19 matches found
JLSEC-2026-324
HDF5 Library through 1.14.3 has a heap-based buffer overflow in H5Tconvstructopt in H5Tconv.c...
JLSEC-2026-316
HDF5 Library through 1.14.3 contains a heap-based buffer overflow in H5HGread in H5HG.c called from H5VLnativeblobget in H5VLnativeblob.c, resulting in the corruption of the instruction pointer...
CVE-2026-34734 HDF5: H5T__conv_struct Use After Free
HDF5 is software for managing data. In 1.14.1-2 and earlier, a heap-use-after-free was found in the h5dump helper utility. An attacker who can supply a malicious h5 file can trigger a heap use-after-free. The freed object is referenced in a memmove call from H5Tconvstruct. The original object was...
OESA-2026-1131 hdf5 security update
HDF5 is a data model, library, and file format for storing and managing data. It supports an unlimited variety of datatypes, and is designed for flexible and efficient I/O and for high volume and complex data. HDF5 is portable and is extensible, allowing applications to evolve in their use of HDF...
Linux Distros Unpatched Vulnerability : CVE-2025-2912
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in HDF5 up to 1.14.6. It has been declared as problematic. Affected by this vulnerability is the function H5Omsgflush of the file...
Improper Resource Shutdown or Release
Overview Affected versions of this package are vulnerable to Improper Resource Shutdown or Release in the H5Ochunkdeserialize function. An attacker can cause excessive resource consumption by providing specially crafted input that triggers repeated processing within this function. Remediation A f...
SUSE CVE-2025-2309
A vulnerability has been found in HDF5 1.14.6 and classified as critical. This vulnerability affects the function H5Tbitcopy of the component Type Conversion Logic. The manipulation leads to heap-based buffer overflow. Local access is required to approach this attack. The exploit has been disclos...
OESA-2024-2339 hdf5 security update
HDF5 is a data model, library, and file format for storing and managing data. It supports an unlimited variety of datatypes, and is designed for flexible and efficient I/O and for high volume and complex data. HDF5 is portable and is extensible, allowing applications to evolve in their use of HDF...
The vulnerability of the H5T__ref_mem_setnull() function in the H5Tref.c file of the HDF5 library allows a attacker to compromise the confidentiality and integrity of the protected information.
The vulnerability of the H5Trefmemsetnull function in the H5Tref.c file of the HDF5 library is related to buffer overflow in the queue. Exploitation of this vulnerability could allow an attacker to compromise the confidentiality and integrity of the protected information...
UBUNTU-CVE-2024-33877
HDF5 Library through 1.14.3 has a heap-based buffer overflow in H5Tconvstructopt in H5Tconv.c...
DEBIAN-CVE-2024-32623
HDF5 Library through 1.14.3 contains a heap-based buffer overflow in H5VMarrayfill in H5VM.c called from H5Sselectelements in H5Spoint.c...
DEBIAN-CVE-2024-29158
HDF5 through 1.14.3 contains a stack buffer overflow in H5FLarrmalloc, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution...
SUSE CVE-2024-32608
HDF5 library through 1.14.3 has memory corruption in H5Aclose resulting in the corruption of the instruction pointer and causing denial of service or potential code execution...
PT-2024-6196 · Unknown +2 · Hdf5 Library +2
Name of the Vulnerable Software and Affected Versions: HDF5 Library versions 1.14.3 and earlier Description: The issue is related to a heap-based buffer overflow in the H5HG read function in H5HG.c, which is called from H5VL native blob get in H5VLnative blob.c. This results in the corruption of...
PT-2024-6189 · Unknown +2 · Hdf5 Library +2
Name of the Vulnerable Software and Affected Versions: HDF5 Library versions prior to 1.14.4 Description: The issue is related to a heap buffer overflow in the H5S point deserialize function located in the H5Spoint.c file of the HDF5 Library. This overflow can be exploited by a remote attacker to...
UBUNTU-CVE-2021-37501
Buffer Overflow vulnerability in HDFGroup hdf5-h5dump 1.12.0 through 1.13.0 allows attackers to cause a denial of service via h5toolsstrsprint in /hdf5/tools/lib/h5toolsstr.c...
DEBIAN-CVE-2018-17432
A NULL pointer dereference in H5Osdspaceencode in H5Osdspace.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service via a crafted HDF5 file...
DEBIAN-CVE-2018-14034
An issue was discovered in the HDF HDF5 1.8.20 library. There is an out of bounds read in the function H5Oplinereset in H5Opline.c...
Common Data Format library buffer overflow
Buffer overflow in Read32s64 function...