RSS   Vulnerabilities for 'HDF5'   RSS

2022-01-21
 
CVE-2021-46242

CWE-416
 

 
HDF5 v1.13.1-1 was discovered to contain a heap-use-after free via the component H5AC_unpin_entry.

 
 
CVE-2021-46243

CWE-476
 

 
An untrusted pointer dereference vulnerability exists in HDF5 v1.13.1-1 via the function H5O__dtype_decode_helper () at hdf5/src/H5Odtype.c. This vulnerability can lead to a Denial of Service (DoS).

 
 
CVE-2021-46244

CWE-369
 

 
A Divide By Zero vulnerability exists in HDF5 v1.13.1-1 vis the function H5T__complete_copy () at /hdf5/src/H5T.c. This vulnerability causes an aritmetic exception, leading to a Denial of Service (DoS).

 
2022-01-05
 
CVE-2021-45832

CWE-787
 

 
A Stack-based Buffer Overflow Vulnerability exists in HDF5 1.13.1-1 at at hdf5/src/H5Eint.c, which causes a Denial of Service (context-dependent).

 
 
CVE-2021-45833

CWE-787
 

 
A Stack-based Buffer Overflow Vulnerability exists in HDF5 1.13.1-1 via the H5D__create_chunk_file_map_hyper function in /hdf5/src/H5Dchunk.c, which causes a Denial of Service (context-dependent).

 
 
CVE-2021-45830

CWE-787
 

 
A heap-based buffer overflow vulnerability exists in HDF5 1.13.1-1 via H5F_addr_decode_len in /hdf5/src/H5Fint.c, which could cause a Denial of Service.

 
2022-01-03
 
CVE-2021-45829

CWE-404
 

 
HDF5 1.13.1-1 is affected by: segmentation fault, which causes a Denial of Service.

 
2020-03-22
 
CVE-2020-10812

CWE-476
 

 
An issue was discovered in HDF5 through 1.12.0. A NULL pointer dereference exists in the function H5F_get_nrefs() located in H5Fquery.c. It allows an attacker to cause Denial of Service.

 
 
CVE-2020-10811

CWE-125
 

 
An issue was discovered in HDF5 through 1.12.0. A heap-based buffer over-read exists in the function H5O__layout_decode() located in H5Olayout.c. It allows an attacker to cause Denial of Service.

 
 
CVE-2020-10810

CWE-476
 

 
An issue was discovered in HDF5 through 1.12.0. A NULL pointer dereference exists in the function H5AC_unpin_entry() located in H5AC.c. It allows an attacker to cause Denial of Service.

 


Copyright 2024, cxsecurity.com

 

Back to Top