Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The function number_format is vulnerable to a heap overflow issue when its second argument ($dec_points) is excessively large. The internal implementation of the function will cause a string to be created with an invalid length, which can then interact poorly with other functions. This affects all supported versions of HHVM (3.30.1 and 3.27.5 and below).
CVSS Information
N/A
Vulnerability Type
堆缓冲区溢出
Vulnerability Title
Facebook HHVM 缓冲区错误漏洞
Vulnerability Description
Facebook HHVM(又名HipHop Virtual Machine)是美国Facebook公司的一款能够显著提高PHP加载动态页面性能的虚拟机。 Facebook HHVM 3.30.1及之前版本和3.27.5及之前版本中的‘number_format’函数存在堆溢出漏洞。攻击者可利用该漏洞损坏数据。
CVSS Information
N/A
Vulnerability Type
N/A