Description
The exif_process_TIFF_in_JPEG function in ext/exif/exif.c in PHP before 5.5.35, 5.6.x before 5.6.21, and 7.x before 7.0.6 does not validate TIFF start data, which allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via crafted header data.
Remediation
References
Related Vulnerabilities
WordPress Plugin File Gallery Remote Code Execution (1.7.9)
Apache Tomcat Data Processing Errors Vulnerability (CVE-2014-0227)
PHP Integer Overflow or Wraparound Vulnerability (CVE-2022-37454)
Python URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2016-1000110)
WordPress Plugin UserPro-Community and User Profile Multiple Vulnerabilities (5.1.4)