CVE-2026-26200

HDF5 is software for managing data. Prior to version 1.14.4-2, an attacker who can control an h5 file parsed by HDF5 can trigger a write-based heap buffer overflow condition. This can lead to a denial-of-service condition, and potentially further issues such as remote code execution depending on...

PT-2025-28021

Name of the Vulnerable Software and Affected Versions: HDF5 version 1.14.6 Description: A problematic issue has been found in HDF5, affecting the function H5FL malloc of the file src/H5FL.c. This issue leads to a memory leak and requires local attacking to exploit. The exploit has been disclosed ...

PT-2025-23238

Name of the Vulnerable Software and Affected Versions hdf5 version 1.14.6 Description A heap buffer overflow was discovered via the H5Z filter scaleoffset function. Recommendations For version 1.14.6, consider disabling the H5Z filter scaleoffset function as a temporary workaround until a patch i...

CVE-2018-13873

An issue was discovered in the HDF HDF5 1.8.20 library. There is a buffer over-read in H5Ochunkdeserialize in H5Ocache.c...