Insufficient boundary checks when decoding JSON in handleBackslash reads out of bounds memory, potentially leading to DOS. This issue affects HHVM 4.45.0, 4.44.0, 4.43.0, 4.42.0, 4.41.0, 4.40.0, 4.39.0, versions between 4.33.0 and 4.38.0 (inclusive), versions between 4.9.0 and 4.32.0 (inclusive), and versions before 4.8.7.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
facebook hhvm |
||
facebook hhvm 4.39.0 |
||
facebook hhvm 4.40.0 |
||
facebook hhvm 4.41.0 |
||
facebook hhvm 4.42.0 |
||
facebook hhvm 4.43.0 |
||
facebook hhvm 4.44.0 |
||
facebook hhvm 4.45.0 |