CVE-2019-8397

Опубликовано: 17 фев. 2019

Источник: debian

Описание

An issue was discovered in the HDF HDF5 1.10.4 library. There is an out of bounds read in the function H5T_close_real in H5T.c.

Пакет	Статус	Релиз	Тип
hdf5	unfixed		package
hdf5	no-dsa	buster	package
hdf5	no-dsa	stretch	package
hdf5	ignored	jessie	package

https://github.com/magicSwordsMan/PAAFS/tree/master/vul5
issue in upstream bug tracker: https://jira.hdfgroup.org/browse/HDFFV-10711
Negligible security impact, malicous scientific data has more issues than a crash

CVE-2019-8397

CVSS3: 6.5

ubuntu

почти 7 лет назад

An issue was discovered in the HDF HDF5 1.10.4 library. There is an out of bounds read in the function H5T_close_real in H5T.c.

CVE-2019-8397

CVSS3: 5.5

redhat

около 7 лет назад

An issue was discovered in the HDF HDF5 1.10.4 library. There is an out of bounds read in the function H5T_close_real in H5T.c.

CVE-2019-8397

CVSS3: 6.5

nvd

почти 7 лет назад

An issue was discovered in the HDF HDF5 1.10.4 library. There is an out of bounds read in the function H5T_close_real in H5T.c.

GHSA-r7r8-fv8q-mvm6

CVSS3: 6.5

github

больше 3 лет назад

An issue was discovered in the HDF HDF5 1.10.4 library. There is an out of bounds read in the function H5T_close_real in H5T.c.