Описание
A Stack-based Buffer Overflow Vulnerability exists in HDF5 1.13.1-1 via the H5D__create_chunk_file_map_hyper function in /hdf5/src/H5Dchunk.c, which causes a Denial of Service (context-dependent).
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| hdf5 | fixed | 1.14.5+repack-1 | package |
Примечания
https://github.com/HDFGroup/hdf5/issues/1313
https://github.com/advisories/GHSA-x57p-jwp6-4v79
https://github.com/HDFGroup/hdf5/pull/2241
https://github.com/HDFGroup/hdf5/commit/4e0277c35a5a6e8eb84058a905efa06bb3915985
Negligible security impact, malicous scientific data has more issues than a crash...
EPSS
Связанные уязвимости
A Stack-based Buffer Overflow Vulnerability exists in HDF5 1.13.1-1 via the H5D__create_chunk_file_map_hyper function in /hdf5/src/H5Dchunk.c, which causes a Denial of Service (context-dependent).
A Stack-based Buffer Overflow Vulnerability exists in HDF5 1.13.1-1 via the H5D__create_chunk_file_map_hyper function in /hdf5/src/H5Dchunk.c, which causes a Denial of Service (context-dependent).
A Stack-based Buffer Overflow Vulnerability exists in HDF5 1.13.1-1 via the H5D__create_chunk_file_map_hyper function in /hdf5/src/H5Dchunk.c, which causes a Denial of Service (context-dependent).
A Stack-based Buffer Overflow Vulnerability exists in HDF5 1.13.1-1 via the H5D__create_chunk_file_map_hyper function in /hdf5/src/H5Dchunk.c, which causes a Denial of Service (context-dependent).
Уязвимость функции H5D__create_chunk_file_map_hyper() в файле H5Dchunk.c. библиотеки HDF5, позволяющая нарушителю вызвать отказ в обслуживании
EPSS