CVE-2019-9152

Опубликовано: 25 фев. 2019

Источник: debian

Описание

An issue was discovered in the HDF HDF5 1.10.4 library. There is an out of bounds read in the function H5MM_xstrdup in H5MM.c when called from H5O_dtype_decode_helper in H5Odtype.c.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
hdf5	unfixed			package

Примечания

https://github.com/magicSwordsMan/PAAFS/tree/master/vul8
issue in upstream bug tracker: https://jira.hdfgroup.org/browse/HDFFV-10719
Negligible security impact

Связанные уязвимости

CVE-2019-9152

CVSS3: 8.8

ubuntu

почти 7 лет назад

An issue was discovered in the HDF HDF5 1.10.4 library. There is an out of bounds read in the function H5MM_xstrdup in H5MM.c when called from H5O_dtype_decode_helper in H5Odtype.c.

CVE-2019-9152

CVSS3: 5.3

redhat

почти 7 лет назад

An issue was discovered in the HDF HDF5 1.10.4 library. There is an out of bounds read in the function H5MM_xstrdup in H5MM.c when called from H5O_dtype_decode_helper in H5Odtype.c.

CVE-2019-9152

CVSS3: 8.8

nvd

почти 7 лет назад

An issue was discovered in the HDF HDF5 1.10.4 library. There is an out of bounds read in the function H5MM_xstrdup in H5MM.c when called from H5O_dtype_decode_helper in H5Odtype.c.

GHSA-4m46-2257-r2fq

CVSS3: 8.8

github

больше 3 лет назад

An issue was discovered in the HDF HDF5 1.10.4 library. There is an out of bounds read in the function H5MM_xstrdup in H5MM.c when called from H5O_dtype_decode_helper in H5Odtype.c.