1.24.2
These release notes cover new features and changes in Anbox Cloud 1.24.2.
Anbox Cloud 1.24.2 is a patch release. To understand minor and patch releases, see Release notes.
Please see Component versions for a list of updated components.
Requirements
See Requirements for details on general and deployment specific requirements to run Anbox Cloud.
New features
- The
anbox-cloud-appliance config showcommand lists the available endpoints and their URLs. - Android security updates for January 2025 (see Android Security Bulletin - January 2025 for more information).
- The Android WebView has been updated to 131.0.6778.200.
Deprecations
There are no new deprecations announced for 1.24.2. For the list of features or components that were deprecated earlier and are planned to be removed in future releases, see deprecation notices.
Known issues
The following are known issues with the 1.24.2 release and we are working towards fixing them for the next release:
- The out-of-band v2 feature does not work when VM images are in use because of strict system hardening security directives. These directives cause the
anbox-webrtc-data-proxyunit to fail to start. For more information, see LP 2093887.
CVEs
The Anbox Cloud 1.24.2 release includes fixes from the respective upstreams and components for the following CVEs:
| CVE | Affected Components |
|---|---|
| CVE-2024-55565 | Anbox Cloud dashboard |
| CVE-2024-6156 | AMS |
| CVE-2024-6219 | AMS |
| CVE-2024-45337 | AMS, Anbox runtime |
| CVE-2024-45338 | AMS, Anbox runtime |
| CVE-2024-49724 | Android 12, 13, 14 |
| CVE-2024-49737 | Android 13, 14 |
| CVE-2024-49738 | Android 12, 13, 14 |
| CVE-2024-49744 | Android 12, 13, 14 |
| CVE-2024-49745 | Android 12, 13, 14 |
| CVE-2023-40108 | Android 12, 13, 14 |
| CVE-2024-49733 | Android 12, 13, 14 |
| CVE-2023-40132 | Android 12, 13, 14 |
| CVE-2024-43096 | Android 12, 13, 14 |
| CVE-2024-43770 | Android 12, 13, 14 |
| CVE-2024-43771 | Android 12, 13, 14 |
| CVE-2024-49747 | Android 12, 13, 14 |
| CVE-2024-49748 | Android 12, 13, 14 |
| CVE-2024-49749 | Android 12, 13, 14 |
| CVE-2024-34722 | Android 12, 13, 14 |
| CVE-2024-34730 | Android 12, 13, 14 |
| CVE-2024-43095 | Android 12, 13, 14 |
| CVE-2024-43765 | Android 12, 13, 14 |
| CVE-2024-49742 | Android 12, 13, 14 |
| CVE-2024-49734 | Android 14 |
| CVE-2024-43763 | Android 12, 13, 14 |
| CVE-2024-49736 | Android 12, 13, 14 |
Bug fixes
The following bugs have been fixed as part of the Anbox Cloud 1.24.2 release.
- LP 2092393 Android system settings are sometimes not persistent after bootstrapping of an application.
- LP 2092447 When setting up an ADB connection against local Anbox Cloud appliance using
anbox-connect, the connection could not be established. This issue occurred sporadically and when it did, the following error could be observed in theanbox-adb-proxysystem unit:
Failed to establish peer connection: dial unix /run/user/1000/anbox/adb/data_xxxxxxxxxx: connect: connection refused
- LP 2089822 Unable to modify the vehicle property value even if the VHAL service implements the Anbox-specific HIDL interface.
- LP 2088310 Rendering does not work for AMD and Intel GPUs. For deployments that use AMD GPUs, the instance does not start and for deployments using Intel GPUs, the graphical output is incorrect.
- LP 2089754 API documentation is corrected to contain information about the
DELETE /1.0/applicationsendpoint.
Upgrade instructions
See How to upgrade Anbox Cloud and How to upgrade the Anbox Cloud Appliance for instructions on how to update your Anbox Cloud deployment to the 1.24.2 release.