14 matches found
CLSA-2026-1779212665 php: Fix of 14 CVEs
CVE-2018-5711: fix infinite loop in gdImageCreateFromGifCtx - CVE-2018-5712: remove file name from phar stub error output XSS - CVE-2018-10545: do not set PRSETDUMPABLE in php-fpm workers by default - CVE-2018-10546: fail iconvmimedecode on invalid multibyte sequences - CVE-2018-10547: escape...
CLSA-2026-1776879963 php: Fix of 9 CVEs
CVE-2019-9020: fix heap out-of-bounds read in xmlrpcdecode - CVE-2019-9021: fix heap buffer overflow in phardetectpharfnameext - CVE-2019-9023: fix heap buffer over-reads in mbstring regex functions - CVE-2019-9641: fix uninitialized read in exifprocessIFDinTIFF - CVE-2019-11034: fix...
EUVD-2012-1808
Malware in sbrugna...
php: Buffer over-read in exif_process_IFD_TAG() leading to information disclosure
When processing certain files, PHP EXIF extension in versions 7.1.x below 7.1.29, 7.2.x below 7.2.18 and 7.3.x below 7.3.5 can be caused to read past allocated buffer in exifprocessIFDTAG function. This may lead to information disclosure or crash...
php: Buffer over-read in exif_process_IFD_TAG() leading to information disclosure
When processing certain files, PHP EXIF extension in versions 7.1.x below 7.1.29, 7.2.x below 7.2.18 and 7.3.x below 7.3.5 can be caused to read past allocated buffer in exifprocessIFDTAG function. This may lead to information disclosure or crash...
UBUNTU-CVE-2014-3670
The exififdmakevalue function in exif.c in the EXIF extension in PHP before 5.4.34, 5.5.x before 5.5.18, and 5.6.x before 5.6.2 operates on floating-point arrays incorrectly, which allows remote attackers to cause a denial of service heap memory corruption and application crash or possibly execut...
ImageMagick Multiple Denial of Service Vulnerabilities - 01 June13 (Windows)
The host is installed with ImageMagick and is prone to multiple denial of service Vulnerabilities. OpenVAS Vulnerability Test $Id: gbimagemagickmultdosvuln01jun13win.nasl 8173 2017-12-19 11:45:56Z cfischer $ ImageMagick Multiple Denial of Service Vulnerabilities - 01 June13 Windows Authors: Thang...
SuSE 11.1 Security Update : ImageMagick (SAT Patch Number 6226)
This update of ImageMagick fixes multiple security vulnerabilities that could be exploited by attackers via specially crafted image files : - Integer overflow when processing EXIF directory entries with tags of e.g. format 5 EXIFFMTURATIONAL and a large components count. CVE-2012-0259 /...
CVE-2012-1798
The TIFFGetEXIFProperties function in coders/tiff.c in ImageMagick before 6.7.6-3 allows remote attackers to cause a denial of service out-of-bounds read and crash via a crafted EXIF IFD in a TIFF image...
DEBIAN-CVE-2012-1798
The TIFFGetEXIFProperties function in coders/tiff.c in ImageMagick before 6.7.6-3 allows remote attackers to cause a denial of service out-of-bounds read and crash via a crafted EXIF IFD in a TIFF image...
Out-of-bounds
The TIFFGetEXIFProperties function in coders/tiff.c in ImageMagick before 6.7.6-3 allows remote attackers to cause a denial of service out-of-bounds read and crash via a crafted EXIF IFD in a TIFF image...
CVE-2012-1798
The TIFFGetEXIFProperties function in coders/tiff.c in ImageMagick before 6.7.6-3 allows remote attackers to cause a denial of service out-of-bounds read and crash via a crafted EXIF IFD in a TIFF image...
CVE-2012-1798
The TIFFGetEXIFProperties function in coders/tiff.c in ImageMagick before 6.7.6-3 allows remote attackers to cause a denial of service out-of-bounds read and crash via a crafted EXIF IFD in a TIFF image...
security flaw
Integer overflow in the exifprocessIFDTAG function in exif.c in PHP before 4.3.11 may allow remote attackers to execute arbitrary code via an IFD tag that leads to a negative byte count...