Total
66 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2018-17436 | 1 Hdfgroup | 1 Hdf5 | 2018-11-09 | 4.3 MEDIUM | 6.5 MEDIUM |
| ReadCode() in decompress.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service (invalid write access) via a crafted HDF5 file. This issue was triggered while converting a GIF file to an HDF file. | |||||
| CVE-2018-17438 | 1 Hdfgroup | 1 Hdf5 | 2018-11-09 | 4.3 MEDIUM | 6.5 MEDIUM |
| A SIGFPE signal is raised in the function H5D__select_io() of H5Dselect.c in the HDF HDF5 through 1.10.3 library during an attempted parse of a crafted HDF file, because of incorrect protection against division by zero. It could allow a remote denial of service attack. | |||||
| CVE-2018-17432 | 1 Hdfgroup | 1 Hdf5 | 2018-11-09 | 4.3 MEDIUM | 6.5 MEDIUM |
| A NULL pointer dereference in H5O_sdspace_encode() in H5Osdspace.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service via a crafted HDF5 file. | |||||
| CVE-2018-16438 | 1 Hdfgroup | 1 Hdf5 | 2018-10-26 | 6.8 MEDIUM | 8.8 HIGH |
| An issue was discovered in the HDF HDF5 1.8.20 library. There is an out of bounds read in H5L_extern_query at H5Lexternal.c. | |||||
| CVE-2018-15671 | 1 Hdfgroup | 1 Hdf5 | 2018-10-16 | 4.3 MEDIUM | 6.5 MEDIUM |
| An issue was discovered in the HDF HDF5 1.10.2 library. Excessive stack consumption has been detected in the function H5P__get_cb() in H5Pint.c during an attempted parse of a crafted HDF file. This results in denial of service. | |||||
| CVE-2018-14033 | 1 Hdfgroup | 1 Hdf5 | 2018-09-11 | 6.8 MEDIUM | 8.8 HIGH |
| An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5O_layout_decode in H5Olayout.c, related to HDmemcpy. | |||||
| CVE-2018-14031 | 1 Hdfgroup | 1 Hdf5 | 2018-09-11 | 6.8 MEDIUM | 8.8 HIGH |
| An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5T_copy in H5T.c. | |||||
| CVE-2018-14034 | 1 Hdfgroup | 1 Hdf5 | 2018-09-11 | 6.8 MEDIUM | 8.8 HIGH |
| An issue was discovered in the HDF HDF5 1.8.20 library. There is an out of bounds read in the function H5O_pline_reset in H5Opline.c. | |||||
| CVE-2018-14035 | 1 Hdfgroup | 1 Hdf5 | 2018-09-11 | 6.8 MEDIUM | 8.8 HIGH |
| An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5VM_memcpyvv in H5VM.c. | |||||
| CVE-2018-13875 | 1 Hdfgroup | 1 Hdf5 | 2018-09-07 | 6.8 MEDIUM | 7.8 HIGH |
| An issue was discovered in the HDF HDF5 1.8.20 library. There is an out-of-bounds read in the function H5VM_memcpyvv in H5VM.c. | |||||
| CVE-2018-14460 | 1 Hdfgroup | 1 Hdf5 | 2018-09-06 | 6.8 MEDIUM | 8.8 HIGH |
| An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5O_sdspace_decode in H5Osdspace.c. | |||||
| CVE-2018-13869 | 1 Hdfgroup | 1 Hdf5 | 2018-08-31 | 7.5 HIGH | 9.8 CRITICAL |
| An issue was discovered in the HDF HDF5 1.8.20 library. There is a memcpy parameter overlap in the function H5O_link_decode in H5Olink.c. | |||||
| CVE-2018-13867 | 1 Hdfgroup | 1 Hdf5 | 2018-08-28 | 7.5 HIGH | 9.8 CRITICAL |
| An issue was discovered in the HDF HDF5 1.8.20 library. There is an out of bounds read in the function H5F__accum_read in H5Faccum.c. | |||||
| CVE-2018-11202 | 1 Hdfgroup | 1 Hdf5 | 2018-06-18 | 4.3 MEDIUM | 6.5 MEDIUM |
| A NULL pointer dereference was discovered in H5S_hyper_make_spans in H5Shyper.c in the HDF HDF5 1.10.2 library. It could allow a remote denial of service attack. | |||||
| CVE-2018-11205 | 1 Hdfgroup | 1 Hdf5 | 2018-06-15 | 5.8 MEDIUM | 8.1 HIGH |
| A out of bounds read was discovered in H5VM_memcpyvv in H5VM.c in the HDF HDF5 1.10.2 library. It could allow a remote denial of service or information disclosure attack. | |||||
| CVE-2018-11203 | 1 Hdfgroup | 1 Hdf5 | 2018-06-15 | 4.3 MEDIUM | 6.5 MEDIUM |
| A division by zero was discovered in H5D__btree_decode_key in H5Dbtree.c in the HDF HDF5 1.10.2 library. It could allow a remote denial of service attack. | |||||
| CVE-2018-11204 | 1 Hdfgroup | 1 Hdf5 | 2018-06-15 | 4.3 MEDIUM | 6.5 MEDIUM |
| A NULL pointer dereference was discovered in H5O__chunk_deserialize in H5Ocache.c in the HDF HDF5 1.10.2 library. It could allow a remote denial of service attack. | |||||
| CVE-2017-17507 | 1 Hdfgroup | 1 Hdf5 | 2017-12-19 | 4.3 MEDIUM | 6.5 MEDIUM |
| In HDF5 1.10.1, there is an out of bounds read vulnerability in the function H5T_conv_struct_opt in H5Tconv.c in libhdf5.a. For example, h5dump would crash when someone opens a crafted hdf5 file. | |||||
| CVE-2017-17506 | 1 Hdfgroup | 1 Hdf5 | 2017-12-19 | 4.3 MEDIUM | 6.5 MEDIUM |
| In HDF5 1.10.1, there is an out of bounds read vulnerability in the function H5Opline_pline_decode in H5Opline.c in libhdf5.a. For example, h5dump would crash when someone opens a crafted hdf5 file. | |||||
| CVE-2017-17505 | 1 Hdfgroup | 1 Hdf5 | 2017-12-19 | 4.3 MEDIUM | 6.5 MEDIUM |
| In HDF5 1.10.1, there is a NULL pointer dereference in the function H5O_pline_decode in the H5Opline.c file in libhdf5.a. For example, h5dump would crash when someone opens a crafted hdf5 file. | |||||