CVE-2019-11036
Advisory lineage Upstream: 0 Downstream: 18
Modified
Published: 03 May 2019, 19:28
Last modified:16 Sept 2024, 22:30
Vulnerability Summary
Overall Risk (default)
high
70/100 CVSS Score
9.1 CRITICAL
v3.1 (nvd)
EPSS Score
1.69% LOW
2% probability -0.03%
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
03 May 2019, 19:28
Published
Vulnerability first disclosed
16 Sept 2024, 22:30
Last Modified
Vulnerability information updated
Description
When processing certain files, PHP EXIF extension in versions 7.1.x below 7.1.29, 7.2.x below 7.2.18 and 7.3.x below 7.3.5 can be caused to read past allocated buffer in exif_process_IFD_TAG function. This may lead to information disclosure or crash.
CVSS Metrics
- v3.1•CRITICAL•Score: 9.1CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
- v3.0•MEDIUM•Score: 4.8CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L
- v2.0•MEDIUM•Score: 6.4AV:N/AC:L/Au:N/C:P/I:N/A:P
EPSS Trends
Current EPSS score: 1.69%• Percentile: 83%
Techniques & Countermeasures
- CWE-125•Out-of-bounds Read
The product reads data past the end, or before the beginning, of the intended buffer.
- CWE-126•Buffer Over-read
The product reads from a buffer using buffer access mechanisms such as indexes or pointers that reference memory locations after the targeted buffer.
Affected Systems
- canonical•ubuntu_linux
12.04 | 14.04 | 16.04 | 18.04 | 18.10 | 19.04
- debian•debian_linux
8.0 | 9.0 | 10.0
- fedoraproject•fedora
28 | 29 | 30
- opensuse•leap
15.0 | 15.1 | 42.3
- Unknown•PHP
≥ 7.1.x, < 7.1.29 | ≥ 7.2.x, < 7.2.18 | ≥ 7.3.x, < 7.3.5
- Unknown•PHP
≥ 7.1.0, < 7.1.29 | ≥ 7.2.0, < 7.2.18 | ≥ 7.3.0, < 7.3.5
- redhat•software_collections
1.0
References (19)
- https://bugs.php.net/bug.php?id=77950
- http://www.securityfocus.com/bid/108177
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3BY2XUUAN277LS7HKAOGL4DVGAELOJV3/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2NFXYNCXZCPYT7ZN4ZLI5EPQQW44FRRO/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WN2HLPGEZEF4MFM5YC5FILZB5QEQFP3A/
- https://security.netapp.com/advisory/ntap-20190517-0003/
- https://usn.ubuntu.com/3566-2/
- https://lists.debian.org/debian-lts-announce/2019/05/msg00035.html
- http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00010.html
- http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00012.html
- https://usn.ubuntu.com/4009-1/
- http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00041.html
- http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00044.html
- https://access.redhat.com/errata/RHSA-2019:2519
- https://seclists.org/bugtraq/2019/Sep/35
- https://www.debian.org/security/2019/dsa-4527
- https://www.debian.org/security/2019/dsa-4529
- https://seclists.org/bugtraq/2019/Sep/38
- https://access.redhat.com/errata/RHSA-2019:3299