Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Hdfgroup Subscribe
Total 64 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-10809 1 Hdfgroup 1 Hdf5 2020-04-30 4.3 MEDIUM 5.5 MEDIUM
An issue was discovered in HDF5 through 1.12.0. A heap-based buffer overflow exists in the function Decompress() located in decompress.c. It can be triggered by sending a crafted file to the gif2h5 binary. It allows an attacker to cause Denial of Service.
CVE-2018-13868 1 Hdfgroup 1 Hdf5 2019-10-02 7.5 HIGH 9.8 CRITICAL
An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5O_fill_old_decode in H5Ofill.c.
CVE-2018-13870 1 Hdfgroup 1 Hdf5 2019-10-02 7.5 HIGH 9.8 CRITICAL
An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5O_link_decode in H5Olink.c.
CVE-2018-13873 1 Hdfgroup 1 Hdf5 2019-10-02 7.5 HIGH 9.8 CRITICAL
An issue was discovered in the HDF HDF5 1.8.20 library. There is a buffer over-read in H5O_chunk_deserialize in H5Ocache.c.
CVE-2018-17437 1 Hdfgroup 1 Hdf5 2019-10-02 4.3 MEDIUM 6.5 MEDIUM
Memory leak in the H5O_dtype_decode_helper() function in H5Odtype.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service (memory consumption) via a crafted HDF5 file.
CVE-2018-17435 1 Hdfgroup 1 Hdf5 2019-10-02 4.3 MEDIUM 6.5 MEDIUM
A heap-based buffer over-read in H5O_attr_decode() in H5Oattr.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service via a crafted HDF5 file. This issue was triggered while converting an HDF file to GIF file.
CVE-2018-17234 1 Hdfgroup 1 Hdf5 2019-10-02 4.3 MEDIUM 6.5 MEDIUM
Memory leak in the H5O__chunk_deserialize() function in H5Ocache.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service (memory consumption) via a crafted HDF5 file.
CVE-2018-13866 1 Hdfgroup 1 Hdf5 2019-10-02 7.5 HIGH 9.8 CRITICAL
An issue was discovered in the HDF HDF5 1.8.20 library. There is a stack-based buffer over-read in the function H5F_addr_decode_len in H5Fint.c.
CVE-2018-11207 1 Hdfgroup 1 Hdf5 2019-03-21 4.3 MEDIUM 6.5 MEDIUM
A division by zero was discovered in H5D__chunk_init in H5Dchunk.c in the HDF HDF5 1.10.2 library. It could allow a remote denial of service attack.
CVE-2018-11206 1 Hdfgroup 1 Hdf5 2019-03-21 5.8 MEDIUM 8.1 HIGH
An out of bounds read was discovered in H5O_fill_new_decode and H5O_fill_old_decode in H5Ofill.c in the HDF HDF5 1.10.2 library. It could allow a remote denial of service or information disclosure attack.
CVE-2019-9151 1 Hdfgroup 1 Hdf5 2019-02-26 6.8 MEDIUM 8.8 HIGH
An issue was discovered in the HDF HDF5 1.10.4 library. There is an out of bounds read in the function H5VM_memcpyvv in H5VM.c when called from H5D__compact_readvv in H5Dcompact.c.
CVE-2019-9152 1 Hdfgroup 1 Hdf5 2019-02-26 6.8 MEDIUM 8.8 HIGH
An issue was discovered in the HDF HDF5 1.10.4 library. There is an out of bounds read in the function H5MM_xstrdup in H5MM.c when called from H5O_dtype_decode_helper in H5Odtype.c.
CVE-2019-8396 1 Hdfgroup 1 Hdf5 2019-02-19 4.3 MEDIUM 6.5 MEDIUM
A buffer overflow in H5O__layout_encode in H5Olayout.c in the HDF HDF5 through 1.10.4 library allows attackers to cause a denial of service via a crafted HDF5 file. This issue was triggered while repacking an HDF5 file, aka "Invalid write of size 2."
CVE-2019-8397 1 Hdfgroup 1 Hdf5 2019-02-19 4.3 MEDIUM 6.5 MEDIUM
An issue was discovered in the HDF HDF5 1.10.4 library. There is an out of bounds read in the function H5T_close_real in H5T.c.
CVE-2019-8398 1 Hdfgroup 1 Hdf5 2019-02-19 4.3 MEDIUM 6.5 MEDIUM
An issue was discovered in the HDF HDF5 1.10.4 library. There is an out of bounds read in the function H5T_get_size in H5T.c.
CVE-2018-17434 1 Hdfgroup 1 Hdf5 2018-11-28 4.3 MEDIUM 6.5 MEDIUM
A SIGFPE signal is raised in the function apply_filters() of h5repack_filters.c in the HDF HDF5 through 1.10.3 library during an attempted parse of a crafted HDF file, because of incorrect protection against division by zero. It could allow a remote denial of service attack.
CVE-2018-17233 1 Hdfgroup 1 Hdf5 2018-11-21 4.3 MEDIUM 6.5 MEDIUM
A SIGFPE signal is raised in the function H5D__create_chunk_file_map_hyper() of H5Dchunk.c in the HDF HDF5 through 1.10.3 library during an attempted parse of a crafted HDF file, because of incorrect protection against division by zero. It could allow a remote denial of service attack.
CVE-2018-17237 1 Hdfgroup 1 Hdf5 2018-11-21 4.3 MEDIUM 6.5 MEDIUM
A SIGFPE signal is raised in the function H5D__chunk_set_info_real() of H5Dchunk.c in the HDF HDF5 1.10.3 library during an attempted parse of a crafted HDF file, because of incorrect protection against division by zero. This issue is different from CVE-2018-11207.
CVE-2018-17436 1 Hdfgroup 1 Hdf5 2018-11-09 4.3 MEDIUM 6.5 MEDIUM
ReadCode() in decompress.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service (invalid write access) via a crafted HDF5 file. This issue was triggered while converting a GIF file to an HDF file.
CVE-2018-17438 1 Hdfgroup 1 Hdf5 2018-11-09 4.3 MEDIUM 6.5 MEDIUM
A SIGFPE signal is raised in the function H5D__select_io() of H5Dselect.c in the HDF HDF5 through 1.10.3 library during an attempted parse of a crafted HDF file, because of incorrect protection against division by zero. It could allow a remote denial of service attack.