CVE-2018-13873 — Out-of-bounds Read in Hdf5

Severity

9.8CRITICALNVD

EPSS

0.4%

top 39.50%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedJul 10

Latest updateMay 13

Description

An issue was discovered in the HDF HDF5 1.8.20 library. There is a buffer over-read in H5O_chunk_deserialize in H5Ocache.c.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

▶NVDhdfgroup/hdf51.8.0 — 1.8.20

GHSA

GHSA-f84x-7wpv-pvx9: An issue was discovered in the HDF HDF5 1↗2022-05-13

▶

Red Hat

hdf5: buffer over-read in H5O_chunk_deserialize in H5Ocache.c↗2018-07-10

▶

Bugzilla

CVE-2018-13867 CVE-2018-13871 CVE-2018-13872 CVE-2018-13873 CVE-2018-13874 CVE-2018-13875 CVE-2018-14460 hdf5: various flaws [fedora-all]↗2018-07-23

▶

Bugzilla

CVE-2018-13867 CVE-2018-13871 CVE-2018-13872 CVE-2018-13873 CVE-2018-13874 CVE-2018-13875 CVE-2018-14460 hdf5: various flaws [epel-all]↗2018-07-23

▶

Bugzilla

CVE-2018-13873 hdf5: buffer over-read in H5O_chunk_deserialize in H5Ocache.c↗2018-07-16

▶