vulnerability
Ubuntu: (Multiple Advisories) (CVE-2019-9638): PHP vulnerabilities
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:N/AC:L/Au:N/C:P/I:N/A:N) | Mar 8, 2019 | Apr 3, 2019 | Mar 27, 2026 |
Severity
5
CVSS
(AV:N/AC:L/Au:N/C:P/I:N/A:N)
Published
Mar 8, 2019
Added
Apr 3, 2019
Modified
Mar 27, 2026
Description
An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an uninitialized read in exif_process_IFD_in_MAKERNOTE because of mishandling the maker_note->offset relationship to value_len.
Solutions
ubuntu-upgrade-libapache2-mod-php5ubuntu-upgrade-libapache2-mod-php7-0ubuntu-upgrade-libapache2-mod-php7-2ubuntu-upgrade-php5-cgiubuntu-upgrade-php5-cliubuntu-upgrade-php5-fpmubuntu-upgrade-php5-xmlrpcubuntu-upgrade-php7-0-cgiubuntu-upgrade-php7-0-cliubuntu-upgrade-php7-0-fpmubuntu-upgrade-php7-2-cgiubuntu-upgrade-php7-2-cliubuntu-upgrade-php7-2-fpm
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.