CVE-2017-15316
published 2017-12-22CVE-2017-15316: The GPU driver of Mate 9 Huawei smart phones with software before MHA-AL00B 8.0.0.334(C00) and Mate 9 Pro Huawei smart phones with software before LON-AL00B…
high7.8CVSS 3.0
AVLACLPRNUIRSUCHIHAH
The GPU driver of Mate 9 Huawei smart phones with software before MHA-AL00B 8.0.0.334(C00) and Mate 9 Pro Huawei smart phones with software before LON-AL00B 8.0.0.334(C00) has a memory double free vulnerability. An attacker tricks a user into installing a malicious application, and the application can call special API, which triggers double free and causes a system crash or arbitrary code execution.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| huawei | mate_9_firmware | < mha-al00b_8.0.0.334\(c00\) | mha-al00b_8.0.0.334\(c00\) |
| huawei | mate_9_pro_firmware | < lon-al00b_8.0.0.334\(c00\) | lon-al00b_8.0.0.334\(c00\) |
| huawei_technologies_co_ltd | mate_9 | — | — |
| huawei_technologies_co_ltd | mate_9_pro | — | — |