Total
64 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2020-10809 | 1 Hdfgroup | 1 Hdf5 | 2020-04-30 | 4.3 MEDIUM | 5.5 MEDIUM |
An issue was discovered in HDF5 through 1.12.0. A heap-based buffer overflow exists in the function Decompress() located in decompress.c. It can be triggered by sending a crafted file to the gif2h5 binary. It allows an attacker to cause Denial of Service. | |||||
CVE-2018-13868 | 1 Hdfgroup | 1 Hdf5 | 2019-10-02 | 7.5 HIGH | 9.8 CRITICAL |
An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5O_fill_old_decode in H5Ofill.c. | |||||
CVE-2018-13870 | 1 Hdfgroup | 1 Hdf5 | 2019-10-02 | 7.5 HIGH | 9.8 CRITICAL |
An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5O_link_decode in H5Olink.c. | |||||
CVE-2018-13873 | 1 Hdfgroup | 1 Hdf5 | 2019-10-02 | 7.5 HIGH | 9.8 CRITICAL |
An issue was discovered in the HDF HDF5 1.8.20 library. There is a buffer over-read in H5O_chunk_deserialize in H5Ocache.c. | |||||
CVE-2018-17437 | 1 Hdfgroup | 1 Hdf5 | 2019-10-02 | 4.3 MEDIUM | 6.5 MEDIUM |
Memory leak in the H5O_dtype_decode_helper() function in H5Odtype.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service (memory consumption) via a crafted HDF5 file. | |||||
CVE-2018-17435 | 1 Hdfgroup | 1 Hdf5 | 2019-10-02 | 4.3 MEDIUM | 6.5 MEDIUM |
A heap-based buffer over-read in H5O_attr_decode() in H5Oattr.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service via a crafted HDF5 file. This issue was triggered while converting an HDF file to GIF file. | |||||
CVE-2018-17234 | 1 Hdfgroup | 1 Hdf5 | 2019-10-02 | 4.3 MEDIUM | 6.5 MEDIUM |
Memory leak in the H5O__chunk_deserialize() function in H5Ocache.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service (memory consumption) via a crafted HDF5 file. | |||||
CVE-2018-13866 | 1 Hdfgroup | 1 Hdf5 | 2019-10-02 | 7.5 HIGH | 9.8 CRITICAL |
An issue was discovered in the HDF HDF5 1.8.20 library. There is a stack-based buffer over-read in the function H5F_addr_decode_len in H5Fint.c. | |||||
CVE-2018-11207 | 1 Hdfgroup | 1 Hdf5 | 2019-03-21 | 4.3 MEDIUM | 6.5 MEDIUM |
A division by zero was discovered in H5D__chunk_init in H5Dchunk.c in the HDF HDF5 1.10.2 library. It could allow a remote denial of service attack. | |||||
CVE-2018-11206 | 1 Hdfgroup | 1 Hdf5 | 2019-03-21 | 5.8 MEDIUM | 8.1 HIGH |
An out of bounds read was discovered in H5O_fill_new_decode and H5O_fill_old_decode in H5Ofill.c in the HDF HDF5 1.10.2 library. It could allow a remote denial of service or information disclosure attack. | |||||
CVE-2019-9151 | 1 Hdfgroup | 1 Hdf5 | 2019-02-26 | 6.8 MEDIUM | 8.8 HIGH |
An issue was discovered in the HDF HDF5 1.10.4 library. There is an out of bounds read in the function H5VM_memcpyvv in H5VM.c when called from H5D__compact_readvv in H5Dcompact.c. | |||||
CVE-2019-9152 | 1 Hdfgroup | 1 Hdf5 | 2019-02-26 | 6.8 MEDIUM | 8.8 HIGH |
An issue was discovered in the HDF HDF5 1.10.4 library. There is an out of bounds read in the function H5MM_xstrdup in H5MM.c when called from H5O_dtype_decode_helper in H5Odtype.c. | |||||
CVE-2019-8396 | 1 Hdfgroup | 1 Hdf5 | 2019-02-19 | 4.3 MEDIUM | 6.5 MEDIUM |
A buffer overflow in H5O__layout_encode in H5Olayout.c in the HDF HDF5 through 1.10.4 library allows attackers to cause a denial of service via a crafted HDF5 file. This issue was triggered while repacking an HDF5 file, aka "Invalid write of size 2." | |||||
CVE-2019-8397 | 1 Hdfgroup | 1 Hdf5 | 2019-02-19 | 4.3 MEDIUM | 6.5 MEDIUM |
An issue was discovered in the HDF HDF5 1.10.4 library. There is an out of bounds read in the function H5T_close_real in H5T.c. | |||||
CVE-2019-8398 | 1 Hdfgroup | 1 Hdf5 | 2019-02-19 | 4.3 MEDIUM | 6.5 MEDIUM |
An issue was discovered in the HDF HDF5 1.10.4 library. There is an out of bounds read in the function H5T_get_size in H5T.c. | |||||
CVE-2018-17434 | 1 Hdfgroup | 1 Hdf5 | 2018-11-28 | 4.3 MEDIUM | 6.5 MEDIUM |
A SIGFPE signal is raised in the function apply_filters() of h5repack_filters.c in the HDF HDF5 through 1.10.3 library during an attempted parse of a crafted HDF file, because of incorrect protection against division by zero. It could allow a remote denial of service attack. | |||||
CVE-2018-17233 | 1 Hdfgroup | 1 Hdf5 | 2018-11-21 | 4.3 MEDIUM | 6.5 MEDIUM |
A SIGFPE signal is raised in the function H5D__create_chunk_file_map_hyper() of H5Dchunk.c in the HDF HDF5 through 1.10.3 library during an attempted parse of a crafted HDF file, because of incorrect protection against division by zero. It could allow a remote denial of service attack. | |||||
CVE-2018-17237 | 1 Hdfgroup | 1 Hdf5 | 2018-11-21 | 4.3 MEDIUM | 6.5 MEDIUM |
A SIGFPE signal is raised in the function H5D__chunk_set_info_real() of H5Dchunk.c in the HDF HDF5 1.10.3 library during an attempted parse of a crafted HDF file, because of incorrect protection against division by zero. This issue is different from CVE-2018-11207. | |||||
CVE-2018-17436 | 1 Hdfgroup | 1 Hdf5 | 2018-11-09 | 4.3 MEDIUM | 6.5 MEDIUM |
ReadCode() in decompress.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service (invalid write access) via a crafted HDF5 file. This issue was triggered while converting a GIF file to an HDF file. | |||||
CVE-2018-17438 | 1 Hdfgroup | 1 Hdf5 | 2018-11-09 | 4.3 MEDIUM | 6.5 MEDIUM |
A SIGFPE signal is raised in the function H5D__select_io() of H5Dselect.c in the HDF HDF5 through 1.10.3 library during an attempted parse of a crafted HDF file, because of incorrect protection against division by zero. It could allow a remote denial of service attack. |