1.24.2

These release notes cover new features and changes in Anbox Cloud 1.24.2.

Anbox Cloud 1.24.2 is a patch release. To understand minor and patch releases, see Release notes.

Please see Component versions for a list of updated components.

Requirements

See Requirements for details on general and deployment specific requirements to run Anbox Cloud.

New features

  • The anbox-cloud-appliance config show command lists the available endpoints and their URLs.

  • Android security updates for January 2025 (see Android Security Bulletin - January 2025 for more information).

  • The Android WebView has been updated to 131.0.6778.200.

Deprecations

There are no new deprecations announced for 1.24.2. For the list of features or components that were deprecated earlier and are planned to be removed in future releases, see deprecation notices.

Known issues

The following are known issues with the 1.24.2 release and we are working towards fixing them for the next release:

  • The out-of-band v2 feature does not work when VM images are in use because of strict system hardening security directives. These directives cause the anbox-webrtc-data-proxy unit to fail to start. For more information, see LP 2093887.

CVEs

The Anbox Cloud 1.24.2 release includes fixes from the respective upstreams and components for the following CVEs:

CVE

Affected Components

CVE-2024-55565

Anbox Cloud dashboard

CVE-2024-6156

AMS

CVE-2024-6219

AMS

CVE-2024-45337

AMS, Anbox runtime

CVE-2024-45338

AMS, Anbox runtime

CVE-2024-49724

Android 12, 13, 14

CVE-2024-49737

Android 13, 14

CVE-2024-49738

Android 12, 13, 14

CVE-2024-49744

Android 12, 13, 14

CVE-2024-49745

Android 12, 13, 14

CVE-2023-40108

Android 12, 13, 14

CVE-2024-49733

Android 12, 13, 14

CVE-2023-40132

Android 12, 13, 14

CVE-2024-43096

Android 12, 13, 14

CVE-2024-43770

Android 12, 13, 14

CVE-2024-43771

Android 12, 13, 14

CVE-2024-49747

Android 12, 13, 14

CVE-2024-49748

Android 12, 13, 14

CVE-2024-49749

Android 12, 13, 14

CVE-2024-34722

Android 12, 13, 14

CVE-2024-34730

Android 12, 13, 14

CVE-2024-43095

Android 12, 13, 14

CVE-2024-43765

Android 12, 13, 14

CVE-2024-49742

Android 12, 13, 14

CVE-2024-49734

Android 14

CVE-2024-43763

Android 12, 13, 14

CVE-2024-49736

Android 12, 13, 14

Bug fixes

The following bugs have been fixed as part of the Anbox Cloud 1.24.2 release.

  • LP 2092393 Android system settings are sometimes not persistent after bootstrapping of an application.

  • LP 2092447 When setting up an ADB connection against local Anbox Cloud appliance using anbox-connect, the connection could not be established. This issue occurred sporadically and when it did, the following error could be observed in the anbox-adb-proxy system unit:

    Failed to establish peer connection: dial unix /run/user/1000/anbox/adb/data_xxxxxxxxxx: connect: connection refused

  • LP 2089822 Unable to modify the vehicle property value even if the VHAL service implements the Anbox-specific HIDL interface.

  • LP 2088310 Rendering does not work for AMD and Intel GPUs. For deployments that use AMD GPUs, the instance does not start and for deployments using Intel GPUs, the graphical output is incorrect.

  • LP 2089754 API documentation is corrected to contain information about the DELETE /1.0/applications endpoint.

Upgrade instructions

See How to upgrade Anbox Cloud and How to upgrade the Anbox Cloud Appliance for instructions on how to update your Anbox Cloud deployment to the 1.24.2 release.