CVE-2018-7899

Name of the Vulnerable Software and Affected Versions: Huawei Berkeley-AL20 versions 8.0.0.105(C00) through 8.0.0.151(C00) Huawei Berkeley-BD versions 1.0.0.21 through 1.0.0.29

Description: The issue is related to a double free vulnerability in the Mali Driver. An attacker can exploit this by tricking a user into installing a malicious application, which can then be used to exploit the vulnerability during exception handling. Successful exploitation may cause the system to reboot.

Recommendations: For Huawei Berkeley-AL20 versions 8.0.0.105(C00) through 8.0.0.151(C00), update to a version that contains a fix for this issue. For Huawei Berkeley-BD versions 1.0.0.21 through 1.0.0.29, update to a version that contains a fix for this issue. As a temporary workaround, consider restricting the installation of applications from untrusted sources to minimize the risk of exploitation.