PT-2019-7500 · Facebook · Hhvm

Publicado

2019-11-19

Atualizado

2019-11-21

CVE-2016-1000006

CVSS v3.1

9.8

Crítica

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions hhvm versions prior to 3.12.11

Description The issue is related to a use-after-free in the serialize memoize param() and ResourceBundle:: construct() functions.

Recommendations For versions prior to 3.12.11, update to version 3.12.11 or later to resolve the issue.

Correção

Use After Free

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

CVE-2016-1000006

Hhvm