Hdf5 Security Vulnerabilities and Issues — Hdf5 CVE List

Lucene search

HdfgroupHdf5

35 matches found

CVE•added 2018/09/24 2:29 p.m.•86 views

CVE-2018-17432

A NULL pointer dereference in H5O_sdspace_encode() in H5Osdspace.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service via a crafted HDF5 file.

6.5CVSS5.5AI score0.00687EPSS

CVE•added 2018/09/24 2:29 p.m.•83 views

CVE-2018-17435

A heap-based buffer over-read in H5O_attr_decode() in H5Oattr.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service via a crafted HDF5 file. This issue was triggered while converting an HDF file to GIF file.

6.5CVSS6AI score0.00583EPSS

CVE•added 2018/07/20 3:29 p.m.•79 views

CVE-2018-14460

An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5O_sdspace_decode in H5Osdspace.c.

8.8CVSS6.7AI score0.00338EPSS

CVE•added 2018/07/10 9:29 p.m.•77 views

CVE-2018-13870

An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5O_link_decode in H5Olink.c.

9.8CVSS9.3AI score0.00657EPSS

CVE•added 2018/07/13 2:29 a.m.•77 views

CVE-2018-14033

An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5O_layout_decode in H5Olayout.c, related to HDmemcpy.

8.8CVSS6.6AI score0.00569EPSS

CVE•added 2018/05/16 3:29 p.m.•73 views

CVE-2018-11206

An out of bounds read was discovered in H5O_fill_new_decode and H5O_fill_old_decode in H5Ofill.c in the HDF HDF5 1.10.2 library. It could allow a remote denial of service or information disclosure attack.

8.1CVSS6.3AI score0.00648EPSS

CVE•added 2018/07/10 9:29 p.m.•71 views

CVE-2018-13869

An issue was discovered in the HDF HDF5 1.8.20 library. There is a memcpy parameter overlap in the function H5O_link_decode in H5Olink.c.

9.8CVSS9.2AI score0.00657EPSS

CVE•added 2018/05/16 3:29 p.m.•65 views

CVE-2018-11207

A division by zero was discovered in H5D__chunk_init in H5Dchunk.c in the HDF HDF5 1.10.2 library. It could allow a remote denial of service attack.

6.5CVSS6.3AI score0.00617EPSS

CVE•added 2018/07/13 2:29 a.m.•63 views

CVE-2018-14031

An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5T_copy in H5T.c.

8.8CVSS8.5AI score0.00291EPSS

CVE•added 2018/09/20 6:29 a.m.•62 views

CVE-2018-17234

Memory leak in the H5O__chunk_deserialize() function in H5Ocache.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service (memory consumption) via a crafted HDF5 file.

6.5CVSS5.5AI score0.00101EPSS

CVE•added 2018/09/24 2:29 p.m.•61 views

CVE-2018-17436

ReadCode() in decompress.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service (invalid write access) via a crafted HDF5 file. This issue was triggered while converting a GIF file to an HDF file.

6.5CVSS5.5AI score0.00435EPSS

CVE•added 2018/09/24 2:29 p.m.•61 views

CVE-2018-17438

A SIGFPE signal is raised in the function H5D__select_io() of H5Dselect.c in the HDF HDF5 through 1.10.3 library during an attempted parse of a crafted HDF file, because of incorrect protection against division by zero. It could allow a remote denial of service attack.

6.5CVSS5.8AI score0.00609EPSS

CVE•added 2018/05/16 3:29 p.m.•59 views

CVE-2018-11202

A NULL pointer dereference was discovered in H5S_hyper_make_spans in H5Shyper.c in the HDF HDF5 1.10.2 library. It could allow a remote denial of service attack.

6.5CVSS6.2AI score0.01203EPSS

CVE•added 2018/05/16 3:29 p.m.•59 views

CVE-2018-11205

A out of bounds read was discovered in H5VM_memcpyvv in H5VM.c in the HDF HDF5 1.10.2 library. It could allow a remote denial of service or information disclosure attack.

8.1CVSS7.7AI score0.00668EPSS

CVE•added 2018/09/20 6:29 a.m.•58 views

CVE-2018-17237

A SIGFPE signal is raised in the function H5D__chunk_set_info_real() of H5Dchunk.c in the HDF HDF5 1.10.3 library during an attempted parse of a crafted HDF file, because of incorrect protection against division by zero. This issue is different from CVE-2018-11207.

6.5CVSS5.7AI score0.00617EPSS

CVE•added 2018/09/24 2:29 p.m.•58 views

CVE-2018-17439

An issue was discovered in the HDF HDF5 1.10.3 library. There is a stack-based buffer overflow in the function H5S_extent_get_dims() in H5S.c. Specifically, this issue occurs while converting an HDF5 file to a GIF file.

6.5CVSS6.9AI score0.00332EPSS

CVE•added 2018/07/13 2:29 a.m.•57 views

CVE-2018-14035

An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5VM_memcpyvv in H5VM.c.

8.8CVSS8.7AI score0.00396EPSS

CVE•added 2018/09/24 2:29 p.m.•56 views

CVE-2018-17434

A SIGFPE signal is raised in the function apply_filters() of h5repack_filters.c in the HDF HDF5 through 1.10.3 library during an attempted parse of a crafted HDF file, because of incorrect protection against division by zero. It could allow a remote denial of service attack.

6.5CVSS5.8AI score0.00273EPSS

CVE•added 2018/07/10 9:29 p.m.•55 views

CVE-2018-13868

An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5O_fill_old_decode in H5Ofill.c.

9.8CVSS9.5AI score0.00425EPSS

CVE•added 2018/09/20 6:29 a.m.•54 views

CVE-2018-17233

A SIGFPE signal is raised in the function H5D__create_chunk_file_map_hyper() of H5Dchunk.c in the HDF HDF5 through 1.10.3 library during an attempted parse of a crafted HDF file, because of incorrect protection against division by zero. It could allow a remote denial of service attack.

6.5CVSS6.3AI score0.00371EPSS

CVE•added 2018/09/24 2:29 p.m.•54 views

CVE-2018-17437

Memory leak in the H5O_dtype_decode_helper() function in H5Odtype.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service (memory consumption) via a crafted HDF5 file.

6.5CVSS5.5AI score0.00101EPSS

CVE•added 2018/09/24 2:29 p.m.•53 views

CVE-2018-17433

A heap-based buffer overflow in ReadGifImageDesc() in gifread.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service via a crafted HDF5 file. This issue was triggered while converting a GIF file to an HDF file.

6.5CVSS5.8AI score0.00369EPSS

CVE•added 2018/09/04 12:29 a.m.•52 views

CVE-2018-16438

An issue was discovered in the HDF HDF5 1.8.20 library. There is an out of bounds read in H5L_extern_query at H5Lexternal.c.

8.8CVSS8.4AI score0.00414EPSS

CVE•added 2018/07/10 9:29 p.m.•51 views

CVE-2018-13874

An issue was discovered in the HDF HDF5 1.8.20 library. There is a stack-based buffer overflow in the function H5FD_sec2_read in H5FDsec2.c, related to HDmemset.

9.8CVSS9.6AI score0.00512EPSS

CVE•added 2018/05/16 3:29 p.m.•50 views

CVE-2018-11204

A NULL pointer dereference was discovered in H5O__chunk_deserialize in H5Ocache.c in the HDF HDF5 1.10.2 library. It could allow a remote denial of service attack.

6.5CVSS6.2AI score0.01148EPSS

CVE•added 2018/07/10 9:29 p.m.•50 views

CVE-2018-13872

An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer overflow in the function H5G_ent_decode in H5Gent.c.

9.8CVSS9.7AI score0.00512EPSS

CVE•added 2018/07/10 9:29 p.m.•50 views

CVE-2018-13875

An issue was discovered in the HDF HDF5 1.8.20 library. There is an out-of-bounds read in the function H5VM_memcpyvv in H5VM.c.

7.8CVSS7.5AI score0.00201EPSS

CVE•added 2018/08/21 11:29 p.m.•50 views

CVE-2018-15671

An issue was discovered in the HDF HDF5 1.10.2 library. Excessive stack consumption has been detected in the function H5P__get_cb() in H5Pint.c during an attempted parse of a crafted HDF file. This results in denial of service.

6.5CVSS6.3AI score0.00284EPSS

CVE•added 2018/05/16 3:29 p.m.•49 views

CVE-2018-11203

A division by zero was discovered in H5D__btree_decode_key in H5Dbtree.c in the HDF HDF5 1.10.2 library. It could allow a remote denial of service attack.

6.5CVSS6.2AI score0.00594EPSS

CVE•added 2018/07/10 9:29 p.m.•48 views

CVE-2018-13866

An issue was discovered in the HDF HDF5 1.8.20 library. There is a stack-based buffer over-read in the function H5F_addr_decode_len in H5Fint.c.

9.8CVSS9.5AI score0.00425EPSS

CVE•added 2018/07/10 9:29 p.m.•48 views

CVE-2018-13873

An issue was discovered in the HDF HDF5 1.8.20 library. There is a buffer over-read in H5O_chunk_deserialize in H5Ocache.c.

9.8CVSS9.5AI score0.00425EPSS

CVE•added 2018/07/10 9:29 p.m.•48 views

CVE-2018-13876

An issue was discovered in the HDF HDF5 1.8.20 library. There is a stack-based buffer overflow in the function H5FD_sec2_read in H5FDsec2.c, related to HDread.

9.8CVSS9.6AI score0.00515EPSS

CVE•added 2018/07/10 9:29 p.m.•47 views

CVE-2018-13867

An issue was discovered in the HDF HDF5 1.8.20 library. There is an out of bounds read in the function H5F__accum_read in H5Faccum.c.

9.8CVSS8.9AI score0.00291EPSS

CVE•added 2018/07/13 2:29 a.m.•47 views

CVE-2018-14034

An issue was discovered in the HDF HDF5 1.8.20 library. There is an out of bounds read in the function H5O_pline_reset in H5Opline.c.

8.8CVSS8.5AI score0.00396EPSS

CVE•added 2018/07/10 9:29 p.m.•46 views

CVE-2018-13871

An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer overflow in the function H5FL_blk_malloc in H5FL.c.

9.8CVSS9.7AI score0.00512EPSS