{"id":"CVE-2019-11926","details":"Insufficient boundary checks when processing M_SOFx markers from JPEG headers in the GD extension could allow access to out-of-bounds memory via a maliciously constructed invalid JPEG input. This issue affects HHVM versions prior to 3.30.9, all versions between 4.0.0 and 4.8.3, all versions between 4.9.0 and 4.15.2, and versions 4.16.0 to 4.16.3, 4.17.0 to 4.17.2, 4.18.0 to 4.18.1, 4.19.0, 4.20.0 to 4.20.1.","modified":"2026-05-15T11:17:42.317259Z","published":"2019-09-06T19:15:11.607Z","references":[{"type":"ADVISORY","url":"https://hhvm.com/blog/2019/09/03/security-update.html"},{"type":"ADVISORY","url":"https://www.facebook.com/security/advisories/cve-2019-11926"},{"type":"FIX","url":"https://github.com/facebook/hhvm/commit/f9680d21beaa9eb39d166e8810e29fbafa51ad15"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/facebook/hhvm","events":[{"introduced":"0"},{"last_affected":"4f72b676ce0907078a81b0be6283057abb2af29d"},{"last_affected":"e3f058f758c6ad9bda4a3c074872844aa7759cbf"},{"introduced":"7d4f701b9ed004452d695fce4e1ef8f48babbf39"},{"last_affected":"b5d38ca640f92028e9cef407e8f5cfddda05bc9d"},{"introduced":"0abb3b0c92e938bb7dac2d0c1603c5866e2a035b"},{"last_affected":"897c11257022661a1e62fa6e6d724f62abb4798e"},{"introduced":"2336e00771c85df63ccb0e7c8a3004b907a3095f"},{"last_affected":"93b424b7a7e8af9a7306ec7a0594c2889419ed3a"},{"introduced":"3ba6a05af7d6372d5b8bf22ed4b30f356c99d412"},{"last_affected":"b02eadedd00a2922f2f26f8d541133f8d6da816e"},{"introduced":"429410767a2999bca955ff2c55d763dd3058dc68"},{"last_affected":"4bfd92104d573c0e1a11260e51ed678a6ad3a144"},{"introduced":"8b8ed4b4d8a9c56ae1af0f9fa38b027047049daf"},{"last_affected":"11774f57c04395ed69e48546287f6552005dee12"}],"database_specific":{"source":"CPE_FIELD","extracted_events":[{"introduced":"0"},{"last_affected":"3.30.9"},{"last_affected":"4.19.0"},{"introduced":"4.0.0"},{"last_affected":"4.8.3"},{"introduced":"4.9.0"},{"last_affected":"4.15.2"},{"introduced":"4.16.0"},{"last_affected":"4.16.3"},{"introduced":"4.17.0"},{"last_affected":"4.17.2"},{"introduced":"4.18.0"},{"last_affected":"4.18.1"},{"introduced":"4.20.0"},{"last_affected":"4.20.1"}],"cpe":["cpe:2.3:a:facebook:hhvm:*:*:*:*:*:*:*:*","cpe:2.3:a:facebook:hhvm:4.19.0:*:*:*:*:*:*:*"]}}],"versions":["HHVM-4.20.1","HHVM-4.20.0","HHVM-4.19.0","nightly-2019.08.19","nightly-2019.08.18","nightly-2019.08.17","nightly-2019.08.16","nightly-2019.08.15","nightly-2019.08.14","HHVM-4.18.1","HHVM-4.17.2","HHVM-4.16.3","HHVM-4.15.2","HHVM-4.8.3","HHVM-3.30.9","nightly-2019.08.13","HHVM-4.18.0","nightly-2019.08.12","nightly-2019.08.11","nightly-2019.08.10","nightly-2019.08.09","nightly-2019.08.08","HHVM-3.30.8","HHVM-3.30.7","HHVM-4.8.2","HHVM-4.15.1","HHVM-4.16.2","HHVM-4.17.1","nightly-2019.08.07","nightly-2019.08.06","HHVM-4.17.0","nightly-2019.08.05","nightly-2019.08.04","nightly-2019.08.03","nightly-2019.08.02","HHVM-4.16.1","nightly-2019.08.01","nightly-2019.07.31","nightly-2019.07.30","HHVM-4.16.0","nightly-2019.07.29","nightly-2019.07.28","nightly-2019.07.27","nightly-2019.07.26","nightly-2019.07.25","nightly-2019.07.24","nightly-2019.07.23","HHVM-4.15.0","nightly-2019.07.22","nightly-2019.07.21","nightly-2019.07.20","nightly-2019.07.19","nightly-2019.07.18","nightly-2019.07.17","nightly-2019.07.16","nightly-2019.07.15","nightly-2019.07.14","nightly-2019.07.13","nightly-2019.07.12","nightly-2019.07.11","nightly-2019.07.10","nightly-2019.07.09","nightly-2019.07.08","nightly-2019.07.07","nightly-2019.07.06","nightly-2019.07.05","nightly-2019.07.04","nightly-2019.07.03","nightly-2019.07.02","nightly-2019.07.01","nightly-2019.06.30","nightly-2019.06.29","nightly-2019.06.28","nightly-2019.06.27","nightly-2019.06.26","nightly-2019.06.25","nightly-2019.06.24","nightly-2019.06.23","nightly-2019.06.22","nightly-2019.06.21","nightly-2019.06.20","nightly-2019.06.19","nightly-2019.06.17","nightly-2019.06.18","nightly-2019.06.16","nightly-2019.06.15","nightly-2019.06.14","nightly-2019.06.13","nightly-2019.06.12","nightly-2019.06.11","nightly-2019.06.10","HHVM-3.30.6","HHVM-4.8.1","nightly-2019.06.09","nightly-2019.06.08","nightly-2019.06.07","nightly-2019.06.06","nightly-2019.06.05","nightly-2019.06.04","HHVM-4.8.0","nightly-2019.06.03","nightly-2019.06.02","nightly-2019.06.01","nightly-2019.05.31","nightly-2019.05.30","nightly-2019.05.29","nightly-2019.05.28","nightly-2019.05.27","nightly-2019.05.26","nightly-2019.05.25","nightly-2019.05.24","nightly-2019.05.23","nightly-2019.05.22","nightly-2019.05.21","nightly-2019.05.20","nightly-2019.05.19","nightly-2019.05.18","nightly-2019.05.17","nightly-2019.05.16","nightly-2019.05.15","nightly-2019.05.14","nightly-2019.05.13","nightly-2019.05.12","nightly-2019.05.11","nightly-2019.05.10","nightly-2019.05.09","nightly-2019.05.08","nightly-2019.05.07","nightly-2019.05.06","nightly-2019.05.05","nightly-2019.05.04","nightly-2019.05.03","nightly-2019.05.02","nightly-2019.05.01","nightly-2019.04.30","nightly-2019.04.29","nightly-2019.04.28","nightly-2019.04.27","nightly-2019.04.26","nightly-2019.04.25","nightly-2019.04.24","nightly-2019.04.22","nightly-2019.04.23","nightly-2019.04.21","nightly-2019.04.20","nightly-2019.04.19","nightly-2019.04.18","nightly-2019.04.17","nightly-2019.04.16","nightly-2019.04.15","nightly-2019.04.14","nightly-2019.04.13","nightly-2019.04.12","nightly-2019.04.11","nightly-2019.04.10","nightly-2019.04.09","nightly-2019.04.08","nightly-2019.04.07","nightly-2019.04.06","nightly-2019.04.05","nightly-2019.04.04","HHVM-3.30.5","nightly-2019.04.03","nightly-2019.04.02","nightly-2019.04.01","nightly-2019.03.31","nightly-2019.03.30","nightly-2019.03.29","nightly-2019.03.28","HHVM-3.30.4","HHVM-3.30.3","HHVM-3.30.2","HHVM-3.30.1","HHVM-3.30.0","gcc-4.6","HPHP-2.1.0","src-hphp","pre-hhvm"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-11926.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}