Описание
Integer overflow in the exif_process_IFD_TAG function in exif.c in the exif extension in PHP 5.4.0beta2 on 32-bit platforms allows remote attackers to read the contents of arbitrary memory locations or cause a denial of service via a crafted offset_val value in an EXIF header in a JPEG file, a different vulnerability than CVE-2011-0708.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 5.3.8.0-1ubuntu3 |
| hardy | released | 5.2.4-2ubuntu5.19 |
| lucid | released | 5.3.2-1ubuntu4.11 |
| maverick | released | 5.3.3-1ubuntu9.7 |
| natty | released | 5.3.5-1ubuntu7.4 |
| oneiric | released | 5.3.6-13ubuntu3.3 |
| upstream | needs-triage |
Показывать по
EPSS
6.4 Medium
CVSS2
Связанные уязвимости
Integer overflow in the exif_process_IFD_TAG function in exif.c in the exif extension in PHP 5.4.0beta2 on 32-bit platforms allows remote attackers to read the contents of arbitrary memory locations or cause a denial of service via a crafted offset_val value in an EXIF header in a JPEG file, a different vulnerability than CVE-2011-0708.
Integer overflow in the exif_process_IFD_TAG function in exif.c in the exif extension in PHP 5.4.0beta2 on 32-bit platforms allows remote attackers to read the contents of arbitrary memory locations or cause a denial of service via a crafted offset_val value in an EXIF header in a JPEG file, a different vulnerability than CVE-2011-0708.
Integer overflow in the exif_process_IFD_TAG function in exif.c in the ...
Integer overflow in the exif_process_IFD_TAG function in exif.c in the exif extension in PHP 5.4.0beta2 on 32-bit platforms allows remote attackers to read the contents of arbitrary memory locations or cause a denial of service via a crafted offset_val value in an EXIF header in a JPEG file, a different vulnerability than CVE-2011-0708.
ELSA-2012-0019: php53 and php security update (MODERATE)
EPSS
6.4 Medium
CVSS2