Описание
An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5O_link_decode in H5Olink.c.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 8 | hdf5 | Will not fix | ||
| Red Hat Enterprise Linux OpenStack Platform 7 (Kilo) | hdf5 | Will not fix | ||
| Red Hat OpenStack Platform 10 (Newton) | hdf5 | Fix deferred | ||
| Red Hat OpenStack Platform 12 (Pike) | hdf5 | Affected | ||
| Red Hat OpenStack Platform 13 (Queens) | hdf5 | Fix deferred | ||
| Red Hat OpenStack Platform 14 (Rocky) | hdf5 | Fix deferred | ||
| Red Hat OpenStack Platform 8 (Liberty) | hdf5 | Will not fix | ||
| Red Hat OpenStack Platform 9 (Mitaka) | hdf5 | Will not fix |
Показывать по
Дополнительная информация
Статус:
EPSS
5.3 Medium
CVSS3
Связанные уязвимости
An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5O_link_decode in H5Olink.c.
An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5O_link_decode in H5Olink.c.
An issue was discovered in the HDF HDF5 1.8.20 library. There is a hea ...
An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5O_link_decode in H5Olink.c.
Уязвимость функции H5O_link_decode компонента H5Olink.c библиотеки обработки HDF файлов HDF5, позволяющая нарушителю получить доступ к конфиденциальным данным, нарушить их целостность, а также вызвать отказ в обслуживании
EPSS
5.3 Medium
CVSS3