Описание
An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5VM_memcpyvv in H5VM.c.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 8 | hdf5 | Will not fix | ||
| Red Hat Enterprise Linux OpenStack Platform 7 (Kilo) | hdf5 | Will not fix | ||
| Red Hat OpenStack Platform 10 (Newton) | hdf5 | Fix deferred | ||
| Red Hat OpenStack Platform 12 (Pike) | hdf5 | Affected | ||
| Red Hat OpenStack Platform 13 (Queens) | hdf5 | Fix deferred | ||
| Red Hat OpenStack Platform 14 (Rocky) | hdf5 | Fix deferred | ||
| Red Hat OpenStack Platform 8 (Liberty) | hdf5 | Will not fix | ||
| Red Hat OpenStack Platform 9 (Mitaka) | hdf5 | Will not fix |
Показывать по
10
Дополнительная информация
Статус:
Low
Дефект:
CWE-200
https://bugzilla.redhat.com/show_bug.cgi?id=1600985hdf5: heap-based buffer over-read in the function H5VM_memcpyvv in H5VM.c
EPSS
Процентиль: 59%
0.00376
Низкий
5.3 Medium
CVSS3
Связанные уязвимости
CVSS3: 8.8
ubuntu
больше 7 лет назад
An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5VM_memcpyvv in H5VM.c.
CVSS3: 8.8
nvd
больше 7 лет назад
An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5VM_memcpyvv in H5VM.c.
CVSS3: 8.8
debian
больше 7 лет назад
An issue was discovered in the HDF HDF5 1.8.20 library. There is a hea ...
CVSS3: 8.8
github
больше 3 лет назад
An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5VM_memcpyvv in H5VM.c.
EPSS
Процентиль: 59%
0.00376
Низкий
5.3 Medium
CVSS3