CVE-2019-11035 — Out-of-bounds Read in Group PHP

CWE-125 — Out-of-bounds Read CWE-122 — Heap-based Buffer Overflow9 documents7 sources

Severity

9.1CRITICALNVD

EPSS

3.0%

top 13.48%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

PHP Group PHP PHP Php5 +4 more

Timeline

PublishedApr 18

Latest updateMay 24

Description

When processing certain files, PHP EXIF extension in versions 7.1.x below 7.1.28, 7.2.x below 7.2.17 and 7.3.x below 7.3.4 can be caused to read past allocated buffer in exif_iif_add_value function. This may lead to information disclosure or crash.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:HExploitability: 3.9 | Impact: 5.2

Affected Packages5 packages

▶NVDphp/php7.1.0 — 7.1.28+2

▶CVEListV5php_group/php7.1.x — 7.1.28+2

▶Ubuntuphp5/php5< 5.5.9+dfsg-1ubuntu4.29+esm1

▶NVDopensuse/leap15.0, 15.1, 42.3+2

▶NVDredhat/software_collections1.0

Also affects: Debian Linux 8.0, 9.0, Ubuntu Linux 12.04, 14.04, 16.04, 18.04, 18.10, 19.04

Patches

Patch: security.netapp.com ↗Patch: security.netapp.com ↗

🔴Vulnerability Details

GHSA

GHSA-82xj-4wm9-29x6: When processing certain files, PHP EXIF extension in versions 7↗2022-05-24

▶

CVEList

Heap over-read in PHP EXIF extension↗2019-04-18

▶

OSV

CVE-2019-11035: When processing certain files, PHP EXIF extension in versions 7↗2019-04-17

▶

📋Vendor Advisories

Ubuntu

PHP vulnerabilities↗2019-05-01

▶

Ubuntu

PHP vulnerabilities↗2019-04-23

▶

Red Hat

php: Heap buffer overflow in function exif_iif_add_value()↗2019-04-02

▶

💬Community

Bugzilla

CVE-2019-11034 CVE-2019-11035 php: various flaws [fedora-all]↗2019-04-23

▶

Bugzilla

CVE-2019-11035 php: Heap buffer overflow in function exif_iif_add_value()↗2019-04-23

▶