Integer overflow in bcmath in Facebook HHVM before 3.15.0 allows attackers to have unspecified impact via unknown vectors, which triggers a buffer overflow.
                
            References
                    | Link | Resource | 
|---|---|
| http://www.openwall.com/lists/oss-security/2016/08/11/1 | Mailing List Patch Third Party Advisory | 
| http://www.openwall.com/lists/oss-security/2016/08/19/1 | Mailing List Patch Third Party Advisory | 
| https://github.com/facebook/hhvm/commit/c00fc9d3003eb06226b58b6a48555f1456ee2475 | Patch | 
| http://www.openwall.com/lists/oss-security/2016/08/11/1 | Mailing List Patch Third Party Advisory | 
| http://www.openwall.com/lists/oss-security/2016/08/19/1 | Mailing List Patch Third Party Advisory | 
| https://github.com/facebook/hhvm/commit/c00fc9d3003eb06226b58b6a48555f1456ee2475 | Patch | 
Configurations
                    History
                    21 Nov 2024, 02:56
| Type | Values Removed | Values Added | 
|---|---|---|
| References | () http://www.openwall.com/lists/oss-security/2016/08/11/1 - Mailing List, Patch, Third Party Advisory | |
| References | () http://www.openwall.com/lists/oss-security/2016/08/19/1 - Mailing List, Patch, Third Party Advisory | |
| References | () https://github.com/facebook/hhvm/commit/c00fc9d3003eb06226b58b6a48555f1456ee2475 - Patch | 
Information
                Published : 2017-02-17 17:59
Updated : 2025-04-20 01:37
NVD link : CVE-2016-6871
Mitre link : CVE-2016-6871
CVE.ORG link : CVE-2016-6871
JSON object : View
Products Affected
                - hhvm
CWE
                
                    
                        
                        CWE-190
                        
            Integer Overflow or Wraparound
