Chen Lihai

**Name of the Vulnerable Software and Affected Versions** HDF5 versions up to 1.14.6 **Description** A problematic issue has been found in HDF5, affecting the function `H5F addr encode len` of the file `src/H5Fint.c`. The manipulation of the argument `pp` leads to a heap-based buffer overflow. This issue requires local attacking to be exploited. **Recommendations** For HDF5 versions up to 1.14.6, as a temporary workaround, consider restricting access to the `H5F addr encode len` function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** HDF5 versions up to 1.14.6 **Description** A problematic issue has been identified, affecting the `H5MM realloc` function in the file `src/H5MM.c`. The manipulation of the `mem` argument leads to a double free condition. This issue can be exploited locally. **Recommendations** For HDF5 versions up to 1.14.6, consider applying a patch or fix that addresses the double free condition in the `H5MM realloc` function. As a temporary workaround, restrict the use of the `H5MM realloc` function to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** HDF5 versions up to 1.14.6 **Description** A problematic issue was found in HDF5, affecting the `H5O cache chk serialize` function in the file src/H5Ocache.c. This issue leads to a null pointer dereference. The attack must be approached locally. **Recommendations** For HDF5 versions up to 1.14.6, consider updating to a version that contains a fix for this issue, as the current version is affected by a null pointer dereference in the `H5O cache chk serialize` function. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** HDF5 versions up to 1.14.6 **Description** A problematic vulnerability was found in HDF5, affecting the function `H5F accum free` of the file `src/H5Faccum.c`. The manipulation of the argument `overlap size` leads to a heap-based buffer overflow. This issue requires local attacking to be exploited. **Recommendations** For HDF5 versions up to 1.14.6, as a temporary workaround, consider restricting access to the `H5F accum free` function until a patch is available. Additionally, be cautious when handling the `overlap size` argument to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** HDF5 versions up to 1.14.6 **Description** A problematic issue was found in HDF5, affecting the `H5HL fl deserialize` function in the file src/H5HLcache.c. The manipulation of the `free block` argument leads to a heap-based buffer overflow. This issue can be exploited on the local host. **Recommendations** For HDF5 versions up to 1.14.6, as a temporary workaround, consider restricting access to the `H5HL fl deserialize` function until a patch is available. Avoid using the `free block` argument in the affected function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** HDF5 versions up to 1.14.6 **Description** A heap-based buffer overflow issue has been identified, affecting the `H5O msg flush` function in the file `src/H5Omessage.c`. The manipulation of the `oh` argument leads to this issue. The attack requires local access. **Recommendations** For HDF5 versions up to 1.14.6, consider restricting access to the `H5O msg flush` function until a patch is available. As a temporary workaround, avoid using the `oh` argument in the affected function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** HDF5 versions up to 1.14.6 **Description** A issue was found in the function `H5FL blk gc list` of the file `src/H5FL.c`. The manipulation of the argument `H5FL blk head t` leads to use after free. An attack has to be approached locally. The exploit has been disclosed to the public and may be used. **Recommendations** For HDF5 versions up to 1.14.6, as a temporary workaround, consider disabling the function `H5FL blk gc list` until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** HDF5 versions up to 1.14.6 **Description** A problematic vulnerability has been found in HDF5, affecting the function `H5FS sinfo Srialize Sct cb` of the file `src/H5FScache.c`. The manipulation of the argument `sect` leads to a heap-based buffer overflow. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. **Recommendations** For HDF5 versions up to 1.14.6, as a temporary workaround, consider disabling the `H5FS sinfo Srialize Sct cb` function until a patch is available. Restrict access to the `src/H5FScache.c` file to minimize the risk of exploitation. Avoid using the argument `sect` in the affected function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** tbeu matio version 1.5.28 **Description** A critical vulnerability has been found in tbeu matio, affecting the function `Mat VarPrint` of the file src/mat.c. The manipulation leads to a heap-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. **Recommendations** As a temporary workaround, consider disabling the `Mat VarPrint` function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: tbeu matio version 1.5.28 Description: A critical vulnerability was found in the function `strdup vprintf` of the file src/io.c, leading to a heap-based buffer overflow. This issue can be exploited remotely. Recommendations: For version 1.5.28, consider disabling the `strdup vprintf` function as a temporary workaround until a patch is available. Restrict access to the affected file src/io.c to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Open Asset Import Library Assimp version 5.4.3 **Description** A critical issue was found in the Open Asset Import Library Assimp, affecting the `Assimp::GetNextLine` function in the `ParsingUtils.h` library of the File Handler component. This issue leads to a stack-based buffer overflow. The attack can be initiated remotely. **Recommendations** For Open Asset Import Library Assimp version 5.4.3, as a temporary workaround, consider disabling the `Assimp::GetNextLine` function until a patch is available. Restrict access to the File Handler component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Open Asset Import Library Assimp version 5.4.3 **Description** A critical issue has been found in the Open Asset Import Library Assimp, affecting the function `Assimp::BaseImporter::ConvertToUTF8` of the file `BaseImporter.cpp` in the `File Handler` component. This issue leads to a heap-based buffer overflow and can be initiated remotely. **Recommendations** For Open Asset Import Library Assimp version 5.4.3, as a temporary workaround, consider disabling the `Assimp::BaseImporter::ConvertToUTF8` function until a patch is available. Restrict access to the `File Handler` component to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** HDF5 version 1.14.6 **Description** A critical issue was found in the `H5SM delete` function of the `h5 File Handler` component, located in the `H5SM.c` file. This issue leads to a heap-based buffer overflow. The attack can be launched remotely, but it has a high complexity and is considered difficult to exploit. The exploit has been publicly disclosed. **Recommendations** For HDF5 version 1.14.6, as a temporary workaround, consider disabling the `H5SM delete` function until a patch is available. Restrict access to the `h5 File Handler` component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Open Asset Import Library Assimp version 5.4.3 **Description** A critical vulnerability was found in Open Asset Import Library Assimp. The function `Assimp::MD2Importer::InternReadFile` in the library code/AssetLib/MD2/MD2Loader.cpp of the component Malformed File Handler is affected. The manipulation of the argument `Name` leads to a stack-based buffer overflow. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used. **Recommendations** As a temporary workaround, consider disabling the `Assimp::MD2Importer::InternReadFile` function until a patch is available. To resolve the issue, upgrade the affected component to a newer version. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Open Asset Import Library Assimp versions up to 5.4.3 Description: A critical issue has been found in the Open Asset Import Library Assimp, affecting the function `aiString::Set` in the library include/assimp/types.h of the component File Handler. This issue leads to a heap-based buffer overflow. The attack can be launched on the local host. Recommendations: For versions up to 5.4.3, apply a patch to fix this issue. As a temporary workaround, consider restricting the use of the `aiString::Set` function in the File Handler component until a patch is available.

Name of the Vulnerable Software and Affected Versions: Open Asset Import Library Assimp version 5.4.3 Description: A critical issue was found in the Open Asset Import Library Assimp, affecting the `Assimp::MD3Importer::ValidateSurfaceHeaderOffsets` function of the `MD3Loader.cpp` file in the File Handler component. This issue leads to a heap-based buffer overflow. The attack must be launched locally. Recommendations: For Open Asset Import Library Assimp version 5.4.3, as a temporary workaround, consider disabling the `Assimp::MD3Importer::ValidateSurfaceHeaderOffsets` function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.