Medium severity6.5NVD Advisory· Published Sep 20, 2018· Updated Jun 17, 2026

CVE-2018-17233

Description

A SIGFPE signal is raised in the function H5D__create_chunk_file_map_hyper() of H5Dchunk.c in the HDF HDF5 through 1.10.3 library during an attempted parse of a crafted HDF file, because of incorrect protection against division by zero. It could allow a remote denial of service attack.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

HDF/HDF5llm-fuzzy
Range: <=1.10.3
osv-coords32 versions
pkg:rpm/suse/hdf5_1_10_8-gnu-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-ESPOS pkg:rpm/suse/hdf5_1_10_8-gnu-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSS pkg:rpm/suse/hdf5_1_10_8-gnu-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-ESPOS pkg:rpm/suse/hdf5_1_10_8-gnu-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSS pkg:rpm/suse/hdf5_1_10_8-gnu-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOS pkg:rpm/suse/hdf5_1_10_8-gnu-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSS pkg:rpm/suse/hdf5_1_10_8-gnu-hpc&distro=SUSE%20Linux%20Enterprise%20Module%20for%20HPC%2012 pkg:rpm/suse/hdf5_1_10_8-gnu-mpich-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-ESPOS pkg:rpm/suse/hdf5_1_10_8-gnu-mpich-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSS pkg:rpm/suse/hdf5_1_10_8-gnu-mpich-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-ESPOS pkg:rpm/suse/hdf5_1_10_8-gnu-mpich-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSS pkg:rpm/suse/hdf5_1_10_8-gnu-mpich-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOS pkg:rpm/suse/hdf5_1_10_8-gnu-mpich-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSS pkg:rpm/suse/hdf5_1_10_8-gnu-mvapich2-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-ESPOS pkg:rpm/suse/hdf5_1_10_8-gnu-mvapich2-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSS pkg:rpm/suse/hdf5_1_10_8-gnu-mvapich2-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-ESPOS pkg:rpm/suse/hdf5_1_10_8-gnu-mvapich2-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSS pkg:rpm/suse/hdf5_1_10_8-gnu-mvapich2-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOS pkg:rpm/suse/hdf5_1_10_8-gnu-mvapich2-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSS pkg:rpm/suse/hdf5_1_10_8-gnu-mvapich2-hpc&distro=SUSE%20Linux%20Enterprise%20Module%20for%20HPC%2012 pkg:rpm/suse/hdf5_1_10_8-gnu-openmpi1-hpc&distro=SUSE%20Linux%20Enterprise%20Module%20for%20HPC%2012 pkg:rpm/suse/hdf5_1_10_8-gnu-openmpi2-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-ESPOS pkg:rpm/suse/hdf5_1_10_8-gnu-openmpi2-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSS pkg:rpm/suse/hdf5_1_10_8-gnu-openmpi2-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-ESPOS pkg:rpm/suse/hdf5_1_10_8-gnu-openmpi2-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSS pkg:rpm/suse/hdf5_1_10_8-gnu-openmpi2-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOS pkg:rpm/suse/hdf5_1_10_8-gnu-openmpi2-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSS pkg:rpm/suse/hdf5_1_10_8-gnu-openmpi3-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-ESPOS pkg:rpm/suse/hdf5_1_10_8-gnu-openmpi3-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSS pkg:rpm/suse/suse-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOS pkg:rpm/suse/suse-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSS pkg:rpm/suse/suse-hpc&distro=SUSE%20Linux%20Enterprise%20Module%20for%20HPC%2012
< 1.10.8-150100.7.4.3+ 31 more
- (no CPE)range: < 1.10.8-150100.7.4.3
- (no CPE)range: < 1.10.8-150100.7.4.3
- (no CPE)range: < 1.10.8-150200.8.4.2
- (no CPE)range: < 1.10.8-150200.8.4.2
- (no CPE)range: < 1.10.8-150000.8.4.3
- (no CPE)range: < 1.10.8-150000.8.4.3
- (no CPE)range: < 1.10.8-3.12.2
- (no CPE)range: < 1.10.8-150100.7.4.3
- (no CPE)range: < 1.10.8-150100.7.4.3
- (no CPE)range: < 1.10.8-150200.8.4.3
- (no CPE)range: < 1.10.8-150200.8.4.3
- (no CPE)range: < 1.10.8-150000.8.4.3
- (no CPE)range: < 1.10.8-150000.8.4.3
- (no CPE)range: < 1.10.8-150100.7.4.3
- (no CPE)range: < 1.10.8-150100.7.4.3
- (no CPE)range: < 1.10.8-150200.8.4.2
- (no CPE)range: < 1.10.8-150200.8.4.2
- (no CPE)range: < 1.10.8-150000.8.4.3
- (no CPE)range: < 1.10.8-150000.8.4.3
- (no CPE)range: < 1.10.8-3.12.2
- (no CPE)range: < 1.10.8-3.12.2
- (no CPE)range: < 1.10.8-150100.7.4.3
- (no CPE)range: < 1.10.8-150100.7.4.3
- (no CPE)range: < 1.10.8-150200.8.4.2
- (no CPE)range: < 1.10.8-150200.8.4.2
- (no CPE)range: < 1.10.8-150000.8.4.3
- (no CPE)range: < 1.10.8-150000.8.4.3
- (no CPE)range: < 1.10.8-150200.8.4.2
- (no CPE)range: < 1.10.8-150200.8.4.2
- (no CPE)range: < 0.5.20220206.0c6b168-150000.11.3.1
- (no CPE)range: < 0.5.20220206.0c6b168-150000.11.3.1
- (no CPE)range: < 0.5.20220206.0c6b168-5.2

Patches

Vulnerability mechanics

References

github.com/SegfaultMasters/covering360/tree/master/HDF5/vuln2nvdExploitThird Party Advisory
lists.debian.org/debian-lts-announce/2023/08/msg00009.htmlnvd

News mentions

No linked articles in our index yet.

cvss	0.423
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000