Medium severity6.5NVD Advisory· Published Sep 24, 2018· Updated Jun 17, 2026
CVE-2018-17439
CVE-2018-17439
Description
An issue was discovered in the HDF HDF5 1.10.3 library. There is a stack-based buffer overflow in the function H5S_extent_get_dims() in H5S.c. Specifically, this issue occurs while converting an HDF5 file to a GIF file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
61- osv-coords60 versionspkg:rpm/opensuse/hdf5_1_10_8-gnu-hpc&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/hdf5_1_10_8-gnu-hpc&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/hdf5_1_10_8-gnu-mpich-hpc&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/hdf5_1_10_8-gnu-mpich-hpc&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/hdf5_1_10_8-gnu-mvapich2-hpc&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/hdf5_1_10_8-gnu-mvapich2-hpc&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/hdf5_1_10_8-gnu-openmpi2-hpc&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/hdf5_1_10_8-gnu-openmpi3-hpc&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/hdf5_1_10_8-gnu-openmpi3-hpc&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/hdf5_1_10_8-gnu-openmpi4-hpc&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/hdf5_1_10_8-gnu-openmpi4-hpc&distro=openSUSE%20Leap%2015.4pkg:rpm/suse/hdf5_1_10_8-gnu-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-ESPOSpkg:rpm/suse/hdf5_1_10_8-gnu-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSSpkg:rpm/suse/hdf5_1_10_8-gnu-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-ESPOSpkg:rpm/suse/hdf5_1_10_8-gnu-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/hdf5_1_10_8-gnu-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOSpkg:rpm/suse/hdf5_1_10_8-gnu-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSSpkg:rpm/suse/hdf5_1_10_8-gnu-hpc&distro=SUSE%20Linux%20Enterprise%20Module%20for%20HPC%2012pkg:rpm/suse/hdf5_1_10_8-gnu-hpc&distro=SUSE%20Linux%20Enterprise%20Module%20for%20HPC%2015%20SP3pkg:rpm/suse/hdf5_1_10_8-gnu-hpc&distro=SUSE%20Linux%20Enterprise%20Module%20for%20HPC%2015%20SP4pkg:rpm/suse/hdf5_1_10_8-gnu-hpc&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP3pkg:rpm/suse/hdf5_1_10_8-gnu-hpc&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP4pkg:rpm/suse/hdf5_1_10_8-gnu-mpich-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-ESPOSpkg:rpm/suse/hdf5_1_10_8-gnu-mpich-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSSpkg:rpm/suse/hdf5_1_10_8-gnu-mpich-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-ESPOSpkg:rpm/suse/hdf5_1_10_8-gnu-mpich-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/hdf5_1_10_8-gnu-mpich-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOSpkg:rpm/suse/hdf5_1_10_8-gnu-mpich-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSSpkg:rpm/suse/hdf5_1_10_8-gnu-mpich-hpc&distro=SUSE%20Linux%20Enterprise%20Module%20for%20HPC%2015%20SP3pkg:rpm/suse/hdf5_1_10_8-gnu-mpich-hpc&distro=SUSE%20Linux%20Enterprise%20Module%20for%20HPC%2015%20SP4pkg:rpm/suse/hdf5_1_10_8-gnu-mpich-hpc&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP3pkg:rpm/suse/hdf5_1_10_8-gnu-mpich-hpc&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP4pkg:rpm/suse/hdf5_1_10_8-gnu-mvapich2-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-ESPOSpkg:rpm/suse/hdf5_1_10_8-gnu-mvapich2-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSSpkg:rpm/suse/hdf5_1_10_8-gnu-mvapich2-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-ESPOSpkg:rpm/suse/hdf5_1_10_8-gnu-mvapich2-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/hdf5_1_10_8-gnu-mvapich2-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOSpkg:rpm/suse/hdf5_1_10_8-gnu-mvapich2-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSSpkg:rpm/suse/hdf5_1_10_8-gnu-mvapich2-hpc&distro=SUSE%20Linux%20Enterprise%20Module%20for%20HPC%2012pkg:rpm/suse/hdf5_1_10_8-gnu-mvapich2-hpc&distro=SUSE%20Linux%20Enterprise%20Module%20for%20HPC%2015%20SP3pkg:rpm/suse/hdf5_1_10_8-gnu-mvapich2-hpc&distro=SUSE%20Linux%20Enterprise%20Module%20for%20HPC%2015%20SP4pkg:rpm/suse/hdf5_1_10_8-gnu-mvapich2-hpc&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP3pkg:rpm/suse/hdf5_1_10_8-gnu-mvapich2-hpc&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP4pkg:rpm/suse/hdf5_1_10_8-gnu-openmpi1-hpc&distro=SUSE%20Linux%20Enterprise%20Module%20for%20HPC%2012pkg:rpm/suse/hdf5_1_10_8-gnu-openmpi2-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-ESPOSpkg:rpm/suse/hdf5_1_10_8-gnu-openmpi2-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSSpkg:rpm/suse/hdf5_1_10_8-gnu-openmpi2-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-ESPOSpkg:rpm/suse/hdf5_1_10_8-gnu-openmpi2-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/hdf5_1_10_8-gnu-openmpi2-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOSpkg:rpm/suse/hdf5_1_10_8-gnu-openmpi2-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSSpkg:rpm/suse/hdf5_1_10_8-gnu-openmpi3-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-ESPOSpkg:rpm/suse/hdf5_1_10_8-gnu-openmpi3-hpc&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/hdf5_1_10_8-gnu-openmpi3-hpc&distro=SUSE%20Linux%20Enterprise%20Module%20for%20HPC%2015%20SP3pkg:rpm/suse/hdf5_1_10_8-gnu-openmpi3-hpc&distro=SUSE%20Linux%20Enterprise%20Module%20for%20HPC%2015%20SP4pkg:rpm/suse/hdf5_1_10_8-gnu-openmpi3-hpc&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP3pkg:rpm/suse/hdf5_1_10_8-gnu-openmpi3-hpc&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP4pkg:rpm/suse/hdf5_1_10_8-gnu-openmpi4-hpc&distro=SUSE%20Linux%20Enterprise%20Module%20for%20HPC%2015%20SP3pkg:rpm/suse/hdf5_1_10_8-gnu-openmpi4-hpc&distro=SUSE%20Linux%20Enterprise%20Module%20for%20HPC%2015%20SP4pkg:rpm/suse/hdf5_1_10_8-gnu-openmpi4-hpc&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP3pkg:rpm/suse/hdf5_1_10_8-gnu-openmpi4-hpc&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP4
< 1.10.8-150300.4.6.1+ 59 more
- (no CPE)range: < 1.10.8-150300.4.6.1
- (no CPE)range: < 1.10.8-150100.7.7.1
- (no CPE)range: < 1.10.8-150300.4.6.1
- (no CPE)range: < 1.10.8-150100.7.7.1
- (no CPE)range: < 1.10.8-150300.4.6.1
- (no CPE)range: < 1.10.8-150100.7.7.1
- (no CPE)range: < 1.10.8-150100.7.7.1
- (no CPE)range: < 1.10.8-150300.4.6.1
- (no CPE)range: < 1.10.8-150300.4.6.1
- (no CPE)range: < 1.10.8-150300.4.6.1
- (no CPE)range: < 1.10.8-150300.4.6.1
- (no CPE)range: < 1.10.8-150100.7.7.1
- (no CPE)range: < 1.10.8-150100.7.7.1
- (no CPE)range: < 1.10.8-150200.8.7.1
- (no CPE)range: < 1.10.8-150200.8.7.1
- (no CPE)range: < 1.10.8-150000.8.7.1
- (no CPE)range: < 1.10.8-150000.8.7.1
- (no CPE)range: < 1.10.8-3.15.1
- (no CPE)range: < 1.10.8-150300.4.6.1
- (no CPE)range: < 1.10.8-150400.3.3.1
- (no CPE)range: < 1.10.8-150300.4.6.1
- (no CPE)range: < 1.10.8-150400.3.3.1
- (no CPE)range: < 1.10.8-150100.7.7.1
- (no CPE)range: < 1.10.8-150100.7.7.1
- (no CPE)range: < 1.10.8-150200.8.7.1
- (no CPE)range: < 1.10.8-150200.8.7.1
- (no CPE)range: < 1.10.8-150000.8.7.1
- (no CPE)range: < 1.10.8-150000.8.7.1
- (no CPE)range: < 1.10.8-150300.4.6.1
- (no CPE)range: < 1.10.8-150400.3.3.1
- (no CPE)range: < 1.10.8-150300.4.6.1
- (no CPE)range: < 1.10.8-150400.3.3.1
- (no CPE)range: < 1.10.8-150100.7.7.1
- (no CPE)range: < 1.10.8-150100.7.7.1
- (no CPE)range: < 1.10.8-150200.8.7.1
- (no CPE)range: < 1.10.8-150200.8.7.1
- (no CPE)range: < 1.10.8-150000.8.7.1
- (no CPE)range: < 1.10.8-150000.8.7.1
- (no CPE)range: < 1.10.8-3.15.1
- (no CPE)range: < 1.10.8-150300.4.6.1
- (no CPE)range: < 1.10.8-150400.3.3.1
- (no CPE)range: < 1.10.8-150300.4.6.1
- (no CPE)range: < 1.10.8-150400.3.3.1
- (no CPE)range: < 1.10.8-3.15.1
- (no CPE)range: < 1.10.8-150100.7.7.1
- (no CPE)range: < 1.10.8-150100.7.7.1
- (no CPE)range: < 1.10.8-150200.8.7.1
- (no CPE)range: < 1.10.8-150200.8.7.1
- (no CPE)range: < 1.10.8-150000.8.7.1
- (no CPE)range: < 1.10.8-150000.8.7.1
- (no CPE)range: < 1.10.8-150200.8.7.1
- (no CPE)range: < 1.10.8-150200.8.7.1
- (no CPE)range: < 1.10.8-150300.4.6.1
- (no CPE)range: < 1.10.8-150400.3.3.1
- (no CPE)range: < 1.10.8-150300.4.6.1
- (no CPE)range: < 1.10.8-150400.3.3.1
- (no CPE)range: < 1.10.8-150300.4.6.1
- (no CPE)range: < 1.10.8-150400.3.3.1
- (no CPE)range: < 1.10.8-150300.4.6.1
- (no CPE)range: < 1.10.8-150400.3.3.1
Patches
Vulnerability mechanics
References
1- github.com/SegfaultMasters/covering360/tree/master/HDF5/vuln5nvdExploitPatchThird Party Advisory
News mentions
0No linked articles in our index yet.