PT-2017-13993 · Huawei · Huawei Mate 9+1

Published

2017-12-22

Updated

2018-06-08

CVE-2017-15316

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Huawei Mate 9 versions before 8.0.0.334(C00) Huawei Mate 9 Pro versions before 8.0.0.334(C00)

Description The issue is related to a memory double free vulnerability in the GPU driver. An attacker can trick a user into installing a malicious application, which can then call a special API to trigger the double free, potentially causing a system crash or allowing for arbitrary code execution.

Recommendations For Huawei Mate 9 versions before 8.0.0.334(C00), update to version 8.0.0.334(C00) or later to resolve the issue. For Huawei Mate 9 Pro versions before 8.0.0.334(C00), update to version 8.0.0.334(C00) or later to resolve the issue.

Fix

Double Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-415

Related Identifiers

CVE-2017-15316

ZDI-17-1017

Affected Products

Huawei Mate 9

Huawei Mate 9 Pro

PT-2017-13993 · Huawei · Huawei Mate 9+1

CVE-2017-15316

Weakness Enumeration

Related Identifiers

Affected Products

References · 4