CVE-2025-14177

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2025-14177
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-14177.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2025-14177
Aliases
Downstream
Related
Published
2025-12-27T20:15:40.400Z
Modified
2026-01-10T06:18:09.758947Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
Summary
[none]
Details

In PHP versions:8.1.* before 8.1.34, 8.2.* before 8.2.30, 8.3.* before 8.3.29, 8.4.* before 8.4.16, 8.5.* before 8.5.1, the getimagesize() function may leak uninitialized heap memory into the APPn segments (e.g., APP1) when reading images in multi-chunk mode (such as via php://filter). This occurs due to a bug in phpreadstreamallchunks() that overwrites the buffer without advancing the pointer, leaving tail bytes uninitialized. This may lead to information disclosure of sensitive heap data and affect the confidentiality of the target server.

References

Affected packages

Git / github.com/php/php-src

Affected ranges

Type
GIT
Repo
https://github.com/php/php-src
Events
Introduced
381ba9f5d0edd0c9c8ec1dea7e21d513ad08b115
Fixed
94abff74457effe4432f0bd49f5230aa11155dff

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-14177.json"