OSV-2020-1777

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/php/OSV-2020-1777.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2020-1777
Published
2020-09-16T00:00:31.920721Z
Modified
2022-04-13T03:04:33.411895Z
Summary
Heap-buffer-overflow in exif_process_IFD_in_MAKERNOTE
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=19044

Crash type: Heap-buffer-overflow READ 9
Crash state:
exif_process_IFD_in_MAKERNOTE
exif_process_IFD_TAG
exif_process_IFD_in_TIFF
References

Affected packages

OSS-Fuzz / php

Package

Name
php
Purl
pkg:generic/php

Affected ranges

Type
GIT
Repo
https://github.com/php/php-src.git
Events
Introduced
ecb1e312a0b4e90fa4d2e7bd89dbddd031f82de6
Fixed
655691675927fa94b634daa59fa07562f921621c

Affected versions

php-7.*

php-7.1.32
php-7.1.33

Ecosystem specific 

{
    "severity": "MEDIUM",
    "introduced_range": "unknown:ecb1e312a0b4e90fa4d2e7bd89dbddd031f82de6"
}