS | +| [CVE-2024-6219](https://nvd.nist.gov/vuln/detail/CVE-2024-6219) | AMS | +| [CVE-2024-45337](https://nvd.nist.gov/vuln/detail/CVE-2024-45337) | AMS, Anbox runtime | +| [CVE-2024-45338](https://nvd.nist.gov/vuln/detail/CVE-2024-45338) | AMS, Anbox runtime | + +## Bug fixes + +The following bugs have been fixed as part of the Anbox Cloud 1.24.2 release. + +* [LP 2092393](https://bugs.launchpad.net/anbox-cloud/+bug/2092393) Android system settings are sometimes not persistent after bootstrapping of an application. +* [LP 2092447](https://bugs.launchpad.net/anbox-cloud/+bug/2092447) When setting up an ADB connection against local Anbox Cloud appliance using `anbox-connect`, the connection could not be established. This issue occurred sporadically and when it did, the following error could be observed in the `anbox-adb-proxy` system unit: +``` + Failed to establish peer connection: dial unix /run/user/1000/anbox/adb/data_xxxxxxxxxx: connect: connection refused +``` +* [LP 2089822](https://bugs.launchpad.net/anbox-cloud/+bug/2089822) Unable to modify the vehicle property value even if the VHAL service implements the Anbox-specific HIDL interface. +* [LP 2088310](https://bugs.launchpad.net/anbox-cloud/+bug/2088310) Rendering does not work for AMD and Intel GPUs. For deployments that use AMD GPUs, the instance does not start and for deployments using Intel GPUs, the graphical output is incorrect. + +## Upgrade instructions + +See [How to upgrade Anbox Cloud](https://documentation.ubuntu.com/anbox-cloud/en/latest/howto/update/upgrade-anbox/#howto-upgrade-anbox-cloud) and [How to upgrade the Anbox Cloud Appliance](https://documentation.ubuntu.com/anbox-cloud/en/latest/howto/update/upgrade-appliance/#howto-upgrade-appliance) for instructions on how to update your Anbox Cloud deployment to the 1.24.2 release. diff --git a/reference/release-notes/release-notes.md b/reference/release-notes/release-notes.md index d6017804..da6bbe1b 100644 --- a/reference/release-notes/release-notes.md +++ b/reference/release-notes/release-notes.md @@ -9,6 +9,7 @@ For instructions on how to update your Anbox Cloud deployment to later versions, | Release date | Release notes | |----|----| +| January 15, 2025 | [Anbox Cloud 1.24.2](1.24.2.md) | | December 11, 2024 | [Anbox Cloud 1.24.1](1.24.1.md) | | December 4, 2024 | [Anbox Cloud 1.23.3](1.23.3.md) | | November 13 2024 | [Anbox Cloud 1.24.0](1.24.0.md) | @@ -25,9 +26,9 @@ The following target dates for upcoming releases are not final and could vary de | Target date | Version | Planned updates | |----|----|----| -| December 11 2024 | Anbox Cloud 1.24.1 | * Android security updates for December 2024
* Bug fixes | -| January 15 2025 | Anbox Cloud 1.24.2 | * Android security updates for January 2025
* Bug fixes | | February 12 2025 | Anbox Cloud 1.25.0 | * Integration with the [Canonical Observability Stack](https://charmhub.io/topics/canonical-observability-stack)
* Backup and restore support for the Anbox Cloud dashboard charm
* Support for Ubuntu 24.04 (Noble Numbat) for all charms
* (Alpha release) Terraform plan replacing the Anbox Cloud bundles
* Improvements to the Anbox Management Service (AMS)
* Reworked charms
* Upgrade to LXD 5.21
* Android security updates for February 2025
* Bug fixes | +| March 12 2025 | Anbox Cloud 1.25.1 | * Android security updates for March 2025
* Bug fixes | +| April 16 2025 | Anbox Cloud 1.25.2 | * Android security updates for April 2025
* Bug fixes | ## Release and support policy From 16c592d12077542eb0480d1b3407c6ca5b238f54 Mon Sep 17 00:00:00 2001 From: Keirthana Date: Mon, 13 Jan 2025 15:19:17 +0530 Subject: [PATCH 2/8] Add component versions --- reference/component-versions.md | 53 ++++++++++++--------------------- 1 file changed, 19 insertions(+), 34 deletions(-) diff --git a/reference/component-versions.md b/reference/component-versions.md index 64845610..848b6aa2 100644 --- a/reference/component-versions.md +++ b/reference/component-versions.md @@ -9,38 +9,23 @@ Not all components are updated with each release. When components are not update ### Charms -#### Ubuntu 22.04 - -| Name | Channel | Revision | -|----------|--------------|--------------| -| `anbox-cloud-dashboard` | `1.24/stable` | | -| `ams-node-controller` (Deprecated) | `1.24/stable` | | -| `coturn` | `1.24/stable` | | -| `ams` | `1.24/stable` | | -| `anbox-stream-gateway` | `1.24/stable` | | -| `ams-lxd` | `1.24/stable` | | -| `anbox-stream-agent` | `1.24/stable` | | -| `aar` | `1.24/stable` | | -| `nats` | `latest/stable` | 9 (AMD64), 11 (ARM64) | +N/A ### Bundles -| Name | Channel | Revision | -|----------|--------------|--------------| -| `anbox-cloud` | `1.24/stable` | | -| `anbox-cloud-core` | `1.24/stable` | | +N/A ### Snaps | Name | Channel | Version | |----------|--------------|---------| -| `ams` | `1.24/stable` | | -| `aar` | `1.24/stable` | | -| `anbox-cloud-dashboard` | `1.24/stable` | | -| `anbox-stream-agent` | `1.24/stable` | | -| `anbox-stream-gateway` | `1.24/stable` | | -| `anbox-cloud-appliance` | `1.24/stable` | | -| `nats` | `latest/stable` | | +| `ams` | `1.24/stable` | `1.24.2-c816e2633` | +| `aar` | `1.24/stable` | `1.24.2-c816e2633` | +| `anbox-cloud-dashboard` | `1.24/stable` | `1.24.2-c816e2633` | +| `anbox-stream-agent` | `1.24/stable` | `1.24.2-c816e2633` | +| `anbox-stream-gateway` | `1.24/stable` | `1.24.2-c816e2633` | +| `anbox-cloud-appliance` | `1.24/stable` | `1.24.2-c816e2633` | +| `nats` | `latest/stable` | `1.24.2-c816e2633` | ### Anbox images @@ -48,16 +33,16 @@ The following Anbox images are available in two variants: one based on a contain | Name | Version | |----------|--------------| -| `jammy:android14:amd64` | | -| `jammy:android14:arm64` | | -| `jammy:android13:amd64` | | -| `jammy:android13:arm64` | | -| `jammy:android12:amd64` | | -| `jammy:android12:arm64` | | -| `jammy:aaos13:amd64` | | -| `jammy:aaos13:arm64` | | -| `jammy:aaos14:amd64` | | -| `jammy:aaos14:arm64` | | +| `jammy:android14:amd64` | `1.24.2-20250111063402.gitace2bfc25` | +| `jammy:android14:arm64` | `1.24.2-20250111063402.gitace2bfc25` | +| `jammy:android13:amd64` | `1.24.2-20250111063402.gitace2bfc25` | +| `jammy:android13:arm64` | `1.24.2-20250111063402.gitace2bfc25` | +| `jammy:android12:amd64` | `1.24.2-20250111063402.gitace2bfc25` | +| `jammy:android12:arm64` | `1.24.2-20250111063402.gitace2bfc25` | +| `jammy:aaos13:amd64` | `1.24.2-20250111063402.gitace2bfc25` | +| `jammy:aaos13:arm64` | `1.24.2-20250111063402.gitace2bfc25` | +| `jammy:aaos14:amd64` | `1.24.2-20250111063402.gitace2bfc25` | +| `jammy:aaos14:arm64` | `1.24.2-20250111063402.gitace2bfc25` | ## 1.24.1 From 40da5628e7a1affaaf6a999a73dff8680e24ff19 Mon Sep 17 00:00:00 2001 From: Keirthana Date: Mon, 13 Jan 2025 15:26:36 +0530 Subject: [PATCH 3/8] Add Android vulnerability fixes --- reference/component-versions.md | 6 +++--- reference/release-notes/1.24.2.md | 19 ++++++++++++++++--- 2 files changed, 19 insertions(+), 6 deletions(-) diff --git a/reference/component-versions.md b/reference/component-versions.md index 848b6aa2..84abadf0 100644 --- a/reference/component-versions.md +++ b/reference/component-versions.md @@ -21,11 +21,13 @@ N/A |----------|--------------|---------| | `ams` | `1.24/stable` | `1.24.2-c816e2633` | | `aar` | `1.24/stable` | `1.24.2-c816e2633` | +| `amc` | `1.24/stable` | `1.24.2-c816e2633` | +| `ams-node-controller` (Deprecated) | `1.24/stable` | `1.24.2-c816e2633` | | `anbox-cloud-dashboard` | `1.24/stable` | `1.24.2-c816e2633` | | `anbox-stream-agent` | `1.24/stable` | `1.24.2-c816e2633` | | `anbox-stream-gateway` | `1.24/stable` | `1.24.2-c816e2633` | +| `anbox-connect` | `1.24/stable` | `1.24.2-c816e2633` | | `anbox-cloud-appliance` | `1.24/stable` | `1.24.2-c816e2633` | -| `nats` | `latest/stable` | `1.24.2-c816e2633` | ### Anbox images @@ -79,7 +81,6 @@ The following Anbox images are available in two variants: one based on a contain | `anbox-stream-agent` | `1.24/stable` | `1.24.1-fcc9cd96b` | | `anbox-stream-gateway` | `1.24/stable` | `1.24.1-fcc9cd96b` | | `anbox-cloud-appliance` | `1.24/stable` | `1.24.1-fcc9cd96b` | -| `nats` | `latest/stable` | `1.24.1-fcc9cd96b` | ### Anbox images @@ -153,7 +154,6 @@ There are no VM images for ARM64. | `anbox-stream-agent` | `1.24/stable` | `1.24.0-599f42a84` | | `anbox-stream-gateway` | `1.24/stable` | `1.24.0-599f42a84` | | `anbox-cloud-appliance` | `1.24/stable` | `1.24.0-599f42a84` | -| `nats` | `latest/stable` | `1.24.0-599f42a84` | ### Anbox images diff --git a/reference/release-notes/1.24.2.md b/reference/release-notes/1.24.2.md index e04f905a..8431e0c7 100644 --- a/reference/release-notes/1.24.2.md +++ b/reference/release-notes/1.24.2.md @@ -23,9 +23,6 @@ See [Requirements](https://documentation.ubuntu.com/anbox-cloud/en/latest/refere There are no new deprecations announced for 1.24.2. For the list of features or components that were deprecated earlier and are planned to be removed in future releases, see [deprecation notices](https://documentation.ubuntu.com/anbox-cloud/en/latest/reference/deprecation-notices/). -## Known issues - - ## CVEs The Anbox Cloud 1.24.2 release includes fixes from the respective upstreams and components for the following CVEs: @@ -37,6 +34,22 @@ The Anbox Cloud 1.24.2 release includes fixes from the respective upstreams and | [CVE-2024-6219](https://nvd.nist.gov/vuln/detail/CVE-2024-6219) | AMS | | [CVE-2024-45337](https://nvd.nist.gov/vuln/detail/CVE-2024-45337) | AMS, Anbox runtime | | [CVE-2024-45338](https://nvd.nist.gov/vuln/detail/CVE-2024-45338) | AMS, Anbox runtime | +| [CVE-2024-49749](https://source.android.com/docs/security/bulletin/2025-01-01) | Android 12, 13, 14 | +| [CVE-2024-49738](https://source.android.com/docs/security/bulletin/2025-01-01) | Android 12, 13, 14 | +| [CVE-2024-49744](https://source.android.com/docs/security/bulletin/2025-01-01) | Android 12, 13, 14 | +| [CVE-2024-49745](https://source.android.com/docs/security/bulletin/2025-01-01) | Android 12, 13, 14 | +| [CVE-2024-49733](https://source.android.com/docs/security/bulletin/2025-01-01) | Android 12, 13, 14 | +| [CVE-2024-49742](https://source.android.com/docs/security/bulletin/2025-01-01) | Android 12, 13, 14 | +| [CVE-2024-49737](https://source.android.com/docs/security/bulletin/2025-01-01) | Android 13, 14 | + +The security patches for the following CVEs are not included in the 1.24.2 release since we are waiting for disclosure from upstream: + +| CVE | Affected Components | +|-----|---------------------| +| [CVE-2024-49724](https://source.android.com/docs/security/bulletin/2025-01-01) | Android 12, 13, 14 | + + + ## Bug fixes From 68d46ac62173656b565c488f224614140c3dd69a Mon Sep 17 00:00:00 2001 From: Keirthana Date: Wed, 15 Jan 2025 10:22:18 +0530 Subject: [PATCH 4/8] Add known issues --- reference/release-notes/1.24.2.md | 10 +++++++--- 1 file changed, 7 insertions(+), 3 deletions(-) diff --git a/reference/release-notes/1.24.2.md b/reference/release-notes/1.24.2.md index 8431e0c7..4c4e56ac 100644 --- a/reference/release-notes/1.24.2.md +++ b/reference/release-notes/1.24.2.md @@ -23,6 +23,13 @@ See [Requirements](https://documentation.ubuntu.com/anbox-cloud/en/latest/refere There are no new deprecations announced for 1.24.2. For the list of features or components that were deprecated earlier and are planned to be removed in future releases, see [deprecation notices](https://documentation.ubuntu.com/anbox-cloud/en/latest/reference/deprecation-notices/). +## Known issues + +The following are known issues with the 1.24.2 release and we are working towards fixing them for the next release: + +* The [out-of-band v2](https://documentation.ubuntu.com/anbox-cloud/en/latest/howto/stream/exchange-oob-data/) feature does not work when VM images are in use because of strict system hardening security directives. These directives cause the `anbox-webrtc-data-proxy` unit to fail to start. For more information, see [LP 2093887](https://bugs.launchpad.net/anbox-cloud/+bug/2093887). +* The [Android security bulletin](https://source.android.com/docs/security/bulletin/2025-01-01) does not have all the security patch details. So we are unable to validate if all the patches are included in our current release. The CVE section lists as much detail as possible to identify the details of included patches. + ## CVEs The Anbox Cloud 1.24.2 release includes fixes from the respective upstreams and components for the following CVEs: @@ -48,9 +55,6 @@ The security patches for the following CVEs are not included in the 1.24.2 relea |-----|---------------------| | [CVE-2024-49724](https://source.android.com/docs/security/bulletin/2025-01-01) | Android 12, 13, 14 | - - - ## Bug fixes The following bugs have been fixed as part of the Anbox Cloud 1.24.2 release. From 1c2a569a74d1a9fb24ee277a894f4476963d52cf Mon Sep 17 00:00:00 2001 From: Keirthana Date: Wed, 15 Jan 2025 11:08:39 +0530 Subject: [PATCH 5/8] Address review comments --- reference/component-versions.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/reference/component-versions.md b/reference/component-versions.md index 84abadf0..7bee24f6 100644 --- a/reference/component-versions.md +++ b/reference/component-versions.md @@ -21,12 +21,12 @@ N/A |----------|--------------|---------| | `ams` | `1.24/stable` | `1.24.2-c816e2633` | | `aar` | `1.24/stable` | `1.24.2-c816e2633` | -| `amc` | `1.24/stable` | `1.24.2-c816e2633` | +| `amc` | `latest/stable` | `1.24.2-c816e2633` | | `ams-node-controller` (Deprecated) | `1.24/stable` | `1.24.2-c816e2633` | | `anbox-cloud-dashboard` | `1.24/stable` | `1.24.2-c816e2633` | | `anbox-stream-agent` | `1.24/stable` | `1.24.2-c816e2633` | | `anbox-stream-gateway` | `1.24/stable` | `1.24.2-c816e2633` | -| `anbox-connect` | `1.24/stable` | `1.24.2-c816e2633` | +| `anbox-connect` | `latest/stable` | `1.24.2-c816e2633` | | `anbox-cloud-appliance` | `1.24/stable` | `1.24.2-c816e2633` | ### Anbox images From 877e420a37db3c5ce5c37aea02fc2bfca8e4bb4b Mon Sep 17 00:00:00 2001 From: Keirthana Date: Wed, 15 Jan 2025 16:10:44 +0530 Subject: [PATCH 6/8] Add bug fix --- reference/release-notes/1.24.2.md | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/reference/release-notes/1.24.2.md b/reference/release-notes/1.24.2.md index 4c4e56ac..aa5bc7a6 100644 --- a/reference/release-notes/1.24.2.md +++ b/reference/release-notes/1.24.2.md @@ -28,7 +28,7 @@ There are no new deprecations announced for 1.24.2. For the list of features or The following are known issues with the 1.24.2 release and we are working towards fixing them for the next release: * The [out-of-band v2](https://documentation.ubuntu.com/anbox-cloud/en/latest/howto/stream/exchange-oob-data/) feature does not work when VM images are in use because of strict system hardening security directives. These directives cause the `anbox-webrtc-data-proxy` unit to fail to start. For more information, see [LP 2093887](https://bugs.launchpad.net/anbox-cloud/+bug/2093887). -* The [Android security bulletin](https://source.android.com/docs/security/bulletin/2025-01-01) does not have all the security patch details. So we are unable to validate if all the patches are included in our current release. The CVE section lists as much detail as possible to identify the details of included patches. +* The [Android security bulletin](https://source.android.com/docs/security/bulletin/2025-01-01) does not have information about all the security patches. So we are unable to validate if all the patches are included in our current release. The CVE section lists as much information as possible to identify the which patches are included. ## CVEs @@ -66,6 +66,7 @@ The following bugs have been fixed as part of the Anbox Cloud 1.24.2 release. ``` * [LP 2089822](https://bugs.launchpad.net/anbox-cloud/+bug/2089822) Unable to modify the vehicle property value even if the VHAL service implements the Anbox-specific HIDL interface. * [LP 2088310](https://bugs.launchpad.net/anbox-cloud/+bug/2088310) Rendering does not work for AMD and Intel GPUs. For deployments that use AMD GPUs, the instance does not start and for deployments using Intel GPUs, the graphical output is incorrect. +* [LP 2089754](https://bugs.launchpad.net/anbox-cloud/+bug/2089754) API documentation is corrected to contain information about the `DELETE /1.0/applications` endpoint. ## Upgrade instructions From ed9df4a2c442c0acd8e2b2863ffb7c772432fc46 Mon Sep 17 00:00:00 2001 From: Keirthana Date: Wed, 15 Jan 2025 16:31:20 +0530 Subject: [PATCH 7/8] Update CVE information --- reference/release-notes/1.24.2.md | 6 ------ 1 file changed, 6 deletions(-) diff --git a/reference/release-notes/1.24.2.md b/reference/release-notes/1.24.2.md index aa5bc7a6..751fddd3 100644 --- a/reference/release-notes/1.24.2.md +++ b/reference/release-notes/1.24.2.md @@ -28,7 +28,6 @@ There are no new deprecations announced for 1.24.2. For the list of features or The following are known issues with the 1.24.2 release and we are working towards fixing them for the next release: * The [out-of-band v2](https://documentation.ubuntu.com/anbox-cloud/en/latest/howto/stream/exchange-oob-data/) feature does not work when VM images are in use because of strict system hardening security directives. These directives cause the `anbox-webrtc-data-proxy` unit to fail to start. For more information, see [LP 2093887](https://bugs.launchpad.net/anbox-cloud/+bug/2093887). -* The [Android security bulletin](https://source.android.com/docs/security/bulletin/2025-01-01) does not have information about all the security patches. So we are unable to validate if all the patches are included in our current release. The CVE section lists as much information as possible to identify the which patches are included. ## CVEs @@ -48,11 +47,6 @@ The Anbox Cloud 1.24.2 release includes fixes from the respective upstreams and | [CVE-2024-49733](https://source.android.com/docs/security/bulletin/2025-01-01) | Android 12, 13, 14 | | [CVE-2024-49742](https://source.android.com/docs/security/bulletin/2025-01-01) | Android 12, 13, 14 | | [CVE-2024-49737](https://source.android.com/docs/security/bulletin/2025-01-01) | Android 13, 14 | - -The security patches for the following CVEs are not included in the 1.24.2 release since we are waiting for disclosure from upstream: - -| CVE | Affected Components | -|-----|---------------------| | [CVE-2024-49724](https://source.android.com/docs/security/bulletin/2025-01-01) | Android 12, 13, 14 | ## Bug fixes From 241cbf203ce8b94a0aee3cc989c67ac541449df1 Mon Sep 17 00:00:00 2001 From: Keirthana Date: Wed, 15 Jan 2025 18:41:56 +0530 Subject: [PATCH 8/8] List all CVEs as per Android security bulletin --- reference/release-notes/1.24.2.md | 20 +++++++++++++++++--- 1 file changed, 17 insertions(+), 3 deletions(-) diff --git a/reference/release-notes/1.24.2.md b/reference/release-notes/1.24.2.md index 751fddd3..f1a89792 100644 --- a/reference/release-notes/1.24.2.md +++ b/reference/release-notes/1.24.2.md @@ -40,14 +40,28 @@ The Anbox Cloud 1.24.2 release includes fixes from the respective upstreams and | [CVE-2024-6219](https://nvd.nist.gov/vuln/detail/CVE-2024-6219) | AMS | | [CVE-2024-45337](https://nvd.nist.gov/vuln/detail/CVE-2024-45337) | AMS, Anbox runtime | | [CVE-2024-45338](https://nvd.nist.gov/vuln/detail/CVE-2024-45338) | AMS, Anbox runtime | -| [CVE-2024-49749](https://source.android.com/docs/security/bulletin/2025-01-01) | Android 12, 13, 14 | +| [CVE-2024-49724](https://source.android.com/docs/security/bulletin/2025-01-01) | Android 12, 13, 14 | +| [CVE-2024-49737](https://source.android.com/docs/security/bulletin/2025-01-01) | Android 13, 14 | | [CVE-2024-49738](https://source.android.com/docs/security/bulletin/2025-01-01) | Android 12, 13, 14 | | [CVE-2024-49744](https://source.android.com/docs/security/bulletin/2025-01-01) | Android 12, 13, 14 | | [CVE-2024-49745](https://source.android.com/docs/security/bulletin/2025-01-01) | Android 12, 13, 14 | +| [CVE-2023-40108](https://source.android.com/docs/security/bulletin/2025-01-01) | Android 12, 13, 14 | | [CVE-2024-49733](https://source.android.com/docs/security/bulletin/2025-01-01) | Android 12, 13, 14 | +| [CVE-2023-40132](https://source.android.com/docs/security/bulletin/2025-01-01) | Android 12, 13, 14 | +| [CVE-2024-43096](https://source.android.com/docs/security/bulletin/2025-01-01) | Android 12, 13, 14 | +| [CVE-2024-43770](https://source.android.com/docs/security/bulletin/2025-01-01) | Android 12, 13, 14 | +| [CVE-2024-43771](https://source.android.com/docs/security/bulletin/2025-01-01) | Android 12, 13, 14 | +| [CVE-2024-49747](https://source.android.com/docs/security/bulletin/2025-01-01) | Android 12, 13, 14 | +| [CVE-2024-49748](https://source.android.com/docs/security/bulletin/2025-01-01) | Android 12, 13, 14 | +| [CVE-2024-49749](https://source.android.com/docs/security/bulletin/2025-01-01) | Android 12, 13, 14 | +| [CVE-2024-34722](https://source.android.com/docs/security/bulletin/2025-01-01) | Android 12, 13, 14 | +| [CVE-2024-34730](https://source.android.com/docs/security/bulletin/2025-01-01) | Android 12, 13, 14 | +| [CVE-2024-43095](https://source.android.com/docs/security/bulletin/2025-01-01) | Android 12, 13, 14 | +| [CVE-2024-43765](https://source.android.com/docs/security/bulletin/2025-01-01) | Android 12, 13, 14 | | [CVE-2024-49742](https://source.android.com/docs/security/bulletin/2025-01-01) | Android 12, 13, 14 | -| [CVE-2024-49737](https://source.android.com/docs/security/bulletin/2025-01-01) | Android 13, 14 | -| [CVE-2024-49724](https://source.android.com/docs/security/bulletin/2025-01-01) | Android 12, 13, 14 | +| [CVE-2024-49734](https://source.android.com/docs/security/bulletin/2025-01-01) | Android 14 | +| [CVE-2024-43763](https://source.android.com/docs/security/bulletin/2025-01-01) | Android 12, 13, 14 | +| [CVE-2024-49736](https://source.android.com/docs/security/bulletin/2025-01-01) | Android 12, 13, 14 | ## Bug fixes