Security Notice - Statement on the MTK Local Privilege Escalation Vulnerability Mentioned at the GeekPwn Conference
- Initial Release Date: 2016.10.24
- Last Release Date: 2016.12.16
Huawei noticed that a security researcher from Chaitin Technology demonstrated a local privilege escalation vulnerability on the MTK platform using a Huawei Enjoy mobile phone at Shang Hai GeekPwn Conference on October 24, 2016. Huawei immediately launched an investigation.
Huawei has finished investigation and analysis, confirmed that some Huawei smart phone are affected by the vulnerabilities. Huawei has delivered Security Advisory. The link of the security advisory is:
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161216-01-smartphone-en
2016-12-16 FINAL
2016-10-24 INITIAL
Huawei adheres to protecting the ultimate interests of users with best efforts and the principle of responsible disclosure and deal with product security issues through our response mechanism.
To enjoy Huawei PSIRT services and obtain Huawei product vulnerability information, please visit http://www.huawei.com/en/psirt.
To report a security vulnerability in Huawei products and solutions, please send it to PSIRT@huawei.com. For details, please visit http://www.huawei.com/en/psirt/report-vulnerabilities.