When processing certain files, PHP EXIF extension in versions 7.1.x below 7.1.28, 7.2.x below 7.2.17 and 7.3.x below 7.3.4 can be caused to read past allocated buffer in exif_process_IFD_TAG function. This may lead to information disclosure or crash.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: php

Published: 2019-04-18T16:57:00.954964Z

Updated: 2024-09-17T02:31:25.024Z

Reserved: 2019-04-09T00:00:00

Link: CVE-2019-11034

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2019-04-18T17:29:00.883

Modified: 2024-11-21T04:20:24.617

Link: CVE-2019-11034

cve-icon Redhat

Severity : Low

Publid Date: 2019-03-16T00:00:00Z

Links: CVE-2019-11034 - Bugzilla