Hdf5@* Security Vulnerabilities and Issues — Hdf5@* CVE List

Lucene search

HdfgroupHdf5*

35 matches found

CVE•added 2024/05/14 3:36 p.m.•131 views

CVE-2024-32615

HDF5 Library through 1.14.3 contains a heap-based buffer overflow in H5Z__nbit_decompress_one_byte in H5Znbit.c, caused by the earlier use of an initialized pointer.

9.8CVSS7.2AI score0.00417EPSS

CVE•added 2024/05/14 3:36 p.m.•109 views

CVE-2024-32610

HDF5 Library through 1.14.3 has a SEGV in H5T_close_real in H5T.c, resulting in a corrupted instruction pointer.

5.7CVSS6.7AI score0.00051EPSS

CVE•added 2024/05/14 3:38 p.m.•106 views

CVE-2024-33875

HDF5 Library through 1.14.3 has a heap-based buffer overflow in H5O__layout_encode in H5Olayout.c, resulting in the corruption of the instruction pointer.

5.7CVSS7.4AI score0.00062EPSS

CVE•added 2024/05/14 3:15 p.m.•104 views

CVE-2024-29166

HDF5 through 1.14.3 contains a buffer overflow in H5O__linfo_decode, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution.

5.7CVSS8AI score0.00054EPSS

CVE•added 2024/05/14 3:36 p.m.•104 views

CVE-2024-32607

HDF5 Library through 1.14.3 has a SEGV in H5A__close in H5Aint.c, resulting in the corruption of the instruction pointer.

5.7CVSS6.9AI score0.00061EPSS

CVE•added 2024/05/14 3:36 p.m.•97 views

CVE-2024-32606

HDF5 Library through 1.14.3 may attempt to dereference uninitialized values in h5tools_str_sprint in tools/lib/h5tools_str.c (called from h5tools_dump_simple_data in tools/lib/h5tools_dump.c).

5.7CVSS6.7AI score0.00135EPSS

CVE•added 2024/05/14 3:36 p.m.•97 views

CVE-2024-32621

HDF5 Library through 1.14.3 contains a heap-based buffer overflow in H5HG_read in H5HG.c (called from H5VL__native_blob_get in H5VLnative_blob.c), resulting in the corruption of the instruction pointer.

9.8CVSS7.4AI score0.00417EPSS

CVE•added 2024/05/14 3:38 p.m.•97 views

CVE-2024-33876

HDF5 Library through 1.14.3 has a heap buffer overflow in H5S__point_deserialize in H5Spoint.c.

5.7CVSS7.2AI score0.00068EPSS

CVE•added 2024/05/14 3:36 p.m.•96 views

CVE-2024-32624

HDF5 Library through 1.14.3 contains a heap-based buffer overflow in H5T__ref_mem_setnull in H5Tref.c (called from H5T__conv_ref in H5Tconv.c), resulting in the corruption of the instruction pointer.

7.4CVSS7.4AI score0.00328EPSS

CVE•added 2024/05/14 3:36 p.m.•94 views

CVE-2024-32612

HDF5 Library through 1.14.3 contains a heap-based buffer over-read in H5HL__fl_deserialize in H5HLcache.c, resulting in the corruption of the instruction pointer, a different vulnerability than CVE-2024-32613.

7.4CVSS6.8AI score0.00057EPSS

CVE•added 2024/05/14 3:36 p.m.•93 views

CVE-2024-32620

HDF5 Library through 1.14.3 contains a heap-based buffer over-read in H5F_addr_decode_len in H5Fint.c, resulting in the corruption of the instruction pointer.

7.4CVSS7.1AI score0.00052EPSS

CVE•added 2024/05/14 3:15 p.m.•92 views

CVE-2024-29164

HDF5 through 1.14.3 contains a stack buffer overflow in H5R__decode_heap, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution.

9.8CVSS8AI score0.00126EPSS

CVE•added 2024/05/14 3:36 p.m.•92 views

CVE-2024-32613

HDF5 Library through 1.14.3 contains a heap-based buffer over-read in the function H5HL__fl_deserialize in H5HLcache.c, a different vulnerability than CVE-2024-32612.

7.4CVSS6.6AI score0.00057EPSS

CVE•added 2024/05/14 3:36 p.m.•92 views

CVE-2024-32622

HDF5 Library through 1.14.3 contains a out-of-bounds read operation in H5FL_arr_malloc in H5FL.c (called from H5S_set_extent_simple in H5S.c).

9.1CVSS6.6AI score0.00215EPSS

CVE•added 2024/05/14 3:36 p.m.•90 views

CVE-2024-32616

HDF5 Library through 1.14.3 contains a heap-based buffer over-read in H5O__dtype_encode_helper in H5Odtype.c.

7.4CVSS6.9AI score0.00063EPSS

CVE•added 2024/05/14 3:36 p.m.•89 views

CVE-2024-32609

HDF5 Library through 1.14.3 allows stack consumption in the function H5E_printf_stack in H5Eint.c.

7.5CVSS6.7AI score0.00109EPSS

CVE•added 2024/05/14 3:15 p.m.•87 views

CVE-2024-29159

HDF5 through 1.14.3 contains a buffer overflow in H5Z__filter_scaleoffset, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution.

9.8CVSS8AI score0.00342EPSS

CVE•added 2024/05/14 3:15 p.m.•86 views

CVE-2024-29165

HDF5 through 1.14.3 contains a buffer overflow in H5Z__filter_fletcher32, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution.

7.4CVSS8AI score0.00062EPSS

CVE•added 2024/05/14 3:36 p.m.•86 views

CVE-2024-32618

HDF5 Library through 1.14.3 contains a heap-based buffer overflow in H5T__get_native_type in H5Tnative.c, resulting in the corruption of the instruction pointer.

7.4CVSS7.4AI score0.00077EPSS

CVE•added 2024/05/14 3:36 p.m.•85 views

CVE-2024-32619

HDF5 Library through 1.14.3 contains a heap-based buffer overflow in H5T_copy_reopen in H5T.c, resulting in the corruption of the instruction pointer.

7.4CVSS7.4AI score0.00065EPSS

CVE•added 2024/05/14 3:15 p.m.•84 views

CVE-2024-29163

HDF5 through 1.14.3 contains a heap buffer overflow in H5T__bit_find, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution.

7.4CVSS8AI score0.00062EPSS

CVE•added 2024/05/14 3:36 p.m.•84 views

CVE-2024-32611

HDF5 Library through 1.14.3 may use an uninitialized value in H5A__attr_release_table in H5Aint.c.

9.8CVSS6.7AI score0.00286EPSS

CVE•added 2024/05/14 3:15 p.m.•83 views

CVE-2024-29160

HDF5 through 1.14.3 contains a heap buffer overflow in H5HG__cache_heap_deserialize, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution.

7.4CVSS8AI score0.00062EPSS

CVE•added 2024/05/14 3:36 p.m.•83 views

CVE-2024-32617

HDF5 Library through 1.14.3 contains a heap-based buffer over-read caused by the unsafe use of strdup in H5MM_xstrdup in H5MM.c (called from H5G__ent_to_link in H5Glink.c).

8.8CVSS6.9AI score0.00318EPSS

CVE•added 2024/05/14 3:36 p.m.•79 views

CVE-2024-32614

HDF5 Library through 1.14.3 has a SEGV in H5VM_memcpyvv in H5VM.c.

8.8CVSS6.7AI score0.00289EPSS

CVE•added 2024/10/09 5:15 a.m.•74 views

CVE-2024-32608

HDF5 library through 1.14.3 has memory corruption in H5A__close resulting in the corruption of the instruction pointer and causing denial of service or potential code execution.

9.8CVSS7.7AI score0.00634EPSS

CVE•added 2024/05/14 3:38 p.m.•73 views

CVE-2024-33873

HDF5 Library through 1.14.3 has a heap-based buffer overflow in H5D__scatter_mem in H5Dscatgath.c.

8.8CVSS7.3AI score0.00362EPSS

CVE•added 2024/05/14 3:38 p.m.•73 views

CVE-2024-33874

HDF5 Library through 1.14.3 has a heap buffer overflow in H5O__mtime_new_encode in H5Omtime.c.

9.8CVSS7.3AI score0.00348EPSS

CVE•added 2024/05/14 3:15 p.m.•70 views

CVE-2024-29161

HDF5 through 1.14.3 contains a heap buffer overflow in H5A__attr_release_table, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution.

8.8CVSS8AI score0.00297EPSS

CVE•added 2024/05/14 3:38 p.m.•69 views

CVE-2024-33877

HDF5 Library through 1.14.3 has a heap-based buffer overflow in H5T__conv_struct_opt in H5Tconv.c.

8.8CVSS7.2AI score0.00392EPSS

CVE•added 2024/05/14 3:36 p.m.•68 views

CVE-2024-32605

HDF5 Library through 1.14.3 has a heap-based buffer over-read in H5VM_memcpyvv in H5VM.c (called from H5D__compact_readvv in H5Dcompact.c).

8.8CVSS6.9AI score0.00346EPSS

CVE•added 2024/05/14 3:36 p.m.•68 views

CVE-2024-32623

HDF5 Library through 1.14.3 contains a heap-based buffer overflow in H5VM_array_fill in H5VM.c (called from H5S_select_elements in H5Spoint.c).

8.8CVSS7.2AI score0.00392EPSS

CVE•added 2025/03/28 4:15 p.m.•55 views

CVE-2025-2912

A vulnerability was found in HDF5 up to 1.14.6. It has been declared as problematic. Affected by this vulnerability is the function H5O_msg_flush of the file src/H5Omessage.c. The manipulation of the argument oh leads to heap-based buffer overflow. The attack needs to be approached locally. The exp...

5.3CVSS7.3AI score0.00019EPSS

CVE•added 2025/03/28 7:15 p.m.•49 views

CVE-2025-2923

A vulnerability, which was classified as problematic, has been found in HDF5 up to 1.14.6. Affected by this issue is the function H5F_addr_encode_len of the file src/H5Fint.c. The manipulation of the argument pp leads to heap-based buffer overflow. Attacking locally is a requirement. The exploit ha...

4.8CVSS7.2AI score0.00019EPSS

CVE•added 2025/03/28 5:15 p.m.•45 views

CVE-2025-2913

A vulnerability was found in HDF5 up to 1.14.6. It has been rated as critical. Affected by this issue is the function H5FL__blk_gc_list of the file src/H5FL.c. The manipulation of the argument H5FL_blk_head_t leads to use after free. An attack has to be approached locally. The exploit has been disc...

5.3CVSS3.6AI score0.00019EPSS