CVE-2018-7899
Description
The Mali Driver of Huawei Berkeley-AL20 and Berkeley-BD smart phones with software Berkeley-AL20 8.0.0.105(C00), 8.0.0.111(C00), 8.0.0.112D(C00), 8.0.0.116(C00), 8.0.0.119(C00), 8.0.0.119D(C00), 8.0.0.122(C00), 8.0.0.132(C00), 8.0.0.132D(C00), 8.0.0.142(C00), 8.0.0.151(C00), Berkeley-BD 1.0.0.21, 1.0.0.22, 1.0.0.23, 1.0.0.24, 1.0.0.26, 1.0.0.29 has a double free vulnerability. An attacker can trick a user to install a malicious application and exploit this vulnerability when in the exception handling process. Successful exploitation may cause system reboot.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A double free vulnerability in Huawei Berkeley smart phones' Mali Driver allows a local attacker to cause a system reboot via a malicious app.
Vulnerability
The Mali Driver in Huawei Berkeley-AL20 and Berkeley-BD smart phones contains a double free vulnerability that can be triggered during exception handling. Affected Berkeley-AL20 versions include 8.0.0.105(C00) through 8.0.0.151(C00), and Berkeley-BD versions include 1.0.0.21 through 1.0.0.29 [1]. The vulnerability resides in the kernel-level graphics driver, which is reachable when a malicious application triggers the vulnerable code path during an exception processing event.
Exploitation
An attacker must first trick the user into installing a malicious application [1]. No additional privileges or network access are required beyond normal app permissions. Once installed, the malicious app triggers the exception handling process, causing the Mali Driver to free the same memory object twice. The exploitation sequence does not require root access or user interaction beyond the initial installation.
Impact
Successful exploitation of the double free vulnerability leads to memory corruption, which can cause the system to reboot [1]. The impact is a denial of service (availability loss); the advisory does not indicate code execution or privilege escalation.
Mitigation
Huawei released software updates to fix this vulnerability. For Berkeley-AL20, the resolved version is 8.0.0.160(C00); users should upgrade to this or a later version [1]. For Berkeley-BD, the fixed version has not been specified in the available references; users should contact Huawei support or check for updates. The advisory was published on 18 April 2018.
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
3- Range: <=8.0.0.151(C00)
- Range: <=1.0.0.29
- Huawei Technologies Co., Ltd./Berkeley-AL20, Berkeley-BDv5Range: Berkeley-AL20 8.0.0.105(C00), 8.0.0.111(C00), 8.0.0.112D(C00), 8.0.0.116(C00), 8.0.0.119(C00), 8.0.0.119D(C00), 8.0.0.122(C00), 8.0.0.132(C00), 8.0.0.132D(C00), 8.0.0.142(C00), 8.0.0.151(C00), Berkeley-BD 1.0.0.21, 1.0.0.22, 1.0.0.23, 1.0.0.24, 1.0.0.26, 1.0.0.29
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- www.huawei.com/en/psirt/security-advisories/huawei-sa-20180418-01-smartphonemitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.