What is CVE-2017-17227?

CVE-2017-17227 is a vulnerability in the GPU driver in Huawei Mate 10 smartphones.

What is the severity of CVE-2017-17227?

CVE-2017-17227 has a severity rating of 7.8, which is classified as critical.

How does CVE-2017-17227 affect Huawei Mate 10 smartphones?

CVE-2017-17227 affects Huawei Mate 10 smartphones with versions before ALP-L09 8.0.0.120(C212), ALP-L09 8.0.0.127(C900), and ALP-L09 8.0.0.128(402/C02/C109/C346/C432/C652).

What is the vulnerability in CVE-2017-17227?

CVE-2017-17227 is an out-of-bounds memory access vulnerability in the GPU driver of Huawei Mate 10 smartphones.

Is there a fix for CVE-2017-17227?

Huawei has released a security advisory with a fix for CVE-2017-17227. Please refer to the official Huawei website for more information.

Vulnerability/
CVE-2017-17227

critical

9.3

CWE

125 787

9/3/2018

26/3/2018

CVE-2017-17227

First published: Fri Mar 09 2018(Updated: )

GPU driver in Huawei Mate 10 smart phones with the versions before ALP-L09 8.0.0.120(C212); The versions before ALP-L09 8.0.0.127(C900); The versions before ALP-L09 8.0.0.128(402/C02/C109/C346/C432/C652) has a out-of-bounds memory access vulnerability due to the input parameters validation. An attacker tricks a user into installing a malicious application on the smart phone, and the application can call the driver with special parameter and cause accessing out-of-bounds memory. Successful exploit may result in phone crash or arbitrary code execution.

Credit: psirt@huawei.com

Affected Software	Affected Version	How to fix
Huawei Mate 10 Firmware	<alp-l09_8.0.0.120\(c212\)
Huawei Mate 10
Huawei Mate 10 Firmware	<alp-l09_8.0.0.127\(c900\)
Huawei Mate 10 Firmware	<alp-l09_8.0.0.128\(402\)
Huawei Mate 10 Firmware	<alp-l09_8.0.0.128\(c02\)
Huawei Mate 10 Firmware	<alp-l09_8.0.0.128\(c109\)
Huawei Mate 10 Firmware	<alp-l09_8.0.0.128\(c346\)
Huawei Mate 10 Firmware	<alp-l09_8.0.0.128\(c432\)
Huawei Mate 10 Firmware	<alp-l09_8.0.0.128\(c652\)

Never miss a vulnerability like this again

Reference Links

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180207-01-smartphone-en

Frequently Asked Questions

What is CVE-2017-17227?
CVE-2017-17227 is a vulnerability in the GPU driver in Huawei Mate 10 smartphones.
What is the severity of CVE-2017-17227?
CVE-2017-17227 has a severity rating of 7.8, which is classified as critical.
How does CVE-2017-17227 affect Huawei Mate 10 smartphones?
CVE-2017-17227 affects Huawei Mate 10 smartphones with versions before ALP-L09 8.0.0.120(C212), ALP-L09 8.0.0.127(C900), and ALP-L09 8.0.0.128(402/C02/C109/C346/C432/C652).
What is the vulnerability in CVE-2017-17227?
CVE-2017-17227 is an out-of-bounds memory access vulnerability in the GPU driver of Huawei Mate 10 smartphones.
Is there a fix for CVE-2017-17227?
Huawei has released a security advisory with a fix for CVE-2017-17227. Please refer to the official Huawei website for more information.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.