Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2018-17237

Опубликовано: 05 сент. 2018
Источник: redhat
CVSS3: 4.3
EPSS Низкий

Описание

A SIGFPE signal is raised in the function H5D__chunk_set_info_real() of H5Dchunk.c in the HDF HDF5 1.10.3 library during an attempted parse of a crafted HDF file, because of incorrect protection against division by zero. This issue is different from CVE-2018-11207.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat OpenStack Platform 10 (Newton)hdf5Fix deferred
Red Hat OpenStack Platform 12 (Pike)hdf5Affected
Red Hat OpenStack Platform 13 (Queens)hdf5Fix deferred
Red Hat OpenStack Platform 14 (Rocky)hdf5Fix deferred
Red Hat OpenStack Platform 8 (Liberty)hdf5Fix deferred
Red Hat OpenStack Platform 9 (Mitaka)hdf5Fix deferred

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low
Дефект:
CWE-20
https://bugzilla.redhat.com/show_bug.cgi?id=1633860hdf5: SIGFPE signal in H5D__chunk_set_info_real() of H5Dchunk.c

EPSS

Процентиль: 34%
0.00138
Низкий

4.3 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2018-17237

CVSS3: 6.5
ubuntu
больше 7 лет назад

A SIGFPE signal is raised in the function H5D__chunk_set_info_real() of H5Dchunk.c in the HDF HDF5 1.10.3 library during an attempted parse of a crafted HDF file, because of incorrect protection against division by zero. This issue is different from CVE-2018-11207.

nvd логотип

CVE-2018-17237

CVSS3: 6.5
nvd
больше 7 лет назад

A SIGFPE signal is raised in the function H5D__chunk_set_info_real() of H5Dchunk.c in the HDF HDF5 1.10.3 library during an attempted parse of a crafted HDF file, because of incorrect protection against division by zero. This issue is different from CVE-2018-11207.

debian логотип

CVE-2018-17237

CVSS3: 6.5
debian
больше 7 лет назад

A SIGFPE signal is raised in the function H5D__chunk_set_info_real() o ...

github логотип

GHSA-whc6-484q-9856

CVSS3: 6.5
github
больше 3 лет назад

A SIGFPE signal is raised in the function H5D__chunk_set_info_real() of H5Dchunk.c in the HDF HDF5 1.10.3 library during an attempted parse of a crafted HDF file, because of incorrect protection against division by zero. This issue is different from CVE-2018-11207.

fstec логотип

BDU:2023-07648

CVSS3: 6.5
fstec
больше 7 лет назад

Уязвимость компонента H5Dchunk.c библиотеки обработки HDF файлов HDF5, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 34%
0.00138
Низкий

4.3 Medium

CVSS3