CVE-2019-11042: heap-buffer-overflow on exif_process_user_comment in EXIF extension
First published: Tue Jul 30 2019(Updated: )
apache_mod_php. Multiple issues were addressed by updating to PHP version 7.3.8.
Credit: CVE-2019-11041 CVE-2019-11042 security@php.net security@php.net
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/rh-php72-php | <0:7.2.24-1.el7 | 0:7.2.24-1.el7 |
| PHP PHP | >=7.1.0<7.1.31 | |
| PHP PHP | >=7.2.0<7.2.21 | |
| PHP PHP | >=7.3.0<7.3.8 | |
| Debian Debian Linux | =8.0 | |
| Debian Debian Linux | =9.0 | |
| Debian Debian Linux | =10.0 | |
| Canonical Ubuntu Linux | =12.04 | |
| Canonical Ubuntu Linux | =14.04 | |
| Canonical Ubuntu Linux | =16.04 | |
| Canonical Ubuntu Linux | =18.04 | |
| Canonical Ubuntu Linux | =19.04 | |
| Apple Mac OS X | <10.15.1 | |
| openSUSE Leap | =15.0 | |
| Redhat Software Collections | =1.0 | |
| Tenable Tenable.sc | <5.19.0 | |
| Apple macOS Catalina | <10.15 | 10.15 |
| Apple macOS Catalina | <10.15.1 | 10.15.1 |
| PHP PHP | <7.1.31 | 7.1.31 |
| redhat/php | <7.1.31 | 7.1.31 |
| redhat/php | <7.2.21 | 7.2.21 |
| redhat/php | <7.3.8 | 7.3.8 |
| debian/php5 | ||
| debian/php7.0 | ||
| debian/php7.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://www.cve.org/CVERecord?id=CVE-2019-11042 https://nvd.nist.gov/vuln/detail/CVE-2019-11042
- https://bugzilla.redhat.com/show_bug.cgi?id=1739465
- https://access.redhat.com/errata/RHSA-2020:1624
- https://access.redhat.com/errata/RHSA-2020:3662
- https://access.redhat.com/errata/RHSA-2019:3299
- https://access.redhat.com/security/cve/cve-2019-11042
- http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00019.html
- http://seclists.org/fulldisclosure/2019/Oct/15
- http://seclists.org/fulldisclosure/2019/Oct/55
- https://bugs.php.net/bug.php?id=78256
- https://lists.debian.org/debian-lts-announce/2019/08/msg00010.html
- https://seclists.org/bugtraq/2019/Oct/9
- https://seclists.org/bugtraq/2019/Sep/35
- https://seclists.org/bugtraq/2019/Sep/38
- https://security.netapp.com/advisory/ntap-20190822-0003/
- https://support.apple.com/kb/HT210634
- https://support.apple.com/kb/HT210722
- https://usn.ubuntu.com/4097-1/
- https://usn.ubuntu.com/4097-2/
- https://www.debian.org/security/2019/dsa-4527
- https://www.debian.org/security/2019/dsa-4529
- https://www.tenable.com/security/tns-2021-14
- https://support.apple.com/en-us/HT210634 (Advisory)
- https://support.apple.com/en-us/HT210722 (Advisory)
- https://launchpad.net/bugs/cve/CVE-2019-11042
- https://www.php.net/ChangeLog-7.php#7.1.31 (Advisory)
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1739466
- http://git.php.net/?p=php-src.git;a=commitdiff;h=e648fa4699e8d072db6db34fcc09826e8127fab8
- https://security-tracker.debian.org/tracker/CVE-2019-11042
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11042
- https://nvd.nist.gov/vuln/detail/CVE-2019-11042
- https://ubuntu.com/security/CVE-2019-11042
Parent vulnerabilities
(Appears in the following advisories)
Peer vulnerabilities
(Found alongside the following vulnerabilities)
- CVE-2019-8748
- CVE-2019-11041
- CVE-2019-11042
- CVE-2019-8706
- CVE-2019-8850
- CVE-2019-8774
- CVE-2019-8753
- CVE-2019-8705
- CVE-2019-8592
- CVE-2019-8741
- CVE-2019-8825
- CVE-2019-8757
- CVE-2019-8736
- CVE-2019-8767
- CVE-2019-8737
- CVE-2019-8776
- CVE-2019-8509
- CVE-2019-8746
- CVE-2018-12152
- CVE-2018-12153
- CVE-2018-12154
- CVE-2019-8759
- CVE-2019-8758
- CVE-2019-8755
- CVE-2019-8703
- CVE-2019-8809
- CVE-2019-8744
- CVE-2019-8717
- CVE-2019-8709
- CVE-2019-8781
- CVE-2019-8749
- CVE-2019-8756
- CVE-2019-8750
- CVE-2019-8799
- CVE-2019-8826
- CVE-2019-8730
- CVE-2019-8772
- CVE-2019-8708
- CVE-2019-8715
- CVE-2019-8855
- CVE-2019-8770
- CVE-2019-8701
- CVE-2019-8761
- CVE-2019-8745
- CVE-2019-8831
- CVE-2019-8769
- CVE-2019-8768
- CVE-2019-8854
- CVE-2019-8787
- CVE-2019-8796
- CVE-2019-8824
- CVE-2019-8803
- CVE-2019-8817
- CVE-2019-8716
- CVE-2019-8788
- CVE-2019-8785
- CVE-2019-8797
- CVE-2019-8789
- CVE-2017-7152
- CVE-2019-8798
- CVE-2019-8784
- CVE-2019-8807
- CVE-2019-8801
- CVE-2019-8794
- CVE-2019-8786
- CVE-2019-8829
- CVE-2019-8802
- CVE-2019-8858
- CVE-2019-8805
- CVE-2019-8754
- CVE-2019-15126
Frequently Asked Questions
What is CVE-2019-11042?
CVE-2019-11042 is a fixed bug that causes a heap-buffer-overflow vulnerability on the exif_process_user_comment function in PHP versions 7.1.x below 7.1.31, 7.2.x below 7.2.21, and 7.3.x below 7.3.8.
What is the severity of CVE-2019-11042?
The severity of CVE-2019-11042 is low with a severity value of 3.7.
How does CVE-2019-11042 affect PHP?
CVE-2019-11042 affects PHP by allowing an attacker to supply EXIF information that can cause the PHP EXIF extension to read past the allocated buffer, potentially leading to information leakage or denial of service.
Which versions of PHP are affected by CVE-2019-11042?
PHP versions 7.1.x below 7.1.31, 7.2.x below 7.2.21, and 7.3.x below 7.3.8 are affected by CVE-2019-11042.
How can I fix CVE-2019-11042?
To fix CVE-2019-11042, update PHP to version 7.1.31 or higher for PHP 7.1.x, version 7.2.21 or higher for PHP 7.2.x, or version 7.3.8 or higher for PHP 7.3.x.
- collector/redhat-cve
- collector/nvd-index
- collector/apple-support
- alias/CVE-2019-11042
- agent/type
- collector/launchpad-cve
- source/Launchpad
- agent/author
- agent/remedy
- agent/weakness
- collector/php-changelog
- source/PHP
- agent/software-canonical-lookup
- collector/nvd-cve
- source/NVD
- collector/redhat-bugzilla
- source/Red Hat
- agent/description
- agent/references
- collector/security-tracker-debian
- source/Debian
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/title
- agent/last-modified-date
- agent/severity
- agent/first-publish-date
- agent/event
- agent/tags
- collector/usn-cve
- source/Ubuntu
- package-manager/redhat
- vendor/php
- canonical/php php
- version/php php/7.1.0
- version/php php/7.2.0
- version/php php/7.3.0
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/8.0
- version/debian debian linux/9.0
- version/debian debian linux/10.0
- vendor/canonical
- canonical/canonical ubuntu linux
- version/canonical ubuntu linux/12.04
- version/canonical ubuntu linux/14.04
- version/canonical ubuntu linux/16.04
- version/canonical ubuntu linux/18.04
- version/canonical ubuntu linux/19.04
- vendor/apple
- canonical/apple mac os x
- vendor/opensuse
- canonical/opensuse leap
- version/opensuse leap/15.0
- vendor/redhat
- canonical/redhat software collections
- version/redhat software collections/1.0
- vendor/tenable
- canonical/tenable tenable.sc
- canonical/apple macos catalina
- package-manager/debian