Vulnerability Description
The implementations of streams for bz2 and php://output improperly implemented their readImpl functions, returning -1 consistently. This behavior caused some stream functions, such as stream_get_line, to trigger an out-of-bounds read when operating on such malformed streams. The implementations were updated to return valid values consistently. This affects all supported versions of HHVM (3.30 and 3.27.4 and below).
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Hhvm | <= 3.27.4 |
Related Weaknesses (CWE)
References
- https://github.com/facebook/hhvm/commit/6e4dd9ec3f14b48170fc45dc9d13a3261765f994PatchThird Party Advisory
- https://hhvm.com/blog/2019/01/14/hhvm-3.30.2.htmlVendor Advisory
- https://github.com/facebook/hhvm/commit/6e4dd9ec3f14b48170fc45dc9d13a3261765f994PatchThird Party Advisory
- https://hhvm.com/blog/2019/01/14/hhvm-3.30.2.htmlVendor Advisory
FAQ
What is CVE-2019-3557?
CVE-2019-3557 is a vulnerability with a CVSS score of 9.8 (CRITICAL). The implementations of streams for bz2 and php://output improperly implemented their readImpl functions, returning -1 consistently. This behavior caused some stream functions, such as stream_get_line,...
How severe is CVE-2019-3557?
CVE-2019-3557 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2019-3557?
Check the references section above for vendor advisories and patch information. Affected products include: Facebook Hhvm.