Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The implementations of streams for bz2 and php://output improperly implemented their readImpl functions, returning -1 consistently. This behavior caused some stream functions, such as stream_get_line, to trigger an out-of-bounds read when operating on such malformed streams. The implementations were updated to return valid values consistently. This affects all supported versions of HHVM (3.30 and 3.27.4 and below).
CVSS Information
N/A
Vulnerability Type
跨界内存读
Vulnerability Title
Facebook HHVM 缓冲区错误漏洞
Vulnerability Description
Facebook HHVM(又名HipHop Virtual Machine)是美国Facebook公司的一款能够显著提高PHP加载动态页面性能的虚拟机。 Facebook HHVM 3.30及之前版本和3.27.4及之前版本中存在越界读取漏洞。目前尚无此漏洞的相关信息,请随时关注CNNVD或厂商公告
CVSS Information
N/A
Vulnerability Type
N/A