When processing certain files, PHP EXIF extension in versions 7.1.x below 7.1.28, 7.2.x below 7.2.17 and 7.3.x below 7.3.4 can be caused to read past allocated buffer in exif_process_IFD_TAG function. This may lead to information disclosure or crash.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: php
Published: 2019-04-18T16:57:00.954964Z
Updated: 2024-09-17T02:31:25.024Z
Reserved: 2019-04-09T00:00:00
Link: CVE-2019-11034
Vulnrichment
No data.
NVD
Status : Modified
Published: 2019-04-18T17:29:00.883
Modified: 2024-11-21T04:20:24.617
Link: CVE-2019-11034
Redhat