FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2011-0708

This CVE name corresponds to:

Entered Topic
2011-03-25 php -- crash on crafted tag in exif

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

CVE-2011-0708 at cve.mitre.org

Details

Type Candidate
Name CVE-2011-0708
Phase Assigned(20110131)

Description

exif.c in the Exif extension in PHP before 5.3.6 on 64-bit platforms performs an incorrect cast, which allows remote attackers to cause a denial of service (application crash) via an image with a crafted Image File Directory (IFD) that triggers a buffer over-read.

References

Source Reference
EXPLOIT-DB 16261
MLIST [oss-security] 20110214 PHP Exif 64bit Casting Vulnerability, CVE request
MLIST [oss-security] 20110216 Re: Re: PHP Exif 64bit Casting Vulnerability, CVE request
CONFIRM http://bugs.php.net/bug.php?id=54002
CONFIRM http://svn.php.net/viewvc?view=revision&revision=308316
CONFIRM http://www.php.net/ChangeLog-5.php
CONFIRM http://www.php.net/archive/2011.php
CONFIRM http://www.php.net/releases/5_3_6.php
CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=680972
CONFIRM http://support.apple.com/kb/HT5002
APPLE APPLE-SA-2011-10-12-3
DEBIAN DSA-2266
FEDORA FEDORA-2011-3614
FEDORA FEDORA-2011-3636
FEDORA FEDORA-2011-3666
MANDRIVA MDVSA-2011:052
MANDRIVA MDVSA-2011:053
REDHAT RHSA-2011:1423
REDHAT RHSA-2012:0071
BID 46365
SREASON 8114
VUPEN ADV-2011-0744
VUPEN ADV-2011-0764
VUPEN ADV-2011-0890

Copyright © 2005 The MITRE Corporation.

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.