CVE-2019-11930
published 2019-12-04CVE-2019-11930: An invalid free in mb_detect_order can cause the application to crash or potentially result in remote code execution. This issue affects HHVM versions prior to…
PriorityP358critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
3.25%
86.8th percentile
An invalid free in mb_detect_order can cause the application to crash or potentially result in remote code execution. This issue affects HHVM versions prior to 3.30.12, all versions between 4.0.0 and 4.8.5, all versions between 4.9.0 and 4.23.1, as well as 4.24.0, 4.25.0, 4.26.0, 4.27.0, 4.28.0, and 4.28.1.
Affected
25 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| hhvm | < 3.30.12 | 3.30.12 | |
| hhvm | — | — | |
| hhvm | — | — | |
| hhvm | — | — | |
| hhvm | — | — | |
| hhvm | — | — | |
| hhvm | — | — | |
| hhvm | — | — | |
| hhvm | — | — | |
| hhvm | — | — | |
| hhvm | — | — | |
| hhvm | — | — | |
| hhvm | — | — | |
| hhvm | — | — | |
| hhvm | — | — | |
| hhvm | >= 4.0.0 < unspecified | unspecified | |
| hhvm | 4.0.0 – 4.8.5 | — | |
| hhvm | >= 4.24.0 < unspecified | unspecified | |
| hhvm | >= 4.25.0 < unspecified | unspecified | |
| hhvm | >= 4.26.0 < unspecified | unspecified | |
| hhvm | >= 4.27.0 < unspecified | unspecified | |
| hhvm | >= 4.28.0 < unspecified | unspecified | |
| hhvm | >= 4.9.0 < unspecified | unspecified | |
| hhvm | 4.9.0 – 4.23.1 | — | |
| hhvm | >= unspecified < 3.30.12 | 3.30.12 |
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv9.8CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-5h4f-x39p-f6v8: An invalid free in mb_detect_order can cause the application to crash or potentially result in remote code execution
ghsa_unreviewed·2022-05-24
CVE-2019-11930 [HIGH] CWE-763 GHSA-5h4f-x39p-f6v8: An invalid free in mb_detect_order can cause the application to crash or potentially result in remote code execution
An invalid free in mb_detect_order can cause the application to crash or potentially result in remote code execution. This issue affects HHVM versions prior to 3.30.12, all versions between 4.0.0 and 4.8.5, all versions between 4.9.0 and 4.23.1, as well as 4.24.0, 4.25.0, 4.26.0, 4.27.0, 4.28.0, and 4.28.1.
OSV
CVE-2019-11930: An invalid free in mb_detect_order can cause the application to crash or potentially result in remote code execution
osv·2019-12-04·CVSS 9.8
CVE-2019-11930 [CRITICAL] CVE-2019-11930: An invalid free in mb_detect_order can cause the application to crash or potentially result in remote code execution
An invalid free in mb_detect_order can cause the application to crash or potentially result in remote code execution. This issue affects HHVM versions prior to 3.30.12, all versions between 4.0.0 and 4.8.5, all versions between 4.9.0 and 4.23.1, as well as 4.24.0, 4.25.0, 4.26.0, 4.27.0, 4.28.0, and 4.28.1.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
CWE
Release of Invalid Pointer or Reference
mitre_cwe
CWE-763 Release of Invalid Pointer or Reference
CWE-763: Release of Invalid Pointer or Reference
The product attempts to return a memory resource to the system, but it calls the wrong release function or calls the appropriate release function incorrectly.
This weakness can take several forms, such as: The memory was allocated, explicitly or implicitly, via one memory management method and deallocated using a different, non-compatible function (CWE-762). The function calls or memory management routines chosen are appropriate, however they are used incorrectly, such as in CWE-761.
Modes of Introduction:
Phase: Implementation
Common Consequences:
Scope: Integrity, Availability, Confidentiality. Impact: Modify Memory, DoS: Crash, Exit, or Restart, Execute Unauthorized Code or Commands. This weakness may result in the corruption of memor
CWE
Free of Pointer not at Start of Buffer
mitre_cwe
CWE-761 Free of Pointer not at Start of Buffer
CWE-761: Free of Pointer not at Start of Buffer
The product calls free() on a pointer to a memory resource that was allocated on the heap, but the pointer is not at the start of the buffer.
This can cause the product to crash, or in some cases, modify critical program variables or execute code. This weakness often occurs when the memory is allocated explicitly on the heap with one of the malloc() family functions and free() is called, but pointer arithmetic has caused the pointer to be in the interior or end of the buffer.
Modes of Introduction:
Phase: Implementation
Common Consequences:
Scope: Integrity, Availability, Confidentiality. Impact: Modify Memory, DoS: Crash, Exit, or Restart, Execute Unauthorized Code or Commands.
Detection Methods:
Dynamic Analysis with Automated Results
https://github.com/facebook/hhvm/commit/524d2e60cfe910406ec6109e4286d7edd545ab36https://hhvm.com/blog/2019/10/28/security-update.htmlhttps://www.facebook.com/security/advisories/cve-2019-11930https://github.com/facebook/hhvm/commit/524d2e60cfe910406ec6109e4286d7edd545ab36https://hhvm.com/blog/2019/10/28/security-update.htmlhttps://www.facebook.com/security/advisories/cve-2019-11930
2019-12-04
Published