CVE-2019-9152

Опубликовано: 19 фев. 2019

Источник: redhat

CVSS3: 5.3

EPSS Низкий

Описание

An issue was discovered in the HDF HDF5 1.10.4 library. There is an out of bounds read in the function H5MM_xstrdup in H5MM.c when called from H5O_dtype_decode_helper in H5Odtype.c.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat OpenStack Platform 10 (Newton)	hdf5	Will not fix
Red Hat OpenStack Platform 13 (Queens)	hdf5	Will not fix
Red Hat OpenStack Platform 14 (Rocky)	hdf5	Will not fix
Red Hat OpenStack Platform 15 (Stein)	hdf5	Will not fix
Red Hat OpenStack Platform 8 (Liberty)	hdf5	Will not fix
Red Hat OpenStack Platform 9 (Mitaka)	hdf5	Will not fix

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-125

https://bugzilla.redhat.com/show_bug.cgi?id=1684488hdf5: out of bounds read in function H5MM_xstrdup in H5MM.c

EPSS

Процентиль: 60%

0.00396

Низкий

5.3 Medium

CVSS3

Связанные уязвимости

CVE-2019-9152

CVSS3: 8.8

ubuntu

почти 7 лет назад

An issue was discovered in the HDF HDF5 1.10.4 library. There is an out of bounds read in the function H5MM_xstrdup in H5MM.c when called from H5O_dtype_decode_helper in H5Odtype.c.

CVE-2019-9152

CVSS3: 8.8

nvd

почти 7 лет назад

An issue was discovered in the HDF HDF5 1.10.4 library. There is an out of bounds read in the function H5MM_xstrdup in H5MM.c when called from H5O_dtype_decode_helper in H5Odtype.c.

CVE-2019-9152

CVSS3: 8.8

debian

почти 7 лет назад

An issue was discovered in the HDF HDF5 1.10.4 library. There is an ou ...

GHSA-4m46-2257-r2fq

CVSS3: 8.8

github

больше 3 лет назад

An issue was discovered in the HDF HDF5 1.10.4 library. There is an out of bounds read in the function H5MM_xstrdup in H5MM.c when called from H5O_dtype_decode_helper in H5Odtype.c.

EPSS

Процентиль: 60%

0.00396

Низкий

5.3 Medium

CVSS3