PT-2019-5433 · Php+7 · Php+7

Publicado

2019-03-08

Atualizado

2024-06-15

CVE-2019-9640

CVSS v3.1

7.5

Alta

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions PHP versions prior to 7.1.27 PHP versions 7.2.x prior to 7.2.16 PHP versions 7.3.x prior to 7.3.3

Description An issue was discovered in the EXIF component, specifically an Invalid Read in the exif process SOFn function. This issue is related to a buffer overflow in memory, which could allow a remote attacker to gain unauthorized access to protected information.

Recommendations For PHP versions prior to 7.1.27, update to version 7.1.27 or later. For PHP versions 7.2.x prior to 7.2.16, update to version 7.2.16 or later. For PHP versions 7.3.x prior to 7.3.3, update to version 7.3.3 or later.

Exploit

Correção

Out of bounds Read

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-125CWE-119

Identificadores relacionados

ALSA-2020:1624

ALT-PU-2019-1396

BDU:2020-03140

CESA-2020_1624

CVE-2019-9640

DLA-1741-1

DSA-4403-1

OPENSUSE-SU-2019:1572-1

OPENSUSE-SU-2019:1573-1

OPENSUSE-SU-2019_1293-1

OPENSUSE-SU-2019_1503-1

OPENSUSE-SU-2019_1572-1

OPENSUSE-SU-2019_1573-1

OPENSUSE-SU-2022_4067-1

OPENSUSE-SU-2024:11167-1

OPENSUSE-SU-2024:11169-1

RHSA-2019:2519

RHSA-2019:3299

RHSA-2020:1624

RHSA-2020_1624

RLSA-2020:1624

SUSE-SU-2019:0988-1

SUSE-SU-2019:1325-1

SUSE-SU-2019:14013-1

SUSE-SU-2019:1461-1

SUSE-SU-2019_14013-1

SUSE-SU-2019_1461-1

SUSE-SU-2022:4067-1

USN-3922-1

USN-3922-2

USN-3922-3

Produtos afetados

Alt Linux

Almalinux

Centos

Php

Red Hat

Rocky Linux

Suse

Ubuntu

PT-2019-5433 · Php+7 · Php+7

CVE-2019-9640

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 473