OVAL Reference oval:com.ubuntu.disco:def:2019110400000000

Oval Definition:

oval:com.ubuntu.disco:def:2019110400000000

Revision Date:	2019-06-19	Version:	1
Title:	CVE-2019-11040 on Ubuntu 19.04 (disco) - medium.
Description:	When PHP EXIF extension is parsing EXIF information from an image, e.g. via exif_read_data() function, in PHP versions 7.1.x below 7.1.30, 7.2.x below 7.2.19 and 7.3.x below 7.3.6 it is possible to supply it with data what will cause it to read past the allocated buffer. This may lead to information disclosure or crash.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2019-11040
Platform(s):	Ubuntu 19.04	Product(s):
Definition Synopsis
Ubuntu 19.04 (disco) is installed. AND php7.2 package in disco was vulnerable but has been fixed (note: '7.2.19-0ubuntu0.19.04.1').