Your submission was sent successfully! Close

CVE-2018-12882

Published: 25 June 2018

exif_read_from_impl in ext/exif/exif.c in PHP 7.2.x through 7.2.7 allows attackers to trigger a use-after-free (in exif_read_from_file) because it closes a stream that it is not responsible for closing. The vulnerable code is reachable through the PHP exif_read_data function.

Priority

Medium

CVSS 3 base score: 9.8

Status

Package Release Status
php5
Launchpad, Ubuntu, Debian
artful Does not exist

bionic Does not exist

precise Not vulnerable

trusty Not vulnerable
(5.5.9+dfsg-1ubuntu4.25)
upstream Needs triage

xenial Does not exist

php7.0
Launchpad, Ubuntu, Debian
artful Does not exist

bionic Does not exist

precise Does not exist

trusty Does not exist

upstream Needs triage

xenial Not vulnerable
(7.0.30-0ubuntu0.16.04.1)
php7.1
Launchpad, Ubuntu, Debian
artful Not vulnerable
(7.1.17-0ubuntu0.17.10.1)
bionic Does not exist

precise Does not exist

trusty Does not exist

upstream Needs triage

xenial Does not exist

php7.2
Launchpad, Ubuntu, Debian
artful Does not exist

bionic
Released (7.2.7-0ubuntu0.18.04.2)
precise Does not exist

trusty Does not exist

upstream Needs triage

xenial Does not exist

Notes

AuthorNote
mdeslaur
only affects 7.2.x
USN-3702-1 didn't actually fix this issue, the patch wasn't
included in 7.2.7. Another security update will be published
with the patch included.

References

Bugs