CVE-2018-14034Out-of-bounds Read in Hdf5

CWE-125Out-of-bounds ReadCWE-200Sensitive Information Exposure8 documents6 sources
Severity
8.8HIGHNVD
EPSS
0.4%
top 40.77%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Hdfgroup Hdf5Debian Hdf5
Timeline
PublishedJul 13
Latest updateMay 14

Description

An issue was discovered in the HDF HDF5 1.8.20 library. There is an out of bounds read in the function H5O_pline_reset in H5Opline.c.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages2 packages

debiandebian/hdf5
NVDhdfgroup/hdf51.8.20

🔴Vulnerability Details

2
GHSA
GHSA-gr7v-gqp4-747p: An issue was discovered in the HDF HDF5 12022-05-14
OSV
CVE-2018-14034: An issue was discovered in the HDF HDF5 12018-07-13

📋Vendor Advisories

2
Red Hat
hdf5: out of bounds read in the function H5O_pline_reset in H5Opline.c2018-07-10
Debian
CVE-2018-14034: hdf5 - An issue was discovered in the HDF HDF5 1.8.20 library. There is an out of bound...2018

💬Community

3
Bugzilla
CVE-2018-14031 CVE-2018-14032 CVE-2018-14033 CVE-2018-14034 CVE-2018-14035 hdf5: various flaws [fedora-all]2018-07-13
Bugzilla
CVE-2018-14034 hdf5: out of bounds read in the function H5O_pline_reset in H5Opline.c2018-07-13
Bugzilla
CVE-2018-14031 CVE-2018-14032 CVE-2018-14033 CVE-2018-14034 CVE-2018-14035 hdf5: various flaws [epel-all]2018-07-13