Product name Confidentiality level

STK-LX3 CONFIDENTIAL
Commercial Name
Total 6 pages
HUAWEI Y9 Prime 2019

XXX Software Release Notes Vx.y

Prepared by C Sai Leela WX579335 Date 2020-07-15

Reviewed by utkrisht sahu uwx424389 Date 2020-07-15
Approved by Vishnuraj S vwx513210 Date 2020-07-15

Huawei Technologies Co., Ltd.

All rights reserved

 Revision Record

Date Revision CR ID / Defect ID Section Change Author

日期 Version CR 号 Number Description 作者
修订 修改 修改描述
版本 章节
2019-04-29 2.0 STK-LX3 9.0.1.10(C69E1R1P2) TA Cwx579335
2019-06-14 3.0 STK-LX3 9.0.1.178(C69E2R1P2) MR Cwx579335
2019-07-19 4.0 STK-LX3 9.1.0.217(C69E2R1P2) MR Cwx579335
2019-09-11 5.0 STK-LX3 9.1.0.275(C69E2R1P2) SMR Cwx579335

2019-10-12 6.0 STK-LX3 9.1.0.303(C69E2R1P2) SMR Cwx579335

2019-11-25 7.0 STK-LX3 9.1.0.315(C69E2R1P2) SMR Cwx579335

2019-12-19 8.0 STK-LX3 9.1.0.330(C69E2R1P2) SMR Cwx579335

2020-01-21 9.0 STK-LX3 9.1.0.347(C69E2R1P2) SMR Cwx579335

2020-02-26 10.0 STK-LX3 10.0.0.185(C69E5R1P2) MR Cwx579335

2020/03/27 11.0 STK-LX3 10.0.0.200(C69E5R1P2) SMR SMR team
2020/04/29 12.0 STK-LX3 10.0.0.205(C69E5R1P2) SMR SMR team
2020-05-15 13.0 STK-LX3 10.0.0.215(C69E5R1P2) SMR SMR team
16/06/2020 14.0 STK-LX3 10.0.0.226(C69E5R1P2) SMR SMR Team
15/07/2020 15.0 STK-LX3 10.0.0.261(C69E8R1P2) MR Cwx579335
 Table of Contents
1 Version Description..................................................................................................................4
2 New Features..........................................................................................................................4
3 Improvement from the Previous Version.................................................................................4
4 Known Limitations and Issue...................................................................................................4
5 Software Vulnerabilities Fixes..................................................................................................4
 XXX Software Release Notes Vx.y

CONFIDENTIAL

XXX Software Release Notes Vx.y

Release Notes

Version information description

This document gives an update on the STK-LX3 10.0.0.261(C69E8R1P2)

Software delivery details carried out by Huawei team on STK-LX3 handset

current version STK-LX3 10.0.0.261(C69E8R1P2)
Previous version STK-LX3 10.0.0.226(C69E5R1P2)
Android version Android 10

EMUI version EMUI 10.0.0

Baseband version 21C20B388S000C000

Kernel version 4.14.116

android@localhost #1
Thu Jul 2 17:43:28 CST 2020
Version type MR

1 New Features
Index Case ID Issue Description

1
-- HMS Integrated version

2
- #7 google patches

Page 4
 XXX Software Release Notes Vx.y

CONFIDENTIAL

Index Case ID Issue Description

2 Improvement From the Previous Version

Index Case ID Issue Description

[HTIPL_India] [ Trail ] 10.0 [Stark-L03B
DTS2020060112162 10.0.0.225(C69E7R1P2)] [10/10 ] [VTS_10.0_R3 ] Failure
:VtsTrebleFrameworkVintfTest

3 Known Limitations and Issues

SL No Case ID Issue Description
[HTIPL_TA] [TA] [Stark-L03B
10.0.0.185(C69E5R1P2)_Telcel] [Hicare
DTS2020030549523
application text should be displayed in Spanish
language , When we select language as Spanish
in language setting ]

Fixed /Merged FFR/ VOC/ I care issue

This table lists all the FFR/VOC/Icare issues fixed /merged in this software build, which were identified by FFR
team owner to merge in the build.

Defect
Module DTS ID Description
severity
NA NA NA NA

Page 5
 XXX Software Release Notes Vx.y

CONFIDENTIAL

4 Volte & Vowifi:

VolteMexicoPresent

VoWifiMexicoPresent

5 Software Vulnerabilities Fixes

Vulnerabilities information is available through CVE IDs in NVD (National Vulnerability Database) website:
http://web.nvd.nist.gov/view/vuln/search
#7 Google Security Patch：July 2020
Software/ Version CVE ID Vulnerability Description Impact
Module Description
name
Platform 8.0,8.1,9 CVE-2020-9589 In DecodeImage of The fix is
,10 dng_lossless_jpeg.cpp, there is a possible designed to
out of bounds read due to an incorrect check that the
bounds check. This could lead to remote number of
code execution with no additional columns is valid.
execution privileges needed. User
interaction is not needed for exploitation.
Kernel NA CVE-2019- In input_default_setkeycode of input.c, The fix is
20636 there is a possible out of bounds write designed to add
due to improper input validation. This the missing
could lead to local escalation of privilege bounds checks.
in the kernel with no additional execution
privileges needed. User interaction is not
needed for exploitation.
Platform 10 CVE-2020-0226 In createWithSurfaceParent of The fix is
Client.cpp, there is a possible out of designed to
bounds write due to type confusion. This remove obsolete
could lead to local escalation of privilege logging which
in the graphics server with no additional was vulnerable to
execution privileges needed. User the type
interaction is not needed for exploitation. confusion.
Platform 8.0,8.1,9 CVE-2020-0122 In the permission declaration for The fix is
,10 com.google.android.providers.gsf.permis designed to
sion.WRITE_GSERVICES in restrict the
AndroidManifest.xml, there is a possible WRITE_GSERV
permissions bypass. This could lead to ICES permission
local escalation of privilege with System to signature only.
execution privileges needed. User
interaction is not needed for exploitation.
Platform 8.0,8.1,9 CVE-2020-0224 In FastKeyAccumulator::GetKeysSlow The fix is
,10 of keys.cc, there is a possible out of designed to
bounds write due to type confusion. This ensure that the
could lead to remote code execution object passed to
when processing a proxy configuration RegExpReplace
with no additional execution privileges is an unmodified
needed. User interaction is not needed regexp.
for exploitation.
Page 6
 XXX Software Release Notes Vx.y

CONFIDENTIAL

Platform 10 CVE-2020-0107 In getUiccCardsInfo of The fix is

PhoneInterfaceManager.java, there is a designed to
possible permissions bypass due to check that the
improper input validation. This could calling package
lead to local information disclosure with UID matches the
no additional execution privileges UID of the
needed. User interaction is not needed package name
for exploitation. provided.
Platform 10 CVE-2020-0225 In The fix is
a2dp_vendor_ldac_decoder_decode_pac designed to add
ket of a2dp_vendor_ldac_decoder.cc, the missing
there is a possible out of bounds write length check.
due to a missing bounds check. This
could lead to remote code execution with
no additional execution privileges
needed. User interaction is not needed
for exploitation.
Kernel NA CVE-2018- In i915_gem_execbuffer2_ioctl of The fix is
20669 i915_gem_execbuffer.c, there is a designed to
possible arbitrary kernel memory write validate the
due to a missing validation of a userspace
userspace pointer. This could lead to pointer.
local escalation of privilege with no
additional execution privileges needed.
User interaction is not needed for
exploitation.
Platform 8.0,8.1,9 CVE-2020-0227 In onCommand of The fix is
,10 CompanionDeviceManagerService.java, designed to add a
there is a possible permissions bypass new permission
due to a missing permission check. This and
could lead to local escalation of privilege corresponding
allowing background data usage or permission
launching from the background, with no check.
additional execution privileges needed.
User interaction is not needed for
exploitation.
Software/ Version CVE ID Vulnerability Description Impact
Module Description
name
Kernel NA CVE-2020-8648 In set_selection of selection.c, there is a The fix is
possible memory corruption due to a use designed to add
after free. This could lead to local locking.
escalation of privilege in the kernel with
no additional execution privileges
needed. User interaction is not needed
for exploitation.
Kernel NA CVE-2020-8428 In do_last of namei.c, there is a possible The fix is
information disclosure due to a double designed to cache
free. This could lead to local information the required data
disclosure with no additional execution before it is freed.
privileges needed. User interaction is not
needed for exploitation.

Page 7