CVE-2019-9675 — Improper Restriction of Operations within the Bounds of a Memory Buffer in PHP

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-121 — Stack-based Buffer Overflow9 documents7 sources

Severity

8.1HIGHNVD

OSV7.5

EPSS

0.5%

top 34.46%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

PHP Php5 Canonical Ubuntu Linux +1 more

Timeline

PublishedMar 11

Latest updateMay 14

Description

An issue was discovered in PHP 7.x before 7.1.27 and 7.3.x before 7.3.3. phar_tar_writeheaders_int in ext/phar/tar.c has a buffer overflow via a long link value. NOTE: The vendor indicates that the link value is used only when an archive contains a symlink, which currently cannot happen: "This issue allows theoretical compromise of security, but a practical attack is usually impossible.

CVSS vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 2.2 | Impact: 5.9

Affected Packages3 packages

▶NVDphp/php7.0.0 — 7.1.27+1

▶Ubuntuphp5/php5< 5.5.9+dfsg-1ubuntu4.29

▶NVDopensuse/leap42.3

Also affects: Ubuntu Linux 12.04, 14.04

Patches

Patch: bugs.php.net ↗Patch: bugs.php.net ↗

🔴Vulnerability Details

GHSA

GHSA-pf47-4qf3-xq2x: ** DISPUTED ** An issue was discovered in PHP 7↗2022-05-14

▶

OSV

php5 vulnerabilities↗2019-04-23

▶

CVEList

CVE-2019-9675: An issue was discovered in PHP 7↗2019-03-11

▶

OSV

CVE-2019-9675: An issue was discovered in PHP 7↗2019-03-11

▶

📋Vendor Advisories

Ubuntu

PHP vulnerabilities↗2019-04-25

▶

Ubuntu

PHP vulnerabilities↗2019-04-23

▶

Red Hat

php: buffer overflow in ext/phar/tar.c↗2019-02-08

▶

💬Community

Bugzilla

CVE-2019-9675 php: buffer overflow in ext/phar/tar.c↗2019-03-14

▶