This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our private policy>

Security Notice - Statement on Heap Overflow Vulnerability in Code Generated by Objective Systems ASN1C

  • Initial Release Date: 2016-07-22
  • Last Release Date: 2016-07-28

Huawei was notified about the information of heap overflow vulnerability in C/C++ code generated by Objective Systems ASN1C (CVE-2016-5080). Huawei immediately launched a thorough investigation.

The investigation is over, and no Huawei product is currently known as affected by this vulnerability.

2016-07-28 V1.1 FINAL

2016-07-22 V1.0 INITIAL

Huawei adheres to protecting the ultimate interests of users with best efforts and the principle of responsible disclosure and deal with product security issues through our response mechanism.

To enjoy Huawei PSIRT services and obtain Huawei product vulnerability information, please visit http://www.huawei.com/en/psirt
To report a security vulnerability in Huawei products and solutions, please send it to PSIRT@huawei.com. For details, please visit http://www.huawei.com/en/psirt/report-vulnerabilities.