exif_read_data broken in a lot of use cases by the CVE-2016-6291 bugfix
Bug #1633031 reported by
Josip Rodin
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
php5 (Ubuntu) |
Invalid
|
Low
|
Unassigned | ||
Precise |
Won't Fix
|
High
|
Unassigned | ||
Trusty |
Fix Released
|
High
|
Marc Deslauriers |
Bug Description
Hi,
Looks like this bug affects the 5.x series too: https:/
After the security upgrade:
php5 (5.3.10-
...
SECURITY UPDATE: out of bounds read in exif_process_
...
-- Marc Deslauriers <email address hidden> Mon, 01 Aug 2016 13:27:52 -0400
Looks like others noticed it too, cf. http://
Please update the security patch so the regression is resolved. TIA.
CVE References
To post a comment you must log in.
Thank you for filing this bug report! It does seem like a regression and we will ensure the affected versions get the fix.