HDF5 Library
by HDF5 Library
CVEs (8)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-32608 | 0.00 | — | 0.01 | Oct 9, 2024 | HDF5 library through 1.14.3 has memory corruption in H5A__close resulting in the corruption of the instruction pointer and causing denial of service or potential code execution. | |||
| CVE-2024-32621 | 0.00 | — | 0.01 | May 9, 2024 | HDF5 Library through 1.14.3 contains a heap-based buffer overflow in H5HG_read in H5HG.c (called from H5VL__native_blob_get in H5VLnative_blob.c), resulting in the corruption of the instruction pointer. | |||
| CVE-2024-32620 | 0.00 | — | 0.00 | May 9, 2024 | HDF5 Library through 1.14.3 contains a heap-based buffer over-read in H5F_addr_decode_len in H5Fint.c, resulting in the corruption of the instruction pointer. | |||
| CVE-2024-32613 | 0.00 | — | 0.00 | May 9, 2024 | HDF5 Library through 1.14.3 contains a heap-based buffer over-read in the function H5HL__fl_deserialize in H5HLcache.c, a different vulnerability than CVE-2024-32612. | |||
| CVE-2024-32611 | 0.00 | — | 0.01 | May 9, 2024 | HDF5 Library through 1.14.3 may use an uninitialized value in H5A__attr_release_table in H5Aint.c. | |||
| CVE-2024-32609 | 0.00 | — | 0.01 | May 9, 2024 | HDF5 Library through 1.14.3 allows stack consumption in the function H5E_printf_stack in H5Eint.c. | |||
| CVE-2024-32607 | 0.00 | — | 0.00 | May 9, 2024 | HDF5 Library through 1.14.3 has a SEGV in H5A__close in H5Aint.c, resulting in the corruption of the instruction pointer. | |||
| CVE-2024-32605 | 0.00 | — | 0.01 | May 9, 2024 | HDF5 Library through 1.14.3 has a heap-based buffer over-read in H5VM_memcpyvv in H5VM.c (called from H5D__compact_readvv in H5Dcompact.c). |
- CVE-2024-32608Oct 9, 2024risk 0.00cvss —epss 0.01
HDF5 library through 1.14.3 has memory corruption in H5A__close resulting in the corruption of the instruction pointer and causing denial of service or potential code execution.
- CVE-2024-32621May 9, 2024risk 0.00cvss —epss 0.01
HDF5 Library through 1.14.3 contains a heap-based buffer overflow in H5HG_read in H5HG.c (called from H5VL__native_blob_get in H5VLnative_blob.c), resulting in the corruption of the instruction pointer.
- CVE-2024-32620May 9, 2024risk 0.00cvss —epss 0.00
HDF5 Library through 1.14.3 contains a heap-based buffer over-read in H5F_addr_decode_len in H5Fint.c, resulting in the corruption of the instruction pointer.
- CVE-2024-32613May 9, 2024risk 0.00cvss —epss 0.00
HDF5 Library through 1.14.3 contains a heap-based buffer over-read in the function H5HL__fl_deserialize in H5HLcache.c, a different vulnerability than CVE-2024-32612.
- CVE-2024-32611May 9, 2024risk 0.00cvss —epss 0.01
HDF5 Library through 1.14.3 may use an uninitialized value in H5A__attr_release_table in H5Aint.c.
- CVE-2024-32609May 9, 2024risk 0.00cvss —epss 0.01
HDF5 Library through 1.14.3 allows stack consumption in the function H5E_printf_stack in H5Eint.c.
- CVE-2024-32607May 9, 2024risk 0.00cvss —epss 0.00
HDF5 Library through 1.14.3 has a SEGV in H5A__close in H5Aint.c, resulting in the corruption of the instruction pointer.
- CVE-2024-32605May 9, 2024risk 0.00cvss —epss 0.01
HDF5 Library through 1.14.3 has a heap-based buffer over-read in H5VM_memcpyvv in H5VM.c (called from H5D__compact_readvv in H5Dcompact.c).