Stas

**Name of the Vulnerable Software and Affected Versions** PHP EXIF extension versions 7.1.x through 7.1.28 PHP EXIF extension versions 7.2.x through 7.2.17 PHP EXIF extension versions 7.3.x through 7.3.4 **Description** The issue is related to the PHP EXIF extension, where processing certain files can cause it to read past the allocated buffer in the `exif process IFD TAG` function. This may lead to information disclosure or a crash, potentially allowing a remote attacker to gain unauthorized access to information or cause a denial of service. **Recommendations** For PHP EXIF extension versions 7.1.x through 7.1.28, update to version 7.1.29 or later. For PHP EXIF extension versions 7.2.x through 7.2.17, update to version 7.2.18 or later. For PHP EXIF extension versions 7.3.x through 7.3.4, update to version 7.3.5 or later.

**Name of the Vulnerable Software and Affected Versions** PHP versions prior to 7.0.9 **Description** The issue allows remote attackers to redirect an application's outbound HTTP traffic to an arbitrary proxy server via a crafted Proxy header in an HTTP request. This can be achieved by exploiting the presence of untrusted client data in the HTTP PROXY environment variable, which the application does not protect against. The issue affects applications that make a `getenv('HTTP PROXY')` call or have a CGI configuration of PHP. **Recommendations** For PHP versions prior to 7.0.9, update to version 7.0.9 or later to resolve the issue. As a temporary workaround, consider restricting access to the `HTTP PROXY` environment variable to minimize the risk of exploitation. Avoid using the `getenv('HTTP PROXY')` call in applications until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** PHP versions prior to 5.3.26 PHP versions 5.4.x prior to 5.4.16 **Description** The issue is related to a heap-based buffer overflow in the `php quot print encode` function. This can be exploited by remote attackers to cause a denial of service, potentially leading to an application crash. The exploitation is possible via a crafted argument to the `quoted printable encode` function. **Recommendations** For PHP versions prior to 5.3.26, update to version 5.3.26 or later. For PHP versions 5.4.x prior to 5.4.16, update to version 5.4.16 or later.