JLSEC-2026-341

A vulnerability has been found in HDF5 up to 1.14.6 and classified as critical. This vulnerability affects the function H5Faddrdecodelen of the file /hdf5/src/H5Fint.c. The manipulation leads to heap-based buffer overflow. An attack has to be approached locally. The exploit has been disclosed to...

JLSEC-2026-315

HDF5 Library through 1.14.3 contains a heap-based buffer over-read in H5Faddrdecodelen in H5Fint.c, resulting in the corruption of the instruction pointer...

hdf5: HDF5 heap-based overflow

A heap-based buffer overflow was found in HDF5. This flaw exists in the H5Faddrdecodelen function of the /hdf5/src/H5Fint.c file and may be triggered by input manipulation to the function. Local access is required to exploit this flaw...

HDF5 H5Fint.c H5F_addr_decode_len heap-based overflow

...

HDF5 Heap Buffer Overflow Vulnerability

HDF5 is a library of HDF open source . HDF5 has a heap buffer overflow vulnerability , the vulnerability stems from the H5Fint.c file in the H5Faddrdecodelen function fails to correctly validate the length of the input data size , an attacker can use this vulnerability to cause a denial of servic...

Out-of-Bounds

Overview Affected versions of this package are vulnerable to Out-of-Bounds the function H5Faddrdecodelen in the file H5Fint.c. An attacker can execute arbitrary code, cause a denial of service, or potentially alter data by providing specially crafted input that triggers a heap-based overflow...

hdf5: multiple CVEs

HDF5 Library through 1.14.3 contains a heap-based buffer over-read in H5Faddrdecodelen in H5Fint.c, resulting in the corruption of the instruction pointer...

Vulnerability of the H5F_addr_decode_len() function in the H5Fint.c file of the HDF5 library, which allows a hacker to cause a service failure.

The vulnerability of the H5Faddrdecodelen function in the H5Fint.c file of the HDF5 library is related to memory-walk attacks. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the H5F_addr_decode_len() function in the H5Fint.c file of the HDF5 library allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the H5Faddrdecodelen function in the H5Fint.c file of the HDF5 library is related to buffer overflow in the queue. Exploitation of this vulnerability could allow a remote attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

DEBIAN-CVE-2024-32620

HDF5 Library through 1.14.3 contains a heap-based buffer over-read in H5Faddrdecodelen in H5Fint.c, resulting in the corruption of the instruction pointer...

HDF5 Library through 1.14.3 contains a heap-based buffer over-read in H5F_addr_decode_len in H5Fint.c resulting in the corruption of the instruction pointer.

...

UBUNTU-CVE-2018-13866

An issue was discovered in the HDF HDF5 1.8.20 library. There is a stack-based buffer over-read in the function H5Faddrdecodelen in H5Fint.c...