69 matches found
CVE-2022-26061
A heap-based buffer overflow vulnerability exists in the gif2h5 functionality of HDF5 Group libhdf5 1.10.4. A specially-crafted GIF file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...
CVE-2022-26061
CVE-2022-26061 describes a heap-based buffer overflow in the gif2h5 functionality of libhdf5 (HDF5 Group) up to version 1.10.4. A specially crafted GIF file can lead to code execution. Affected component: HDF5 libhdf5 1.10.4, function gif2h5. Root cause: heap overflow in GIF-to-HDF5 conversion pa...
CVE-2022-26061
A heap-based buffer overflow vulnerability exists in the gif2h5 functionality of HDF5 Group libhdf5 1.10.4. A specially-crafted GIF file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...
CVE-2022-26061
A heap-based buffer overflow vulnerability exists in the gif2h5 functionality of HDF5 Group libhdf5 1.10.4. A specially-crafted GIF file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...
CVE-2022-25972
An out-of-bounds write vulnerability exists in the gif2h5 functionality of HDF5 Group libhdf5 1.10.4. A specially-crafted GIF file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...
CVE-2022-25972
Affected software: libhdf5 1.10.4 (HDF5 Group). Vulnerable component: gif2h5 functionality. Root cause: out-of-bounds write in gif2h5 leading to potential code execution when processing a specially crafted GIF file. Impact as per sources: high confidentiality, integrity, and availability impact w...
CVE-2022-25972
An out-of-bounds write vulnerability exists in the gif2h5 functionality of HDF5 Group libhdf5 1.10.4. A specially-crafted GIF file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...
CVE-2022-25942
CVE-2022-25942 affects libhdf5 1.10.4 (gif2h5) as described in multiple advisories (NVD, Debian, Ubuntu, OSV, Astra Linux, etc.). The vulnerability is an out-of-bounds read in the gif2h5 functionality that can enable code execution when a specially crafted GIF file is processed by HDF5. Attack re...
CVE-2022-25942
An out-of-bounds read vulnerability exists in the gif2h5 functionality of HDF5 Group libhdf5 1.10.4. A specially-crafted GIF file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...
CVE-2022-25942
An out-of-bounds read vulnerability exists in the gif2h5 functionality of HDF5 Group libhdf5 1.10.4. A specially-crafted GIF file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...
CVE-2022-25942
An out-of-bounds read vulnerability exists in the gif2h5 functionality of HDF5 Group libhdf5 1.10.4. A specially-crafted GIF file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...
PT-2022-4360 · Libhdf5 +3 · Libhdf5 +3
Name of the Vulnerable Software and Affected Versions: libhdf5 version 1.10.4 Description: The issue is related to an out-of-bounds read vulnerability in the gif2h5 functionality of the libhdf5 library. This vulnerability can be exploited by a remote attacker who provides a specially-crafted GIF...
PT-2022-4359 · Libhdf5 +3 · Libhdf5 +3
Name of the Vulnerable Software and Affected Versions: libhdf5 version 1.10.4 Description: The issue is related to a heap-based buffer overflow vulnerability in the gif2h5 functionality of the libhdf5 library. This vulnerability can be exploited by opening a specially crafted GIF file, potentiall...
PT-2022-4361 · Hdf5 +3 · Libhdf5 +3
Name of the Vulnerable Software and Affected Versions: HDF5 Group libhdf5 version 1.10.4 Description: An out-of-bounds write issue exists in the gif2h5 functionality, allowing code execution through a specially-crafted GIF file. An attacker can trigger this issue by providing a malicious file,...
Vulnerability Spotlight: Three vulnerabilities in HDF5 file format could lead to remote code execution
Dave McDaniel of Cisco Talos discovered these vulnerabilities. Blog by Jon Munshaw. Cisco Talos recently discovered three vulnerabilities in a library that works with the HDF5 file format that could allow an attacker to execute remote code on a targeted device. These issues arise in the libhdf5...
HDF5 Group libhdf5 gif2h5 out-of-bounds read vulnerability
Talos Vulnerability Report TALOS-2022-1486 HDF5 Group libhdf5 gif2h5 out-of-bounds read vulnerability August 16, 2022 CVE Number CVE-2022-25942 SUMMARY An out-of-bounds read vulnerability exists in the gif2h5 functionality of HDF5 Group libhdf5 1.10.4. A specially-crafted GIF file can lead to cod...
HDF5 Group libhdf5 gif2h5 out-of-bounds write vulnerability
Talos Vulnerability Report TALOS-2022-1485 HDF5 Group libhdf5 gif2h5 out-of-bounds write vulnerability August 16, 2022 CVE Number CVE-2022-25972 SUMMARY An out-of-bounds write vulnerability exists in the gif2h5 functionality of HDF5 Group libhdf5 1.10.4. A specially-crafted GIF file can lead to...
HDF5 Group libhdf5 gif2h5 heap-based buffer overflow vulnerability
Talos Vulnerability Report TALOS-2022-1487 HDF5 Group libhdf5 gif2h5 heap-based buffer overflow vulnerability August 16, 2022 CVE Number CVE-2022-26061 SUMMARY A heap-based buffer overflow vulnerability exists in the gif2h5 functionality of HDF5 Group libhdf5 1.10.4. A specially-crafted GIF file...
CVE-2022-25972
An out-of-bounds write vulnerability exists in the gif2h5 functionality of HDF5 Group libhdf5 1.10.4. A specially-crafted GIF file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...
CVE-2022-26061
A heap-based buffer overflow vulnerability exists in the gif2h5 functionality of HDF5 Group libhdf5 1.10.4. A specially-crafted GIF file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...