Описание
An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5O_fill_old_decode in H5Ofill.c.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 8 | hdf5 | Will not fix | ||
| Red Hat Enterprise Linux OpenStack Platform 7 (Kilo) | hdf5 | Will not fix | ||
| Red Hat OpenStack Platform 10 (Newton) | hdf5 | Fix deferred | ||
| Red Hat OpenStack Platform 12 (Pike) | hdf5 | Affected | ||
| Red Hat OpenStack Platform 13 (Queens) | hdf5 | Fix deferred | ||
| Red Hat OpenStack Platform 14 (Rocky) | hdf5 | Fix deferred | ||
| Red Hat OpenStack Platform 8 (Liberty) | hdf5 | Will not fix | ||
| Red Hat OpenStack Platform 9 (Mitaka) | hdf5 | Will not fix |
Показывать по
10
Дополнительная информация
Статус:
Low
Дефект:
CWE-200
https://bugzilla.redhat.com/show_bug.cgi?id=1601464hdf5: heap-based buffer over-read in the function H5O_fill_old_decode in H5Ofill.c
EPSS
Процентиль: 60%
0.00403
Низкий
5.3 Medium
CVSS3
Связанные уязвимости
CVSS3: 9.8
ubuntu
больше 7 лет назад
An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5O_fill_old_decode in H5Ofill.c.
CVSS3: 9.8
nvd
больше 7 лет назад
An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5O_fill_old_decode in H5Ofill.c.
CVSS3: 9.8
debian
больше 7 лет назад
An issue was discovered in the HDF HDF5 1.8.20 library. There is a hea ...
CVSS3: 9.8
github
больше 3 лет назад
An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5O_fill_old_decode in H5Ofill.c.
EPSS
Процентиль: 60%
0.00403
Низкий
5.3 Medium
CVSS3