Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2022-31630

Опубликовано: 27 окт. 2022
Источник: redhat
CVSS3: 6.5
EPSS Низкий

Описание

In PHP versions prior to 7.4.33, 8.0.25 and 8.1.12, when using imageloadfont() function in gd extension, it is possible to supply a specially crafted font file, such as if the loaded font is used with imagechar() function, the read outside allocated buffer will be used. This can lead to crashes or disclosure of confidential information. 

An out-of-bounds read flaw was found in PHP due to insufficient input validation in the imageloadfont() function. This flaw allows a remote attacker to pass specially crafted data to the web application, trigger an out-of-bounds read error, and read the contents of memory on the system.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 6phpNot affected
Red Hat Enterprise Linux 7phpNot affected
Red Hat Software Collectionsrh-php73-phpNot affected
Red Hat Enterprise Linux 8phpFixedRHSA-2023:084821.02.2023
Red Hat Enterprise Linux 8phpFixedRHSA-2023:290316.05.2023
Red Hat Enterprise Linux 9phpFixedRHSA-2023:096528.02.2023
Red Hat Enterprise Linux 9phpFixedRHSA-2023:241709.05.2023

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-20->CWE-125
https://bugzilla.redhat.com/show_bug.cgi?id=2139280php: OOB read due to insufficient input validation in imageloadfont()

EPSS

Процентиль: 19%
0.00061
Низкий

6.5 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2022-31630

CVSS3: 6.5
ubuntu
около 3 лет назад

In PHP versions prior to 7.4.33, 8.0.25 and 8.1.12, when using imageloadfont() function in gd extension, it is possible to supply a specially crafted font file, such as if the loaded font is used with imagechar() function, the read outside allocated buffer will be used. This can lead to crashes or disclosure of confidential information.

nvd логотип

CVE-2022-31630

CVSS3: 6.5
nvd
около 3 лет назад

In PHP versions prior to 7.4.33, 8.0.25 and 8.1.12, when using imageloadfont() function in gd extension, it is possible to supply a specially crafted font file, such as if the loaded font is used with imagechar() function, the read outside allocated buffer will be used. This can lead to crashes or disclosure of confidential information. 

debian логотип

CVE-2022-31630

CVSS3: 6.5
debian
около 3 лет назад

In PHP versions prior to 7.4.33, 8.0.25 and 8.1.12, when using imagelo ...

github логотип

GHSA-jw98-jrc9-mrx5

CVSS3: 7.1
github
около 3 лет назад

In PHP versions prior to 7.4.33, 8.0.25 and 8.2.12, when using imageloadfont() function in gd extension, it is possible to supply a specially crafted font file, such as if the loaded font is used with imagechar() function, the read outside allocated buffer will be used. This can lead to crashes or disclosure of confidential information.

fstec логотип

BDU:2022-07409

CVSS3: 7.1
fstec
около 3 лет назад

Уязвимость функции imageloadfont() интерпретатора языка программирования PHP, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации или вызвать отказ в обслуживании

EPSS

Процентиль: 19%
0.00061
Низкий

6.5 Medium

CVSS3