CVE-2024-32613

Опубликовано: 14 мая 2024

Источник: debian

EPSS Низкий

Описание

HDF5 Library through 1.14.3 contains a heap-based buffer over-read in the function H5HL__fl_deserialize in H5HLcache.c, a different vulnerability than CVE-2024-32612.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
hdf5	fixed	1.14.5+repack-1		package
hdf5	no-dsa		bookworm	package
hdf5	no-dsa		bullseye	package

Примечания

https://www.hdfgroup.org/2024/05/new-hdf5-cve-issues-fixed-in-1-14-4/

EPSS

Процентиль: 24%

0.00077

Низкий

Связанные уязвимости

CVE-2024-32613

CVSS3: 7.4

ubuntu

больше 1 года назад

HDF5 Library through 1.14.3 contains a heap-based buffer over-read in the function H5HL__fl_deserialize in H5HLcache.c, a different vulnerability than CVE-2024-32612.

CVE-2024-32613

redhat

больше 1 года назад

HDF5 Library through 1.14.3 contains a heap-based buffer over-read in the function H5HL__fl_deserialize in H5HLcache.c, a different vulnerability than CVE-2024-32612.

CVE-2024-32613

CVSS3: 7.4

nvd

больше 1 года назад

HDF5 Library through 1.14.3 contains a heap-based buffer over-read in the function H5HL__fl_deserialize in H5HLcache.c, a different vulnerability than CVE-2024-32612.

CVE-2024-32613

CVSS3: 7.4

msrc

больше 1 года назад

HDF5 Library through 1.14.3 contains a heap-based buffer over-read in the function H5HL__fl_deserialize in H5HLcache.c a different vulnerability than CVE-2024-32612.

GHSA-qxhm-4w63-54c7

CVSS3: 7.4

github

больше 1 года назад

HDF5 Library through 1.14.3 contains a heap-based buffer over-read in the function H5HL__fl_deserialize in H5HLcache.c, a different vulnerability than CVE-2024-32612.

EPSS

Процентиль: 24%

0.00077

Низкий