Security Advisory - Memory Leak Vulnerability in Some Huawei Products

Type huawei
Reporter Huawei Technologies
Modified 2017-12-01T00:00:00


Some Huawei products have a memory leak vulnerability. An unauthenticated attacker may send specific Resource ReServation Protocol (RSVP) packets to the affected products. Due to not release the memory to handle the packets, successful exploit will result in memory leak of the affected products and lead to a DoS condition. (Vulnerability ID: HWPSIRT-2017-02032) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2017-15349. Huawei has released software updates to fix this vulnerability. This advisory is available at the following link: