CVE-2019-11036

CRITICAL

Php < 7.1.29 - Buffer Over-read

Title source: rule

Description

When processing certain files, PHP EXIF extension in versions 7.1.x below 7.1.29, 7.2.x below 7.2.18 and 7.3.x below 7.3.5 can be caused to read past allocated buffer in exif_process_IFD_TAG function. This may lead to information disclosure or crash.

References (19)

[Mailing List, Third Party Advisory] http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00010.html

[Mailing List, Third Party Advisory] http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00012.html

[Mailing List, Third Party Advisory] http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00041.html

[Mailing List, Third Party Advisory] http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00044.html

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/108177

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2019:2519

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2019:3299

[Mailing List, Vendor Advisory] https://bugs.php.net/bug.php?id=77950

[Mailing List, Third Party Advisory] https://lists.debian.org/debian-lts-announce/2019/05/msg00035.html

[Mailing List, Third Party Advisory] https://seclists.org/bugtraq/2019/Sep/35

[Mailing List, Third Party Advisory] https://seclists.org/bugtraq/2019/Sep/38

[Third Party Advisory] https://security.netapp.com/advisory/ntap-20190517-0003/

[Third Party Advisory] https://usn.ubuntu.com/3566-2/

[Third Party Advisory] https://usn.ubuntu.com/4009-1/

[Third Party Advisory] https://www.debian.org/security/2019/dsa-4527

[Third Party Advisory] https://www.debian.org/security/2019/dsa-4529

[Mailing List, Third Party Advisory] https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2NFXYNCXZCPYT7ZN4ZLI5EPQQW44FRRO/

[Mailing List, Third Party Advisory] https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3BY2XUUAN277LS7HKAOGL4DVGAELOJV3/

[Mailing List, Third Party Advisory] https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WN2HLPGEZEF4MFM5YC5FILZB5QEQFP3A/

Scores

CVSS v3 9.1

EPSS 0.0169

EPSS Percentile 82.0%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

Classification

CWE

CWE-125 CWE-126

Status published

Affected Products (17)

php/php < 7.1.29

fedoraproject/fedora

fedoraproject/fedora

fedoraproject/fedora

redhat/software_collections

canonical/ubuntu_linux

canonical/ubuntu_linux

canonical/ubuntu_linux

canonical/ubuntu_linux

canonical/ubuntu_linux

canonical/ubuntu_linux

debian/debian_linux

debian/debian_linux

debian/debian_linux

opensuse/leap

... and 2 more

Timeline

Published May 03, 2019

Tracked Since Feb 18, 2026