147 matches found
SUSE CVE-2017-17507
In HDF5 1.10.1, there is an out of bounds read vulnerability in the function H5Tconvstructopt in H5Tconv.c in libhdf5.a. For example, h5dump would crash when someone opens a crafted hdf5 file...
SUSE CVE-2018-11206
An out of bounds read was discovered in H5Ofillnewdecode and H5Ofillolddecode in H5Ofill.c in the HDF HDF5 1.10.2 library. It could allow a remote denial of service or information disclosure attack...
SUSE CVE-2018-13868
An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5Ofillolddecode in H5Ofill.c...
SUSE CVE-2018-13871
An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer overflow in the function H5FLblkmalloc in H5FL.c...
SUSE CVE-2018-13870
An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5Olinkdecode in H5Olink.c...
SUSE CVE-2018-13869
An issue was discovered in the HDF HDF5 1.8.20 library. There is a memcpy parameter overlap in the function H5Olinkdecode in H5Olink.c...
SUSE CVE-2018-14033
An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5Olayoutdecode in H5Olayout.c, related to HDmemcpy...
SUSE CVE-2018-17432
A NULL pointer dereference in H5Osdspaceencode in H5Osdspace.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service via a crafted HDF5 file...
SUSE CVE-2018-17435
A heap-based buffer over-read in H5Oattrdecode in H5Oattr.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service via a crafted HDF5 file. This issue was triggered while converting an HDF file to GIF file...
SUSE CVE-2018-17438
A SIGFPE signal is raised in the function H5Dselectio of H5Dselect.c in the HDF HDF5 through 1.10.3 library during an attempted parse of a crafted HDF file, because of incorrect protection against division by zero. It could allow a remote denial of service attack...
SUSE CVE-2019-8396
A buffer overflow in H5Olayoutencode in H5Olayout.c in the HDF HDF5 through 1.10.4 library allows attackers to cause a denial of service via a crafted HDF5 file. This issue was triggered while repacking an HDF5 file, aka "Invalid write of size 2."...
SUSE CVE-2021-36977
matio aka MAT File I/O Library 1.5.20 and 1.5.21 has a heap-based buffer overflow in H5MMmemcpy called from H5MMmalloc and H5Cloadentry, related to use of HDF5 1.12.0...
SUSE CVE-2021-45833
A Stack-based Buffer Overflow Vulnerability exists in HDF5 1.13.1-1 via the H5Dcreatechunkfilemaphyper function in /hdf5/src/H5Dchunk.c, which causes a Denial of Service context-dependent...
SUSE CVE-2022-25942
An out-of-bounds read vulnerability exists in the gif2h5 functionality of HDF5 Group libhdf5 1.10.4. A specially-crafted GIF file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...
SUSE CVE-2022-25972
An out-of-bounds write vulnerability exists in the gif2h5 functionality of HDF5 Group libhdf5 1.10.4. A specially-crafted GIF file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...
DEBIAN-CVE-2021-37501
Buffer Overflow vulnerability in HDFGroup hdf5-h5dump 1.12.0 through 1.13.0 allows attackers to cause a denial of service via h5toolsstrsprint in /hdf5/tools/lib/h5toolsstr.c...
DEBIAN-CVE-2022-26061
A heap-based buffer overflow vulnerability exists in the gif2h5 functionality of HDF5 Group libhdf5 1.10.4. A specially-crafted GIF file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...
DEBIAN-CVE-2022-25942
An out-of-bounds read vulnerability exists in the gif2h5 functionality of HDF5 Group libhdf5 1.10.4. A specially-crafted GIF file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...
PT-2022-7545 · Hdf5 +2 · Hdf5 +2
Name of the Vulnerable Software and Affected Versions: HDF5 versions prior to 1.14.4 Description: The issue is related to a buffer overflow in the H5Z filter fletcher32 function of the HDF5 library, which can lead to corruption of the instruction pointer. This can cause denial of service or...
PT-2022-7548 · Hdf5 +4 · Hdf5 +4
Name of the Vulnerable Software and Affected Versions: HDF5 versions prior to 1.14.4 Description: The issue is related to a heap buffer overflow in the H5A attr release table function of the HDF5 library. This overflow can lead to the corruption of the instruction pointer, resulting in denial of...