Public bug reported: Hi,
Looks like this bug affects the 5.x series too: https://bugs.php.net/bug.php?id=72682 After the security upgrade: php5 (5.3.10-1ubuntu3.24) precise-security; urgency=medium ... SECURITY UPDATE: out of bounds read in exif_process_IFD_in_MAKERNOTE debian/patches/CVE-2016-6291.patch: add more bounds checks to ext/exif/exif.c. CVE-2016-6291 ... -- Marc Deslauriers marc.deslauri...@ubuntu.com Mon, 01 Aug 2016 13:27:52 -0400 Looks like others noticed it too, cf. http://stackoverflow.com/questions/38772471/php-exif-read-data-no- longer-extracts-gps-location Please update the security patch so the regression is resolved. TIA. ** Affects: php5 (Ubuntu) Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1633031 Title: exif_read_data broken in a lot of use cases by the CVE-2016-6291 bugfix To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/php5/+bug/1633031/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
