CVE-2011-4566 (retired)

Priority
Description
Integer overflow in the exif_process_IFD_TAG function in exif.c in the exif
extension in PHP 5.4.0beta2 on 32-bit platforms allows remote attackers to
read the contents of arbitrary memory locations or cause a denial of
service via a crafted offset_val value in an EXIF header in a JPEG file, a
different vulnerability than CVE-2011-0708.
More Information

Updated: 2019-09-19 15:38:50 UTC (commit d32ebc32606b9517c6fa7d65a15441e2a57a6de5)