Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value

Heap over-read in PHP EXIF extension

Disclosure Date: April 18, 2019 (last updated October 06, 2023)
When processing certain files, PHP EXIF extension in versions 7.1.x below 7.1.28, 7.2.x below 7.2.17 and 7.3.x below 7.3.4 can be caused to read past allocated buffer in exif_iif_add_value function. This may lead to information disclosure or crash.