A security update has been released for all supported HHVM versions. Please update to one of the following versions to get the update:
4.80.6 and 4.102.3 are also released for Debian 10 Buster and Ubuntu 18.04 Bionic, updating build system compatibility with those platforms.
This security update addresses:
a remote code execution vulnerability in Folly’s
- an issue in HHVM that could lead to specially crafted XBox request parameter data being interpreted as other RPCServer commands.