CVE-2019-11935
Description: Insufficient boundary checks when processing a string in mb_ereg_replace allows access to out-of-bounds memory.
Affected Versions: This issue affects HHVM versions prior to 3.30.12, all versions between 4.0.0 and 4.8.5, all versions between 4.9.0 and 4.23.1, as well as 4.24.0, 4.25.0, 4.26.0, 4.27.0, 4.28.0, and 4.28.1.
References:
Last Updated: 2019-10-28