Bug 20498 - PHP "exif_read_data()" Denial of Service
: PHP "exif_read_data()" Denial of Service
Status: CLOSED FIXED
: Sisyphus
(All bugs in Sisyphus/php5-exif)
: unstable
: all Linux
: P3 blocker
Assigned To:
:
: http://bugs.php.net/bug.php?id=48378
: security
:
:
  Show dependency tree
 
Reported: 2009-06-19 18:11 by
Modified: 2010-01-29 13:46 (History)


Attachments


Note

You need to log in before you can comment on or make changes to this bug.


Description From 2009-06-19 18:11:51
There seems to be a problem in exif_read_data(), where some fields
representing offsets(?) are taken directly from the file without being
validated, resulting in a segmentation fault.

This bug fixed in 5.2.10: http://www.php.net/releases/5_2_10.php
------- Comment #1 From 2010-01-29 13:46:17 -------
php5-5.2.12 уже в Sisyphus.