Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2024-32617

Опубликовано: 14 мая 2024
Источник: debian
EPSS Низкий

Описание

HDF5 Library through 1.14.3 contains a heap-based buffer over-read caused by the unsafe use of strdup in H5MM_xstrdup in H5MM.c (called from H5G__ent_to_link in H5Glink.c).

Пакеты

ПакетСтатусВерсия исправленияРелизТип
hdf5fixed1.14.5+repack-1package
hdf5no-dsabookwormpackage
hdf5no-dsabullseyepackage

Примечания

  • https://www.hdfgroup.org/2024/05/new-hdf5-cve-issues-fixed-in-1-14-4/

EPSS

Процентиль: 54%
0.00318
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2024-32617

CVSS3: 8.8
ubuntu
около 1 года назад

HDF5 Library through 1.14.3 contains a heap-based buffer over-read caused by the unsafe use of strdup in H5MM_xstrdup in H5MM.c (called from H5G__ent_to_link in H5Glink.c).

redhat логотип

CVE-2024-32617

redhat
около 1 года назад

HDF5 Library through 1.14.3 contains a heap-based buffer over-read caused by the unsafe use of strdup in H5MM_xstrdup in H5MM.c (called from H5G__ent_to_link in H5Glink.c).

nvd логотип

CVE-2024-32617

CVSS3: 8.8
nvd
около 1 года назад

HDF5 Library through 1.14.3 contains a heap-based buffer over-read caused by the unsafe use of strdup in H5MM_xstrdup in H5MM.c (called from H5G__ent_to_link in H5Glink.c).

msrc логотип

CVE-2024-32617

CVSS3: 8.8
msrc
около 1 года назад

Описание отсутствует

github логотип

GHSA-g9g4-wrgg-h792

CVSS3: 8.8
github
около 1 года назад

HDF5 Library through 1.14.3 contains a heap-based buffer over-read caused by the unsafe use of strdup in H5MM_xstrdup in H5MM.c (called from H5G__ent_to_link in H5Glink.c).

EPSS

Процентиль: 54%
0.00318
Низкий