5.3

CVE-2019-11038

Exploit

When using the gdImageCreateFromXbm() function in the GD Graphics Library (aka LibGD) 2.2.5, as used in the PHP GD extension in PHP versions 7.1.x below 7.1.30, 7.2.x below 7.2.19 and 7.3.x below 7.3.6, it is possible to supply data that will cause the function to use the value of uninitialized variable. This may lead to disclosing contents of the stack that has been left there by previous code.

Data is provided by the National Vulnerability Database (NVD)
LibgdLibgd Version2.2.5
PhpPhp Version >= 7.1.0 < 7.1.30
PhpPhp Version >= 7.2.0 < 7.2.19
PhpPhp Version >= 7.3.0 < 7.3.6
CanonicalUbuntu Linux Version14.04 SwEditionesm
CanonicalUbuntu Linux Version16.04 SwEditionlts
CanonicalUbuntu Linux Version18.04 SwEditionlts
CanonicalUbuntu Linux Version19.10
DebianDebian Linux Version8.0
DebianDebian Linux Version9.0
FedoraprojectFedora Version29
FedoraprojectFedora Version30
FedoraprojectFedora Version32
SuseLinux Enterprise Debuginfo Version11 Updatesp4
OpensuseLeap Version15.1
SuseLinux Enterprise Desktop Version12 Updatesp4
SuseLinux Enterprise Server Version12 Updatesp4
SuseLinux Enterprise Server Version12 Updatesp5
RedhatSoftware Collections Version1.0
RedhatEnterprise Linux Version7.0
RedhatEnterprise Linux Version8.0
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 8.29% 0.919
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 5.3 3.9 1.4
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:P/I:N/A:N
security@php.net 3.1 1.6 1.4
CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N
CWE-457 Use of Uninitialized Variable

The code uses a variable that has not been initialized, leading to unpredictable or unintended results.

CWE-908 Use of Uninitialized Resource

The product uses or accesses a resource that has not been initialized.

https://seclists.org/bugtraq/2019/Sep/38
Third Party Advisory
Mailing List
https://bugzilla.redhat.com/show_bug.cgi?id=1724149
Third Party Advisory
Exploit
Issue Tracking
https://bugzilla.redhat.com/show_bug.cgi?id=1724432
Third Party Advisory
Exploit
Issue Tracking
https://bugzilla.suse.com/show_bug.cgi?id=1140118
Third Party Advisory
Exploit
Issue Tracking
https://bugzilla.suse.com/show_bug.cgi?id=1140120
Third Party Advisory
Exploit
Issue Tracking
https://github.com/libgd/libgd/issues/501
Third Party Advisory
Exploit
https://usn.ubuntu.com/4316-1/
Third Party Advisory
https://usn.ubuntu.com/4316-2/
Third Party Advisory