Resource exhaustion in php7 (Alpine package)

1) Resource exhaustion

EUVDB-ID: #VU28318

Risk: Medium

CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2019-11048

CWE-ID: CWE-400 - Resource exhaustion

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to the way PHP handles long filenames or field names during file upload. A remote attacker can supply an overly long filename to the application that will lead PHP engine to try to allocate oversized memory storage, hit the memory limit and stop processing the request, without cleaning up temporary files created by upload request. This will lead to accumulation of uncleaned temporary files exhausting the disk space on the target server.

Mitigation

Install update from vendor's website.

Vulnerable software versions

php7 (Alpine package): 7.2.5-r0 - 7.2.27-r0

CPE2.3

• cpe:2.3:o:alpine:php7_alpine_package:7.2.5-r0:*:*:*:*:alpine_linux:*:3.7
• cpe:2.3:o:alpine:php7_alpine_package:7.2.6-r0:*:*:*:*:alpine_linux:*:3.7
• cpe:2.3:o:alpine:php7_alpine_package:7.2.7-r0:*:*:*:*:alpine_linux:*:3.7

External links

https://git.alpinelinux.org/aports/commit/?id=04fa411a1b511be35d5189ccb24cd445be042688
https://git.alpinelinux.org/aports/commit/?id=88b6599af086a66070987236b518ccb5d5247aae
https://git.alpinelinux.org/aports/commit/?id=126f2868cb8f15a33a8be6ce1d861b78a9da5248
https://git.alpinelinux.org/aports/commit/?id=4ab6ec338e73a646eba32e1773417a2a8f9b7283

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.