Zhang Yaoliang

**Name of the Vulnerable Software and Affected Versions** HDF5 version 1.14.6 **Description** A critical vulnerability was found in HDF5, affecting the function `H5Z scaleoffset decompress one byte` of the component Scale-Offset Filter. The manipulation leads to heap-based buffer overflow. An attack must be approached locally. The exploit has been disclosed to the public and may be used. The vendor was contacted about a batch of vulnerabilities, but their response was to reject without further explanation. The real existence of this vulnerability is still doubted at the moment. **Recommendations** As a temporary workaround, consider disabling the `H5Z scaleoffset decompress one byte` function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** HDF5 version 1.14.6 **Description** A vulnerability has been found in HDF5 and classified as critical. This issue affects the function `H5T bit copy` of the component Type Conversion Logic. The manipulation leads to heap-based buffer overflow. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. The vendor was contacted early about a batch of vulnerabilities, but their response was to reject without further explanation. **Recommendations** As a temporary workaround, consider disabling the `H5T bit copy` function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** HDF5 version 1.14.6 **Description** A critical issue affects the function `H5MM strndup` of the component Metadata Attribute Decoder, leading to heap-based buffer overflow. The manipulation requires local attacking. The exploit has been disclosed to the public and may be used. The vendor plans to fix this issue in an upcoming release. **Recommendations** For HDF5 version 1.14.6, as a temporary workaround, consider disabling the `H5MM strndup` function until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Axiomatic Bento4 versions up to 1.6.0 **Description** A critical issue has been found in Axiomatic Bento4, affecting the function (AP4 BitReader::ReadBits) of the component mp42aac. The manipulation leads to a heap-based buffer overflow. It is possible to initiate the attack remotely. **Recommendations** Axiomatic Bento4 versions up to 1.6.0: Update to a version later than 1.6.0 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Axiomatic Bento4 versions up to 1.6.0 **Description** A critical vulnerability was found in Axiomatic Bento4, affecting the `AP4 StdcFileByteStream::ReadPartial` function of the mp42aac component. This vulnerability leads to a heap-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The vulnerability is related to the function `AP4 StdcFileByteStream::ReadPartial()` and is associated with a buffer overflow in memory, which can allow a remote attacker to impact the confidentiality, integrity, and availability of protected information. **Recommendations** For Axiomatic Bento4 versions up to 1.6.0, consider disabling the `AP4 StdcFileByteStream::ReadPartial` function as a temporary workaround until a patch is available. Restrict access to the mp42aac component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.