CVE-2019-11036 — Buffer Over-read in Group PHP

CWE-126 — Buffer Over-read CWE-125 — Out-of-bounds Read CWE-122 — Heap-based Buffer Overflow11 documents7 sources

Severity

9.1CRITICALNVD

EPSS

1.7%

top 17.75%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

PHP Group PHP PHP Php5 +5 more

Timeline

PublishedMay 3

Latest updateMay 24

Description

When processing certain files, PHP EXIF extension in versions 7.1.x below 7.1.29, 7.2.x below 7.2.18 and 7.3.x below 7.3.5 can be caused to read past allocated buffer in exif_process_IFD_TAG function. This may lead to information disclosure or crash.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:HExploitability: 3.9 | Impact: 5.2

Affected Packages5 packages

▶NVDphp/php7.1.0 — 7.1.29+2

▶CVEListV5php_group/php7.1.x — 7.1.29+2

▶Ubuntuphp5/php5< 5.5.9+dfsg-1ubuntu4.29+esm2

▶NVDopensuse/leap15.0, 15.1, 42.3+2

▶NVDredhat/software_collections1.0

Also affects: Debian Linux 10.0, 8.0, 9.0, Fedora 28, 29, 30, Ubuntu Linux 12.04, 14.04, 16.04, 18.04, 18.10, 19.04

🔴Vulnerability Details

GHSA

GHSA-xr89-hqhp-26m9: When processing certain files, PHP EXIF extension in versions 7↗2022-05-24

▶

OSV

php7.0, php7.2 vulnerabilities↗2019-06-05

▶

OSV

php5 vulnerabilities↗2019-05-22

▶

OSV

CVE-2019-11036: When processing certain files, PHP EXIF extension in versions 7↗2019-05-03

▶

CVEList

Heap over-read in PHP EXIF extension↗2019-05-03

▶

📋Vendor Advisories

Ubuntu

PHP vulnerabilities↗2019-06-05

▶

Ubuntu

PHP vulnerabilities↗2019-05-22

▶

Red Hat

php: Buffer over-read in exif_process_IFD_TAG() leading to information disclosure↗2019-05-02

▶

💬Community

Bugzilla

CVE-2019-11036 php: Buffer over-read in exif_process_IFD_TAG() leading to information disclosure↗2019-05-07

▶

Bugzilla

CVE-2019-11036 php: buffer over-read in exif_process_IFD_TAG function leading to information disclosure [fedora-all]↗2019-05-07

▶