The exif_convert_any_to_int function in ext/exif/exif.c in PHP before 5.6.30, 7.0.x before 7.0.15, and 7.1.x before 7.1.1 allows remote attackers to cause a denial of service (application crash) via crafted EXIF data that triggers an attempt to divide the minimum representable negative integer by -1.
Vector
NETWORK
Complexity
LOW
Authentication
NONE
Confidentiality
NONE
Integrity
NONE
Availability
PARTIAL
Php Php 7.1.0 (not an official CPE)
Php Php 7.0.14 (not an official CPE)
Php Php 7.0.13 (not an official CPE)
Php Php 7.0.12 (not an official CPE)
Php Php 7.0.11 (not an official CPE)
Php Php 7.0.10 (not an official CPE)
Php Php 7.0.9 (not an official CPE)
Php Php 7.0.8 (not an official CPE)
Php Php 7.0.7 (not an official CPE)
Php Php 7.0.6 (not an official CPE)
Php Php 7.0.5 (not an official CPE)
Php Php 7.0.4 (not an official CPE)
Php Php 7.0.3 (not an official CPE)
Php Php 7.0.2 (not an official CPE)
Php Php 7.0.1 (not an official CPE)
Php Php 7.0.0 (not an official CPE)
Php Php 5.6.29 (not an official CPE)