15 matches found
EUVD-2021-10945
Malware in sbrugna...
CVE-2021-24025
Due to incorrect string size calculations inside the pregquote function, a large input string passed to the function can trigger an integer overflow leading to a heap overflow. This issue affects HHVM versions prior to 4.56.3, all versions between 4.57.0 and 4.80.1, all versions between 4.81.0 an...
SUSE CVE-2010-1915
The pregquote function in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allows context-dependent attackers to obtain sensitive information memory contents by causing a userspace interruption of an internal function, related to the call time pass by reference feature, modification of ZVALs whose...
CVE-2021-24025
Due to incorrect string size calculations inside the pregquote function, a large input string passed to the function can trigger an integer overflow leading to a heap overflow. This issue affects HHVM versions prior to 4.56.3, all versions between 4.57.0 and 4.80.1, all versions between 4.81.0 an...
UBUNTU-CVE-2021-24025
Due to incorrect string size calculations inside the pregquote function, a large input string passed to the function can trigger an integer overflow leading to a heap overflow. This issue affects HHVM versions prior to 4.56.3, all versions between 4.57.0 and 4.80.1, all versions between 4.81.0 an...
Integer overflow
Due to incorrect string size calculations inside the pregquote function, a large input string passed to the function can trigger an integer overflow leading to a heap overflow. This issue affects HHVM versions prior to 4.56.3, all versions between 4.57.0 and 4.80.1, all versions between 4.81.0 an...
CVE-2021-24025
The CVE-2021-24025 issue is an overflow in HHVM’s preg_quote handling caused by incorrect string size calculations, leading to a heap overflow. Affected are HHVM versions prior to 4.56.3, all releases 4.57.0–4.80.1, 4.81.0–4.93.1, and 4.94.0–4.98.0. The vulnerability is documented across multiple...
Katy Voor HHVM 输入验证错误漏洞
Katy Voor HHVM is an open source application by Katy Voor. Provides an open source virtual machine designed to execute programs written in Hack. A security vulnerability exists in HHVM that stems from an incorrect string size calculation in the pregquote function, where a large input string passe...
PHP 5.2.x<5.2.13,5.3.x<5.3.3 preg_quote函数信息泄漏漏洞
No description provided by source...
CVE-2010-1915
The pregquote function in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allows context-dependent attackers to obtain sensitive information memory contents by causing a userspace interruption of an internal function, related to the call time pass by reference feature, modification of ZVALs whose...
Design/Logic Flaw
The pregquote function in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allows context-dependent attackers to obtain sensitive information memory contents by causing a userspace interruption of an internal function, related to the call time pass by reference feature, modification of ZVALs whose...
CVE-2010-1915
The CVE-2010-1915 vulnerability concerns PHP’s preg_quote() in PHP 5.2.x and 5.3.x before certain updates, where context-dependent attackers could leak memory contents via interruptions of internal functions related to call-time pass by reference, ZVAL handling, and use-after-free scenarios. Publ...
CVE-2010-1915
The pregquote function in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allows context-dependent attackers to obtain sensitive information memory contents by causing a userspace interruption of an internal function, related to the call time pass by reference feature, modification of ZVALs whose...
preg_quote() Interruption Information Leak Vulnerability
pregquote Interruption Information Leak Vulnerability May 9th, 2010 PHP’s pregquote function can be abused for information leak attacks, because of the call time pass by reference feature. Affected versions Affected is PHP 5.2 = 5.2.13 Affected is PHP 5.3 = 5.3.2 Credits The vulnerability was...
Month of PHP Security - Summary - 1st May - 10th May
Hi everyone, 10 days ago the Month of PHP Security 2010 has started at http://www.php-security.org/ and meanwhile 20 vulnerabilities were posted and also 4 user submitted articles were published. Here is a short summary of what was released so far. You can follow the Month of PHP Security on...