When PHP EXIF extension is parsing EXIF information from an image, e.g. via exif_read_data() function, in PHP versions 7.1.x below 7.1.31, 7.2.x below 7.2.21 and 7.3.x below 7.3.8 it is possible to supply it with data what will cause it to read past the allocated buffer. This may lead to information disclosure or crash.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
Configuration 5 (hide)
|
Configuration 6 (hide)
|
Configuration 7 (hide)
|
Information
Published : 2019-08-09 13:15
Updated : 2023-02-28 07:13
NVD link : CVE-2019-11042
Mitre link : CVE-2019-11042
JSON object : View
CWE
CWE-125
Out-of-bounds Read
Products Affected
tenable
- tenable.sc
canonical
- ubuntu_linux
opensuse
- leap
debian
- debian_linux
apple
- mac_os_x
php
- php
redhat
- software_collections