Vulnerability CVE-2019-11040: Information

Description

When PHP EXIF extension is parsing EXIF information from an image, e.g. via exif_read_data() function, in PHP versions 7.1.x below 7.1.30, 7.2.x below 7.2.19 and 7.3.x below 7.3.6 it is possible to supply it with data what will cause it to read past the allocated buffer. This may lead to information disclosure or crash.

Severity: CRITICAL (9.1) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

URL: https://nvd.nist.gov/vuln/detail/CVE-2019-11040
Published: June 19, 2019
Modified: Oct. 16, 2020
Error type identifier: CWE-125

Fixed packages

Package name
Branch
Fixed in version
Version from repository
Errata ID
Task #
State
php7p107.2.19-alt17.4.33-alt1ALT-PU-2019-1944-1231279Fixed
php7p97.2.19-alt17.3.33-alt1ALT-PU-2019-1959-1231278Fixed
php7p87.2.19-alt17.2.34-alt1ALT-PU-2019-2000-1231277Fixed
php7c10f17.2.19-alt17.4.33-alt1ALT-PU-2019-1944-1231279Fixed
php7c9f27.2.19-alt17.4.33-alt1ALT-PU-2019-1959-1231278Fixed
php7-curlp87.2.19-alt17.2.34-alt1ALT-PU-2019-2001-1231277Fixed
php7-intlp87.2.19-alt17.2.34-alt1ALT-PU-2019-2007-1231277Fixed
php7-opcachep87.2.19-alt1.17.2.34-alt1.1ALT-PU-2019-2008-1231277Fixed
php7-opensslp87.2.19-alt1.17.2.34-alt1.1ALT-PU-2019-2002-1231277Fixed
php7-pdo_mysqlp87.2.19-alt17.2.34-alt1ALT-PU-2019-2003-1231277Fixed
php7-pgsqlp87.2.19-alt1.27.2.34-alt1.2ALT-PU-2019-2004-1231277Fixed
php7-tidyp87.2.19-alt17.2.34-alt1ALT-PU-2019-2010-1231277Fixed
php7-xmlrpcp87.2.19-alt17.2.34-alt1ALT-PU-2019-2009-1231277Fixed
php7-xslp87.2.19-alt17.2.34-alt1ALT-PU-2019-2006-1231277Fixed
php7-zipp87.2.19-alt1.17.2.34-alt1.1ALT-PU-2019-2005-1231277Fixed

References to Advisories, Solutions, and Tools

Hyperlink
Resource
https://bugs.php.net/bug.php?id=77988
  • Exploit
  • Mailing List
  • Vendor Advisory
openSUSE-SU-2019:1778
  • Mailing List
  • Third Party Advisory
RHSA-2019:2519
  • Third Party Advisory
20190920 [SECURITY] [DSA 4527-1] php7.3 security update
  • Mailing List
  • Third Party Advisory
DSA-4527
  • Third Party Advisory
20190923 [SECURITY] [DSA 4529-1] php7.0 security update
  • Mailing List
  • Third Party Advisory
DSA-4529
  • Third Party Advisory
RHSA-2019:3299
  • Third Party Advisory

    1. Configuration 1

      cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
      Start including
      7.3.0
      End excliding
      7.3.6
      cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
      Start including
      7.1.0
      End excliding
      7.1.30
      cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
      Start including
      7.2.0
      End excliding
      7.2.19

      Configuration 2

      cpe:2.3:a:redhat:software_collections:1.0:*:*:*:*:*:*:*

      Configuration 3

      cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*
      cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*

      Configuration 4

      cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
      cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
Version: v24.4.2
Back to top