Summary: | <dev-lang/php-5.3.9 Integer overflow in the exif_process_IFD_TAG function Information Leak or DoS (CVE-2011-4566) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Michael Harrison <n0idx80> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | php-bugs |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://www.mandriva.com/en/support/security/advisories/?name=MDVSA-2011:197 | ||
Whiteboard: | B3 [glsa] | ||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | 384301 | ||
Bug Blocks: |
Description
Michael Harrison
2011-12-30 17:07:44 UTC
Fixed in 5.3.9 Added to existing glsa request CVE-2011-4566 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-4566): Integer overflow in the exif_process_IFD_TAG function in exif.c in the exif extension in PHP 5.4.0beta2 on 32-bit platforms allows remote attackers to read the contents of arbitrary memory locations or cause a denial of service via a crafted offset_val value in an EXIF header in a JPEG file, a different vulnerability than CVE-2011-0708. This issue was resolved and addressed in GLSA 201209-03 at http://security.gentoo.org/glsa/glsa-201209-03.xml by GLSA coordinator Sean Amoss (ackle). |