FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

PHP -- Multiple vulnerabilities in EXIF module

Affected packages
		php71-exif	<	7.1.28
		php72-exif	<	7.2.17
		php73-exif	<	7.3.4

Details

VuXML ID	c2d1693b-73cb-11e9-a1c7-b499baebfeaf
Discovery	2019-04-04
Entry	2019-05-11

The PHP project reports:

Heap-buffer-overflow in php_ifd_get32s (CVE-2019-11034)

Heap-buffer-overflow in exif_iif_add_value (CVE-2019-11035)

[source]

References

CVE Name	CVE-2019-11034
CVE Name	CVE-2019-11035
URL	https://www.php.net/ChangeLog-7.php

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.