Описание
HDF5 v1.13.1-1 was discovered to contain a heap-use-after free via the component H5AC_unpin_entry.
A use-after-free flaw was found in HDF5's component H5AC_unpin_entry.
Отчет
In Red Hat OpenStack Platform, HDF5 is only included as part of a loose dependency trail from python3-hardware. Because there is a very low likelihood that an attacker would be able to exploit this vulnerability in a meaningful way, no RHOSP update will be provided at this time.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat OpenStack Platform 13 (Queens) | hdf5 | Out of support scope | ||
| Red Hat OpenStack Platform 16.1 | hdf5 | Will not fix |
Показывать по
Дополнительная информация
Статус:
8 High
CVSS3
Связанные уязвимости
HDF5 v1.13.1-1 was discovered to contain a heap-use-after free via the component H5AC_unpin_entry.
HDF5 v1.13.1-1 was discovered to contain a heap-use-after free via the component H5AC_unpin_entry.
HDF5 v1.13.1-1 was discovered to contain a heap-use-after free via the ...
HDF5 v1.13.1-1 was discovered to contain a heap-use-after free via the component H5AC_unpin_entry.
Уязвимость компонента H5AC_unpin_entry библиотеки HDF5, позволяющая нарушителю оказывать влияние на конфиденциальность, целостность и доступность информации
8 High
CVSS3