Security Advisory

CVE-2019-11930

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-12-04 16:25:19

Last updated 2024-08-04 23:10:29

Assigner facebook

State PUBLISHED

Description

An invalid free in mb_detect_order can cause the application to crash or potentially result in remote code execution. This issue affects HHVM versions prior to 3.30.12, all versions between 4.0.0 and 4.8.5, all versions between 4.9.0 and 4.23.1, as well as 4.24.0, 4.25.0, 4.26.0, 4.27.0, 4.28.0, and 4.28.1.

← Browse all CVEs View on cve.org ↗