CVE-2016-6872
https://notcve.org/view.php?id=CVE-2016-6872
Integer overflow in StringUtil::implode in Facebook HHVM before 3.15.0 allows attackers to have unspecified impact via unknown vectors. Desbordamiento de enteros en StringUtil::implosion en Facebook HHVM en versiones anteriores a 3.15.0 permite a atacantes tener un impacto no especificado a través de vectores desconocidos. • http://www.openwall.com/lists/oss-security/2016/08/11/1 http://www.openwall.com/lists/oss-security/2016/08/19/1 https://github.com/facebook/hhvm/commit/2c9a8fcc73a151608634d3e712973d192027c271 • CWE-190: Integer Overflow or Wraparound •
CVE-2016-6874
https://notcve.org/view.php?id=CVE-2016-6874
The array_*_recursive functions in Facebook HHVM before 3.15.0 allows attackers to have unspecified impact via unknown vectors, related to recursion. Las funciones array_*_ recursive en Facebook HHVM en versiones anteriores a 3.15.0 permite a atacantes tener un impacto no especificado a través de vectores desconocidos, relacionados con la recursividad. • http://www.openwall.com/lists/oss-security/2016/08/11/1 http://www.openwall.com/lists/oss-security/2016/08/19/1 https://github.com/facebook/hhvm/commit/05e706d98f748f609b19d8697e490eaab5007d69 •
CVE-2016-6875
https://notcve.org/view.php?id=CVE-2016-6875
Infinite recursion in wddx in Facebook HHVM before 3.15.0 allows attackers to have unspecified impact via unknown vectors. Recursividad infinita en wddx en Facebook HHVM en versiones anteriores a 3.15.0 permite a los atacantes tener un impacto no especificado a través de vectores desconocidos. • http://www.openwall.com/lists/oss-security/2016/08/11/1 http://www.openwall.com/lists/oss-security/2016/08/19/1 https://github.com/facebook/hhvm/commit/1888810e77b446a79a7674784d5f139fcfa605e2 •