CVE-2019-11040

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2019-11040
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-11040.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2019-11040
Downstream
Related
Published
2019-06-19T00:15:12.470Z
Modified
2026-04-10T04:14:02.837405Z
Severity
  • 9.1 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H CVSS Calculator
Summary
[none]
Details

When PHP EXIF extension is parsing EXIF information from an image, e.g. via exifreaddata() function, in PHP versions 7.1.x below 7.1.30, 7.2.x below 7.2.19 and 7.3.x below 7.3.6 it is possible to supply it with data what will cause it to read past the allocated buffer. This may lead to information disclosure or crash.

References

Affected packages

Git / github.com/php/php-src

Affected ranges

Type
GIT
Repo
https://github.com/php/php-src
Events
Introduced
0221e9f827632942225586687a33cfd554860d5e
Fixed
835993236936bb4791ba0a705382072e65e1219a
Introduced
8148cbb78841c8ec0759c0836e7f35dec799d300
Fixed
e845291527f934db9fa4b001ad63651bd5bfb745
Introduced
52ace952a1b65ca80fc2617f11c2fa6dd03f51bd
Fixed
bd3656d9fde3bc2271fe6a27fca8df80b75d2202
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
c7fdb98bc59fe743c682e1362456474da6c92402
Database specific 
{
    "versions": [
        {
            "introduced": "7.1.0"
        },
        {
            "fixed": "7.1.30"
        },
        {
            "introduced": "7.2.0"
        },
        {
            "fixed": "7.2.19"
        },
        {
            "introduced": "7.3.0"
        },
        {
            "fixed": "7.3.6"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.0"
        }
    ]
}

Affected versions

Other
POST_64BIT_BRANCH_MERGE
POST_AST_MERGE
POST_PHP7_NSAPI_REMOVAL
POST_PHP7_REMOVALS
POST_PHPNG_MERGE
PRE_64BIT_BRANCH_MERGE
PRE_AST_MERGE
PRE_PHP7_EREG_MYSQL_REMOVALS
PRE_PHP7_NSAPI_REMOVAL
PRE_PHP7_REMOVALS
RELEASE_1_0
php-7.*
php-7.3.6RC1

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-11040.json"
unresolved_ranges 
[
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "15.0"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "15.1"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "9.0"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "10.0"
            }
        ]
    }
]