CVE-2018-10549Out-of-bounds Read in PHP

CWE-125Out-of-bounds Read10 documents7 sources
Severity
8.8HIGHNVD
OSV4.7
EPSS
2.4%
top 14.75%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
PHPPhp5Canonical Ubuntu Linux+1 more
Timeline
PublishedApr 29
Latest updateMay 14

Description

An issue was discovered in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. exif_read_data in ext/exif/exif.c has an out-of-bounds read for crafted JPEG data because exif_iif_add_value mishandles the case of a MakerNote that lacks a final '\0' character.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages2 packages

NVDphp/php7.0.07.0.30+3
Ubuntuphp5/php5< 5.5.9+dfsg-1ubuntu4.25

Also affects: Debian Linux 8.0, 9.0, Ubuntu Linux 16.04, 17.10, 18.04

Patches

Patch: php.netPatch: php.netPatch: bugs.php.net

🔴Vulnerability Details

3
GHSA
GHSA-89g9-q2qh-fmrm: An issue was discovered in PHP before 52022-05-14
OSV
php5, php7.0, php7.1, php7.2 vulnerabilities2018-05-14
OSV
CVE-2018-10549: An issue was discovered in PHP before 52018-04-29

📋Vendor Advisories

2
Ubuntu
PHP vulnerabilities2018-05-14
Red Hat
php: Out-of-bounds read in ext/exif/exif.c:exif_read_data() when reading crafted JPEG data2018-04-26

🕵️Threat Intelligence

2
Trendmicro
Current and Future Attacks Threatening Esports2019-10-29
Trendmicro
Current and Future Attacks Threatening Esports2019-10-29

💬Community

2
Bugzilla
CVE-2018-10549 php: Out-of-bounds read in ext/exif/exif.c:exif_read_data() when reading crafted JPEG data2018-05-02
Bugzilla
CVE-2018-10546 CVE-2018-10547 CVE-2018-10548 CVE-2018-10549 php: various flaws [fedora-all]2018-05-02
CVE-2018-10549 — Out-of-bounds Read in PHP | cvebase