Security Notice - Statement on Venustech Revealing Heap Overflow Vulnerability in Huawei Smart Phone
- Initial Release Date: Nov 04, 2015
- Last Release Date: Dec 15, 2015
Huawei was notified about information released by Venustech ADLab’s Hou Haojun and Zhang Ruizhi regarding security vulnerability in Huawei Mate7 smart phone at the CSS (Cyber Security Summit) conference held on November 4th, 2015.
The researchers have sent the vulnerability information to Huawei PSIRT (PSIRT@huawei.com) before disclosing the information. Huawei immediately started investigation and analysis and released the fix version for Mate7.
Huawei has delivered Security Advisory, The link of the security advisory is:
http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-460347.htm
Here, we express our appreciation for ADLab’s concerns on Huawei products.
2015-12-15 V1.3 FINAL
2015-11-09 V1.2 UPDATED added appreciation to ADLab
2015-11-05 V1.1 UPDATED updated the speakers information
2015-11-04 V1.0 INITIAL
Huawei adheres to protecting the ultimate interests of users with best efforts and the principle of responsible disclosure and deal with product security issues through our response mechanism. Please report to Huawei PSIRT at psirt@huawei.com if you find any security vulnerability of Huawei products.
