HDF HDF5 Buffer Overflow Vulnerability

HDF5 is a data model, library, and file format for storing and managing data. A buffer overflow vulnerability exists in H5Olayoutencode in H5Olayout.c in HDF HDF5 1.10.4 and earlier versions. An attacker can exploit this vulnerability to cause a denial of service via a specially crafted HDF5 file...

UBUNTU-CVE-2019-8396

A buffer overflow in H5Olayoutencode in H5Olayout.c in the HDF HDF5 through 1.10.4 library allows attackers to cause a denial of service via a crafted HDF5 file. This issue was triggered while repacking an HDF5 file, aka "Invalid write of size 2."...

UBUNTU-CVE-2019-8398

An issue was discovered in the HDF HDF5 1.10.4 library. There is an out of bounds read in the function H5Tgetsize in H5T.c...

PT-2019-19010 · Hdf +3 · Hdf5 +3

Name of the Vulnerable Software and Affected Versions: HDF5 versions prior to 1.10.5 Description: A buffer overflow issue in the HDF5 library allows attackers to cause a denial of service via a crafted HDF5 file. This issue was triggered while repacking an HDF5 file. Recommendations: For versions...

The vulnerability of the applyilters() function in the HDF5 library, which allows a hacker to cause a service failure

The vulnerability of the applyilters function h5repackfilters.c in the HDF5 library is related to a division by zero error. Exploiting this vulnerability could allow an attacker to cause service interruptions remotely...

The vulnerability of the H5O_attr_decode() function in the HDF5 library, which allows a hacker to cause a service failure

The vulnerability of the H5OattrDecode function H5Oattr.c in the HDF5 library arises from the operation leaving the buffer boundaries into memory. Exploiting this vulnerability could allow a malicious actor, operating remotely, to cause service failures by using a specially crafted HDF5 file...

jackson-dataformat-xml vulnerable to XML external entity (XXE)

XML external entity XXE vulnerability in XmlMapper in the Data format extension for Jackson aka jackson-dataformat-xml allows attackers to have unspecified impact via unknown vectors...

Foxit Reader and Foxit PhantomPDF for Windows Remote Code Execution Vulnerability (CNVD-2018-21826)

Foxit Reader for Windows is a Windows-based PDF document reader from China's Foxit Foxit Software Corporation.Foxit PhantomPDF for Windows is its commercial version. A vulnerability exists in the handling of JSON objects in Foxit Reader 9.2.0.9297 and earlier versions and Foxit PhantomPDF...

HDF5 Null Pointer Dereference Vulnerability (CNVD-2019-03443)

HDF5 is a free suite of tools for managing the storage of different types of data that can be managed, manipulated, viewed, analyzed, and generated in portable formats. A null pointer dereference vulnerability exists in the 'H5Osdspaceencode' function of the H5Osdspace.c file in HDF51.10.3 and...

HDF5 memory leak vulnerability (CNVD-2019-03447)

HDF5 is a free suite of tools for managing the storage of different types of data that can be managed, manipulated, viewed, analyzed, and generated in portable formats. A memory disclosure vulnerability exists in the 'H5Odtypedecodehelper' function of the H5Odtype.c file in HDF5 1.10.3 and earlie...

HDF5 Denial of Service Vulnerability

HDF5 is a free suite of tools for managing the storage of different types of data that can be managed, manipulated, viewed, analyzed, and generated in portable formats. A denial of service vulnerability exists in the 'ReadCode' function of the decompress.c file in HDF5 1.10.3 and earlier versions...

HDF5 Buffer Out-of-Bounds Read Vulnerability

HDF5 is a free suite of tools for managing the storage of different types of data that can be managed, manipulated, viewed, analyzed, and generated in portable formats. A heap buffer out-of-bounds read vulnerability exists in the 'H5Oattrdecode' function of the H5Oattr.c file in HDF51.10.3 and...

DEBIAN-CVE-2018-17437

Memory leak in the H5Odtypedecodehelper function in H5Odtype.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service memory consumption via a crafted HDF5 file...

DEBIAN-CVE-2018-17439

An issue was discovered in the HDF HDF5 1.10.3 library. There is a stack-based buffer overflow in the function H5Sextentgetdims in H5S.c. Specifically, this issue occurs while converting an HDF5 file to a GIF file...

UBUNTU-CVE-2018-17434

A SIGFPE signal is raised in the function applyfilters of h5repackfilters.c in the HDF HDF5 through 1.10.3 library during an attempted parse of a crafted HDF file, because of incorrect protection against division by zero. It could allow a remote denial of service attack...

UBUNTU-CVE-2018-17435

A heap-based buffer over-read in H5Oattrdecode in H5Oattr.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service via a crafted HDF5 file. This issue was triggered while converting an HDF file to GIF file...

DEBIAN-CVE-2018-17432

A NULL pointer dereference in H5Osdspaceencode in H5Osdspace.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service via a crafted HDF5 file...

UBUNTU-CVE-2018-17439

An issue was discovered in the HDF HDF5 1.10.3 library. There is a stack-based buffer overflow in the function H5Sextentgetdims in H5S.c. Specifically, this issue occurs while converting an HDF5 file to a GIF file...

DEBIAN-CVE-2018-17434

A SIGFPE signal is raised in the function applyfilters of h5repackfilters.c in the HDF HDF5 through 1.10.3 library during an attempted parse of a crafted HDF file, because of incorrect protection against division by zero. It could allow a remote denial of service attack...

UBUNTU-CVE-2018-17436

ReadCode in decompress.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service invalid write access via a crafted HDF5 file. This issue was triggered while converting a GIF file to an HDF file...