← Back

CVE-2016-4544

nvd nist
Published: May 22, 2016Modified: May 6, 2026

JSON object

Loading...
9.8
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability: 3.9 / Impact: 5.9
Source: NVD

Description

The exif_process_TIFF_in_JPEG function in ext/exif/exif.c in PHP before 5.5.35, 5.6.x before 5.6.21, and 7.x before 7.0.6 does not validate TIFF start data, which allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via crafted header data.

Affected (7)

Products: Php: Php · Opensuse: Leap, Opensuse · Fedoraproject: Fedora · +1 more
Show all products
Php: Php · Opensuse: Leap, Opensuse · Fedoraproject: Fedora · Debian: Debian Linux
Php
1 product
Php
Opensuse
2 products
Leap
Opensuse
Fedoraproject
1 product
Fedora
Debian
1 product
Debian Linux
Configuration A
3 vulnerable
Vulnerable SoftwareAffected Versions
Php
Php
From 5.5.0 to 5.5.35
Php
From 5.6.0 to 5.6.21
Php
From 7.0.0 to 7.0.6
Configuration B
2 vulnerable
Vulnerable SoftwareAffected Versions
Leap
Version 42.1
Opensuse
Version 13.2
Configuration C
1 vulnerable
Vulnerable SoftwareAffected Versions
Fedora
Version 24
Configuration D
1 vulnerable
Vulnerable SoftwareAffected Versions
Debian Linux
Version 8.0

Related CWEs

CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

References (26)

Source: security@debian.org
Mailing ListThird Party Advisory
Source: security@debian.org
Mailing ListThird Party Advisory
Source: security@debian.org
Mailing ListThird Party Advisory
Source: security@debian.org
Release NotesVendor Advisory
Source: security@debian.org
Release NotesVendor Advisory
Source: security@debian.org
Third Party Advisory
Source: security@debian.org
Third Party Advisory
Source: security@debian.org
Mailing ListPatchThird Party Advisory
Source: security@debian.org
Third Party AdvisoryVDB Entry
Source: security@debian.org
ExploitIssue TrackingVendor Advisory
Source: security@debian.org
Source: security@debian.org
Third Party Advisory
Source: security@debian.org
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Release NotesVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Release NotesVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListPatchThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitIssue TrackingVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory

Timeline

No history available yet.