Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Hdf5
(Hdfgroup)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 66 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2022-08-22 | CVE-2022-25942 | An out-of-bounds read vulnerability exists in the gif2h5 functionality of HDF5 Group libhdf5 1.10.4. A specially-crafted GIF file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability. | Hdf5 | 7.8 | ||
| 2022-08-22 | CVE-2022-25972 | An out-of-bounds write vulnerability exists in the gif2h5 functionality of HDF5 Group libhdf5 1.10.4. A specially-crafted GIF file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability. | Hdf5 | 7.8 | ||
| 2022-08-22 | CVE-2022-26061 | A heap-based buffer overflow vulnerability exists in the gif2h5 functionality of HDF5 Group libhdf5 1.10.4. A specially-crafted GIF file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability. | Hdf5 | 7.8 | ||
| 2022-01-21 | CVE-2021-46242 | HDF5 v1.13.1-1 was discovered to contain a heap-use-after free via the component H5AC_unpin_entry. | Hdf5 | 8.8 | ||
| 2022-01-21 | CVE-2021-46243 | An untrusted pointer dereference vulnerability exists in HDF5 v1.13.1-1 via the function H5O__dtype_decode_helper () at hdf5/src/H5Odtype.c. This vulnerability can lead to a Denial of Service (DoS). | Hdf5 | 6.5 | ||
| 2022-01-21 | CVE-2021-46244 | A Divide By Zero vulnerability exists in HDF5 v1.13.1-1 vis the function H5T__complete_copy () at /hdf5/src/H5T.c. This vulnerability causes an aritmetic exception, leading to a Denial of Service (DoS). | Hdf5 | 6.5 | ||
| 2022-01-05 | CVE-2021-45830 | A heap-based buffer overflow vulnerability exists in HDF5 1.13.1-1 via H5F_addr_decode_len in /hdf5/src/H5Fint.c, which could cause a Denial of Service. | Hdf5 | 5.5 | ||
| 2022-01-05 | CVE-2021-45833 | A Stack-based Buffer Overflow Vulnerability exists in HDF5 1.13.1-1 via the H5D__create_chunk_file_map_hyper function in /hdf5/src/H5Dchunk.c, which causes a Denial of Service (context-dependent). | Hdf5 | 5.5 | ||
| 2022-01-03 | CVE-2021-45829 | HDF5 1.13.1-1 is affected by: segmentation fault, which causes a Denial of Service. | Hdf5 | 5.5 | ||
| 2018-09-24 | CVE-2018-17439 | An issue was discovered in the HDF HDF5 1.10.3 library. There is a stack-based buffer overflow in the function H5S_extent_get_dims() in H5S.c. Specifically, this issue occurs while converting an HDF5 file to a GIF file. | Hdf5 | 6.5 |