Unrated severityCISA KEVNVD Advisory· Published Oct 28, 2019· Updated Oct 21, 2025
Underflow in PHP-FPM can lead to RCE
CVE-2019-11043
Description
In PHP versions 7.1.x below 7.1.33, 7.2.x below 7.2.24 and 7.3.x below 7.3.11 in certain configurations of FPM setup it is possible to cause FPM module to write past allocated buffers into the space reserved for FCGI protocol data, thus opening the possibility of remote code execution.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
38- osv-coords36 versionspkg:rpm/almalinux/apcu-panelpkg:rpm/almalinux/libzippkg:rpm/almalinux/libzip-develpkg:rpm/almalinux/libzip-toolspkg:rpm/almalinux/php-pearpkg:rpm/almalinux/php-pecl-apcupkg:rpm/almalinux/php-pecl-apcu-develpkg:rpm/almalinux/php-pecl-zippkg:rpm/opensuse/php7&distro=openSUSE%20Leap%2015.0pkg:rpm/opensuse/php7&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/php7&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/php7&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/php7-test&distro=openSUSE%20Leap%2015.0pkg:rpm/opensuse/php7-test&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/php8&distro=openSUSE%20Tumbleweedpkg:rpm/suse/php5&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Web%20and%20Scripting%2012pkg:rpm/suse/php5&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP4pkg:rpm/suse/php72&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Web%20and%20Scripting%2012pkg:rpm/suse/php72&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP4pkg:rpm/suse/php72&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5pkg:rpm/suse/php7&distro=SUSE%20Enterprise%20Storage%206pkg:rpm/suse/php7&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-ESPOSpkg:rpm/suse/php7&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSSpkg:rpm/suse/php7&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOSpkg:rpm/suse/php7&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSSpkg:rpm/suse/php7&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015pkg:rpm/suse/php7&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Web%20and%20Scripting%2012pkg:rpm/suse/php7&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Web%20and%20Scripting%2015pkg:rpm/suse/php7&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Web%20and%20Scripting%2015%20SP1pkg:rpm/suse/php7&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-BCLpkg:rpm/suse/php7&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSSpkg:rpm/suse/php7&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSSpkg:rpm/suse/php7&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015pkg:rpm/suse/php7&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1pkg:rpm/suse/php7&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP4pkg:rpm/suse/php7&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5
< 5.1.12-2.module_el8.3.0+2010+7c76a223+ 35 more
- (no CPE)range: < 5.1.12-2.module_el8.3.0+2010+7c76a223
- (no CPE)range: < 1.5.1-2.module_el8.3.0+2010+7c76a223
- (no CPE)range: < 1.5.1-2.module_el8.4.0+2228+7c76a223
- (no CPE)range: < 1.5.1-2.module_el8.4.0+2228+7c76a223
- (no CPE)range: < 1:1.10.5-9.module_el8.3.0+2010+7c76a223
- (no CPE)range: < 5.1.12-2.module_el8.5.0+53+9945c2af
- (no CPE)range: < 5.1.12-2.module_el8.5.0+53+9945c2af
- (no CPE)range: < 1.15.3-1.module_el8.5.0+53+9945c2af
- (no CPE)range: < 7.2.5-lp150.2.29.2
- (no CPE)range: < 7.2.5-lp151.6.13.1
- (no CPE)range: < 7.2.34-150000.4.103.1
- (no CPE)range: < 7.4.24-1.1
- (no CPE)range: < 7.2.5-lp150.2.29.2
- (no CPE)range: < 7.2.5-lp151.6.13.1
- (no CPE)range: < 8.0.11-1.1
- (no CPE)range: < 5.5.14-109.68.1
- (no CPE)range: < 5.5.14-109.68.1
- (no CPE)range: < 7.2.5-1.29.1
- (no CPE)range: < 7.2.5-1.29.1
- (no CPE)range: < 7.2.5-1.29.1
- (no CPE)range: < 7.2.34-150000.4.103.1
- (no CPE)range: < 7.2.34-150000.4.103.1
- (no CPE)range: < 7.2.34-150000.4.103.1
- (no CPE)range: < 7.2.34-150000.4.103.1
- (no CPE)range: < 7.2.34-150000.4.103.1
- (no CPE)range: < 7.2.5-4.46.1
- (no CPE)range: < 7.0.7-50.88.1
- (no CPE)range: < 7.2.5-4.46.1
- (no CPE)range: < 7.2.5-4.46.1
- (no CPE)range: < 7.2.34-150000.4.103.1
- (no CPE)range: < 7.2.34-150000.4.103.1
- (no CPE)range: < 7.2.34-150000.4.103.1
- (no CPE)range: < 7.2.34-150000.4.103.1
- (no CPE)range: < 7.2.34-150000.4.103.1
- (no CPE)range: < 7.0.7-50.88.1
- (no CPE)range: < 7.0.7-50.88.1
Patches
Vulnerability mechanics
References
26- lists.opensuse.org/opensuse-security-announce/2019-11/msg00011.htmlmitrevendor-advisoryx_refsource_SUSE
- lists.opensuse.org/opensuse-security-announce/2019-11/msg00014.htmlmitrevendor-advisoryx_refsource_SUSE
- access.redhat.com/errata/RHSA-2019:3286mitrevendor-advisoryx_refsource_REDHAT
- access.redhat.com/errata/RHSA-2019:3287mitrevendor-advisoryx_refsource_REDHAT
- access.redhat.com/errata/RHSA-2019:3299mitrevendor-advisoryx_refsource_REDHAT
- access.redhat.com/errata/RHSA-2019:3300mitrevendor-advisoryx_refsource_REDHAT
- access.redhat.com/errata/RHSA-2019:3724mitrevendor-advisoryx_refsource_REDHAT
- access.redhat.com/errata/RHSA-2019:3735mitrevendor-advisoryx_refsource_REDHAT
- access.redhat.com/errata/RHSA-2019:3736mitrevendor-advisoryx_refsource_REDHAT
- access.redhat.com/errata/RHSA-2020:0322mitrevendor-advisoryx_refsource_REDHAT
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3W23TP6X4H7LB645FYZLUPNIRD5W3EPU/mitrevendor-advisoryx_refsource_FEDORA
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FSNBUSPKMLUHHOADROKNG5GDWDCRHT5M/mitrevendor-advisoryx_refsource_FEDORA
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T62LF4ZWVV7OMMIZFO6IFO5QLZKK7YRD/mitrevendor-advisoryx_refsource_FEDORA
- usn.ubuntu.com/4166-1/mitrevendor-advisoryx_refsource_UBUNTU
- usn.ubuntu.com/4166-2/mitrevendor-advisoryx_refsource_UBUNTU
- www.debian.org/security/2019/dsa-4552mitrevendor-advisoryx_refsource_DEBIAN
- www.debian.org/security/2019/dsa-4553mitrevendor-advisoryx_refsource_DEBIAN
- packetstormsecurity.com/files/156642/PHP-FPM-7.x-Remote-Code-Execution.htmlmitrex_refsource_MISC
- seclists.org/fulldisclosure/2020/Jan/40mitremailing-listx_refsource_FULLDISC
- bugs.php.net/bug.phpmitrex_refsource_CONFIRM
- seclists.org/bugtraq/2020/Jan/44mitremailing-listx_refsource_BUGTRAQ
- security.netapp.com/advisory/ntap-20191031-0003/mitrex_refsource_CONFIRM
- support.apple.com/kb/HT210919mitrex_refsource_CONFIRM
- support.f5.com/csp/article/K75408500mitrex_refsource_CONFIRM
- www.synology.com/security/advisory/Synology_SA_19_36mitrex_refsource_CONFIRM
- www.tenable.com/security/tns-2021-14mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.