CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2018-17435
https://notcve.org/view.php?id=CVE-2018-17435
24 Sep 2018 — A heap-based buffer over-read in H5O_attr_decode() in H5Oattr.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service via a crafted HDF5 file. This issue was triggered while converting an HDF file to GIF file. Sobrelectura de búfer basada en memoria dinámica (heap) en H5O_attr_decode() en H5Oattr.c en la biblioteca HDF HDF5 hasta la versión 1.10.3 permite a los atacantes causar una denegación de servicio (consumo de recursos) utilizando un archivo .HDF5 manipulado. El problema... • https://github.com/SegfaultMasters/covering360/tree/master/HDF5/vuln7#heap-overflow-in-h5o_attr_decode • CWE-125: Out-of-bounds Read •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2018-17433 – SUSE Security Advisory - SUSE-SU-2022:1912-1
https://notcve.org/view.php?id=CVE-2018-17433
24 Sep 2018 — A heap-based buffer overflow in ReadGifImageDesc() in gifread.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service via a crafted HDF5 file. This issue was triggered while converting a GIF file to an HDF file. Desbordamiento de búfer basado en memoria dinámica (heap) en ReadGifImageDesc() en gifread.c en la biblioteca HDF HDF5 hasta la versión 1.10.3 permite a los atacantes causar una denegación de servicio (consumo de recursos) utilizando un archivo .HDF5 manipulado. El pro... • https://github.com/SegfaultMasters/covering360/tree/master/HDF5/vuln8#heap-overflow-in-readgifimagedesc • CWE-787: Out-of-bounds Write •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2018-17439 – SUSE Security Advisory - SUSE-SU-2022:3829-1
https://notcve.org/view.php?id=CVE-2018-17439
24 Sep 2018 — An issue was discovered in the HDF HDF5 1.10.3 library. There is a stack-based buffer overflow in the function H5S_extent_get_dims() in H5S.c. Specifically, this issue occurs while converting an HDF5 file to a GIF file. Se ha descubierto un problema en la biblioteca HDF HDF5 1.10.3. Existe un desbordamiento de búfer basado en pila en la función H5S_extent_get_dims() en H5S.c. • https://github.com/SegfaultMasters/covering360/tree/master/HDF5/vuln5#stack-overflow-in-h5s_extent_get_dims • CWE-787: Out-of-bounds Write •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2018-17438 – SUSE Security Advisory - SUSE-SU-2022:1912-1
https://notcve.org/view.php?id=CVE-2018-17438
24 Sep 2018 — A SIGFPE signal is raised in the function H5D__select_io() of H5Dselect.c in the HDF HDF5 through 1.10.3 library during an attempted parse of a crafted HDF file, because of incorrect protection against division by zero. It could allow a remote denial of service attack. Se lanza una señal SIGFPE en la función H5D__select_io() de H5Dselect.c en la biblioteca HDF HDF5 hasta la versión 1.10.3 durante un intento de análisis de un archivo HDF manipulado. Esto se debe a una protección incorrecta contra divisiones ... • https://github.com/SegfaultMasters/covering360/tree/master/HDF5/vuln4#divided-by-zero---poc_h5d__select_io_h5dselect • CWE-369: Divide By Zero •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2018-17436 – SUSE Security Advisory - SUSE-SU-2022:1912-1
https://notcve.org/view.php?id=CVE-2018-17436
24 Sep 2018 — ReadCode() in decompress.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service (invalid write access) via a crafted HDF5 file. This issue was triggered while converting a GIF file to an HDF file. ReadCode() en decompress.c en la biblioteca HDF HDF5 hasta la versión 1.10.3 permite a los atacantes causar una denegación de servicio (acceso de escritura no válido) utilizando un archivo .HDF5 manipulado. El problema se desencadenó al convertir un archivo GIF a HDF. An update that... • https://github.com/SegfaultMasters/covering360/tree/master/HDF5/vuln8#invalid-write-memory-access-in-decompressc • CWE-787: Out-of-bounds Write •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2018-17432 – SUSE Security Advisory - SUSE-SU-2022:1912-1
https://notcve.org/view.php?id=CVE-2018-17432
24 Sep 2018 — A NULL pointer dereference in H5O_sdspace_encode() in H5Osdspace.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service via a crafted HDF5 file. Desreferencia de puntero NULL en H5O_sdspace_encode() en H5Osdspace.c en la biblioteca HDF HDF5 hasta la versión 1.10.3 permite a los atacantes causar una denegación de servicio (DoS) utilizando un archivo .HDF5 manipulado. An update that solves 15 vulnerabilities and has two fixes is now available. This update for hdf5 fixes the fol... • https://github.com/SegfaultMasters/covering360/tree/master/HDF5/vuln6#null-pointer-dereference-in-h5o_sdspace_encode • CWE-476: NULL Pointer Dereference •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2018-17434 – SUSE Security Advisory - SUSE-SU-2022:1912-1
https://notcve.org/view.php?id=CVE-2018-17434
24 Sep 2018 — A SIGFPE signal is raised in the function apply_filters() of h5repack_filters.c in the HDF HDF5 through 1.10.3 library during an attempted parse of a crafted HDF file, because of incorrect protection against division by zero. It could allow a remote denial of service attack. Se lanza una señal SIGFPE en la función apply_filters() de h5repack_filters.c en la biblioteca HDF HDF5 hasta la versión 1.10.3 durante un intento de análisis de un archivo HDF manipulado. Esto se debe a una protección incorrecta contra... • https://github.com/SegfaultMasters/covering360/tree/master/HDF5/vuln4#divided-by-zero---poc_apply_filters_h5repack_filters • CWE-369: Divide By Zero •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2018-17437 – SUSE Security Advisory - SUSE-SU-2022:1912-1
https://notcve.org/view.php?id=CVE-2018-17437
24 Sep 2018 — Memory leak in the H5O_dtype_decode_helper() function in H5Odtype.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service (memory consumption) via a crafted HDF5 file. Fuga de memoria en la función H5O_dtype_decode_helper() en H5Odtype.c en la biblioteca HDF HDF5 hasta la versión 1.10.3 permite a los atacantes causar una denegación de servicio (consumo de recursos) utilizando un archivo .HDF5 manipulado. An update that solves 15 vulnerabilities and has two fixes is now availab... • https://github.com/SegfaultMasters/covering360/tree/master/HDF5/vuln5#memory-leak-in-h5o_dtype_decode_helper • CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2018-17233
https://notcve.org/view.php?id=CVE-2018-17233
20 Sep 2018 — A SIGFPE signal is raised in the function H5D__create_chunk_file_map_hyper() of H5Dchunk.c in the HDF HDF5 through 1.10.3 library during an attempted parse of a crafted HDF file, because of incorrect protection against division by zero. It could allow a remote denial of service attack. Se lanza una señal SIGFPE en la función H5D__create_chunk_file_map_hyper() de H5Dchunk.c en la biblioteca HDF HDF5 hasta la versión 1.10.3 durante un intento de análisis de un archivo HDF manipulado. Esto se debe a una protec... • https://github.com/SegfaultMasters/covering360/tree/master/HDF5/vuln2#divided-by-zero---h5d__create_chunk_file_map_hyper_div_zero • CWE-369: Divide By Zero •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2018-17237 – SUSE Security Advisory - SUSE-SU-2022:1912-1
https://notcve.org/view.php?id=CVE-2018-17237
20 Sep 2018 — A SIGFPE signal is raised in the function H5D__chunk_set_info_real() of H5Dchunk.c in the HDF HDF5 1.10.3 library during an attempted parse of a crafted HDF file, because of incorrect protection against division by zero. This issue is different from CVE-2018-11207. Se lanza una señal SIGFPE en la función H5D__chunk_set_info_real() de H5Dchunk.c en la biblioteca HDF HDF5 1.10.3 durante un intento de análisis de un archivo HDF manipulado. Esto se debe a una protección incorrecta contra divisiones entre cero. ... • https://github.com/SegfaultMasters/covering360/blob/master/HDF5/README.md#divided-by-zero---h5d__chunk_set_info_real_div_by_zero • CWE-369: Divide By Zero •