CVE-2018-17439

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions HDF5 version 1.10.3

Description An issue was discovered in the HDF5 library, where a stack-based buffer overflow occurs in the function H5S extent get dims() in H5S.c. This issue is triggered while converting an HDF5 file to a GIF file.

Recommendations For version 1.10.3, consider applying a patch or fix to address the buffer overflow issue in the H5S extent get dims() function. As a temporary workaround, avoid converting HDF5 files to GIF format until a patch is available.

Exploit

Fix

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

CVE-2018-17439

ECHO-0BCE-349E-7E21

OPENSUSE-SU-2022_3827-1

OPENSUSE-SU-2022_3829-1

SUSE-SU-2022:3824-1

SUSE-SU-2022:3825-1

SUSE-SU-2022:3826-1

SUSE-SU-2022:3827-1

SUSE-SU-2022:3828-1

SUSE-SU-2022:3829-1

Affected Products

Debian

Hdf5

Suse

CVE-2018-17439

Weakness Enumeration

Related Identifiers

Affected Products

References · 75