16 matches found
SUSE CVE-2019-11034
When processing certain files, PHP EXIF extension in versions 7.1.x below 7.1.28, 7.2.x below 7.2.17 and 7.3.x below 7.3.4 can be caused to read past allocated buffer in exifprocessIFDTAG function. This may lead to information disclosure or crash...
OSV-2020-1777 Heap-buffer-overflow in exif_process_IFD_in_MAKERNOTE
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=19044 Crash type: Heap-buffer-overflow READ 9 Crash state: exifprocessIFDinMAKERNOTE exifprocessIFDTAG exifprocessIFDinTIFF...
Denial Of Service (Dos)
php is vulnerable to denial of service. An attacker is able to read past allocated buffer in the exifprocessIFDTAG function and crash the application using malicious files...
Information Disclosure
php is vulnerable to information disclosure. An attacker is able to read past allocated buffer in the exifprocessIFDTAG function by using malicious files. This can also be used to crash the application...
SUSE SLES11 Security Update : php53 (SUSE-SU-2016:1638-1) (BACKRONYM)
This update for php53 to version 5.3.17 fixes the following issues : These security issues were fixed : - CVE-2016-5093: geticuvalueinternal out-of-bounds read bnc982010. - CVE-2016-5094: Don't create strings with lengths outside int range bnc982011. - CVE-2016-5095: Don't create strings with...
Out-of-bounds
The exifprocessIFDTAG function in ext/exif/exif.c in PHP before 5.5.35, 5.6.x before 5.6.21, and 7.x before 7.0.6 does not properly construct spprintf arguments, which allows remote attackers to cause a denial of service out-of-bounds read or possibly have unspecified other impact via crafted...
CVE-2016-4542
The exifprocessIFDTAG function in ext/exif/exif.c in PHP before 5.5.35, 5.6.x before 5.6.21, and 7.x before 7.0.6 does not properly construct spprintf arguments, which allows remote attackers to cause a denial of service out-of-bounds read or possibly have unspecified other impact via crafted...
CVE-2016-4542
Removed by vendor...
CVE-2016-4542
CVE-2016-4542 affects PHP’s exif processing: the function exif_process_IFD_TAG in ext/exif/exif.c does not properly construct spprintf arguments, enabling a remote attacker to trigger an out-of-bounds read and possible DoS via crafted header data. Public advisories (Debian, IBM FSM, Gentoo GLSA) ...
CVE-2016-4542
The exifprocessIFDTAG function in ext/exif/exif.c in PHP before 5.5.35, 5.6.x before 5.6.21, and 7.x before 7.0.6 does not properly construct spprintf arguments, which allows remote attackers to cause a denial of service out-of-bounds read or possibly have unspecified other impact via crafted...
PHP "exif_process_IFD_TAG()"远程整数溢出漏洞
BUGTRAQ ID: 50907 CVE ID: CVE-2011-4566 PHP是一种在电脑上运行的脚本语言,主要用途是在于处理动态网页,包含了命令行运行接口或者产生图形用户界面程序。 PHP的实现上存在漏洞,在32位版本中,函数exifprocessIFDTAG没有正确检验值offsetval,成功利用此漏洞可允许远程攻击者在受影响Web服务器中执行任意代码,可能会造成拒绝服务。 PHP 5.4.0 beta2 厂商补丁: PHP --- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.php.net ==== exif.c:2852:...
CVE-2011-4566
Integer overflow in the exifprocessIFDTAG function in exif.c in the exif extension in PHP 5.4.0beta2 on 32-bit platforms allows remote attackers to read the contents of arbitrary memory locations or cause a denial of service via a crafted offsetval value in an EXIF header in a JPEG file, a...
CVE-2011-4566
CVE-2011-4566 is an integer overflow in the exif extension (exif_process_IFD_TAG) of PHP, triggered on 32‑bit platforms by a crafted EXIF header in a JPEG. This allows remote attackers to read arbitrary memory or cause a denial of service. The CVE is acknowledged in multiple advisories (Debian, C...
CVE-2011-4566
Integer overflow in the exifprocessIFDTAG function in exif.c in the exif extension in PHP 5.4.0beta2 on 32-bit platforms allows remote attackers to read the contents of arbitrary memory locations or cause a denial of service via a crafted offsetval value in an EXIF header in a JPEG file, a...
CVE-2005-1042
Integer overflow in the exifprocessIFDTAG function in exif.c in PHP before 4.3.11 may allow remote attackers to execute arbitrary code via an IFD tag that leads to a negative byte count...
CVE-2005-1042
The CVE-2005-1042 entry corresponds to an integer overflow in exif_process_IFD_TAG within PHP’s exif.c (pre-4.3.11), enabling possible remote code execution via an crafted IFD tag with a negative byte count. Connected records corroborate that PHP4/Exif-related components were affected and that mu...