PT-2023-15535 · Apache · Apache Sling Commons Json

Name of the Vulnerable Software and Affected Versions: Apache Sling Commons JSON bundle affected versions not specified Description: The issue is related to improper input validation, allowing an attacker to trigger unexpected errors by supplying specially-crafted input. The...

PT-2023-21435 · Apple · Garageband

Name of the Vulnerable Software and Affected Versions: GarageBand versions prior to 10.4.8 Description: An out-of-bounds read issue was addressed with improved input validation. Parsing a maliciously crafted MIDI file may lead to an unexpected application termination or arbitrary code execution...

Siemens JT Open and JT Utilitiesh Out-of-Bounds Read Vulnerability

The JT Open Toolkit is an application programming interface API for software developers who support JT, a publicly available data format developed by Siemens Digital Industry Software and widely used for communication, visualization, numerical modeling and various other purposes. An out-of-bounds...

PT-2023-35535 · Hdf5 · Hdf5

Name of the Vulnerable Software and Affected Versions: HDF5 affected versions not specified Description: A heap buffer overflow read issue has been identified, which can cause a crash. The crash occurs due to an overflow in the heap buffer, specifically a READ 8 operation. The issue is related to...

Siemens JT Open and JT Utilitiesh Memory Corruption Vulnerability

JT Open Toolkit is an application programming interface API for software developers who support JT, a publicly released data format developed by Siemens Digital Industry Software and widely used for communication, visualization, digital modeling, and various other purposes.Siemens JT Open and JT...

SUSE CVE-2016-4331

When decoding data out of a dataset encoded with the H5ZNBIT decoding, the HDF5 1.8.16 library will fail to ensure that the precision is within the bounds of the size leading to arbitrary code execution...

SUSE CVE-2016-4333

The HDF5 1.8.16 library allocating space for the array using a value from the file has an impact within the loop for initializing said array allowing a value within the file to modify the loop's terminator. Due to this, an aggressor can cause the loop's index to point outside the bounds of the...

SUSE CVE-2017-17506

In HDF5 1.10.1, there is an out of bounds read vulnerability in the function H5Oplineplinedecode in H5Opline.c in libhdf5.a. For example, h5dump would crash when someone opens a crafted hdf5 file...

SUSE CVE-2018-11203

A division by zero was discovered in H5Dbtreedecodekey in H5Dbtree.c in the HDF HDF5 1.10.2 library. It could allow a remote denial of service attack...

SUSE CVE-2018-11204

A NULL pointer dereference was discovered in H5Ochunkdeserialize in H5Ocache.c in the HDF HDF5 1.10.2 library. It could allow a remote denial of service attack...

SUSE CVE-2018-13866

An issue was discovered in the HDF HDF5 1.8.20 library. There is a stack-based buffer over-read in the function H5Faddrdecodelen in H5Fint.c...

SUSE CVE-2018-13867

An issue was discovered in the HDF HDF5 1.8.20 library. There is an out of bounds read in the function H5Faccumread in H5Faccum.c...

SUSE CVE-2018-13872

An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer overflow in the function H5Gentdecode in H5Gent.c...

SUSE CVE-2018-13873

An issue was discovered in the HDF HDF5 1.8.20 library. There is a buffer over-read in H5Ochunkdeserialize in H5Ocache.c...

SUSE CVE-2018-13875

An issue was discovered in the HDF HDF5 1.8.20 library. There is an out-of-bounds read in the function H5VMmemcpyvv in H5VM.c...

SUSE CVE-2018-13876

An issue was discovered in the HDF HDF5 1.8.20 library. There is a stack-based buffer overflow in the function H5FDsec2read in H5FDsec2.c, related to HDread...

SUSE CVE-2018-14460

An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5Osdspacedecode in H5Osdspace.c...

SUSE CVE-2018-17433

A heap-based buffer overflow in ReadGifImageDesc in gifread.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service via a crafted HDF5 file. This issue was triggered while converting a GIF file to an HDF file...

SUSE CVE-2018-17436

ReadCode in decompress.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service invalid write access via a crafted HDF5 file. This issue was triggered while converting a GIF file to an HDF file...

SUSE CVE-2018-17439

An issue was discovered in the HDF HDF5 1.10.3 library. There is a stack-based buffer overflow in the function H5Sextentgetdims in H5S.c. Specifically, this issue occurs while converting an HDF5 file to a GIF file...