PHP修補重大層級的記憶體越界寫入漏洞
支付動態 · 2024-11-27
上週PHP開發團隊發布安全性更新,其中修補重大層級的越界寫入漏洞CVE-2024-8932最為危險,而受到關注
11月21日PHP開發團隊發布8.3.14、8.2.26、8.1.31版,主要修補一項重大層級的漏洞CVE-2024-8932,這項弱點可被用於越界寫入(OBW),CVSS風險評為9.8。
開發團隊指出,這項弱點存在於32位元的系統,起因是在名為ldap_escape()的功能裡,若是輸入不受控制的長字串,就有可能導致整數溢位的情形。
他們也提及這項弱點影響4.56.2及以前版本的HipHop Virtual Machine(HHVM)虛擬機器,此外,介於4.57.0與4.83.0之間多個版本HHVM,也會曝險。
Popular articles
Across 6 Cities: HUIDU Invites You to 8 World Cup Parties Redefining High-Value Social Networking
HUIDU Focus
Super PAC Raises $48 Million: Sports Betting Forces Ramp Up Political Push
Regulation
UK MPs reopen 2025 gambling inquiry as reform stalls
Regulation
Institutional Academy that exceeded expectations marked the opening of GAT CDMX
Online Game
Are you ready to maximize your earnings? Try ProPush.me Constructor!
Marketing
Gaming & Technology Expo Makes a Powerful Entrance in CDMX
Marketing
JILI Partners with Cricket Legend AB de Villiers (ABD) to Launch Exclusive Branded Game Series 100% 11
Sports Game
B2B Tech Infrastructure Gains Momentum in Philippine Gaming Sector
Southeast Asia
Kazakhstan plans to penalise online casino promotions
Regulation
Indiana online casino bill stalls in House committee
Regulation
Full House at GAT Expo Cartagena 2026 Academic Agenda
Online Game
1spin4win releases unique slot Don Catleone Hold and Win featuring gangster cats
Online Game
Online gambling, crypto pose ongoing money laundering risks in Philippines, analyst says
Southeast Asia
1spin4win grows its Latin American presence by partnering with Fortuna Juegos
Online Game
HUIDU Invites You to Booth T70 at iGB L!VE 2026 — Let’s Ignite London This July!
HUIDU Focus
