CVE-2026-34734 — Use After Free in Hdf5

CWE-416 — Use After Free CWE-825 — Expired Pointer Dereference6 documents4 sources

Severity

7.8HIGHNVD

EPSS

0.0%

top 97.77%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Hdfgroup Hdf5

Timeline

PublishedApr 9

Description

HDF5 is software for managing data. In 1.14.1-2 and earlier, a heap-use-after-free was found in the h5dump helper utility. An attacker who can supply a malicious h5 file can trigger a heap use-after-free. The freed object is referenced in a memmove call from H5T__conv_struct. The original object was allocated by H5D__typeinfo_init_phase3 and freed by H5D__typeinfo_term.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages1 packages

▶CVEListV5hdfgroup/hdf51.14.1-2

🔴Vulnerability Details

VulDB

HDFGroup HDF5 up to 1.14.1-2 Memmove Call H5T__conv_struct use after free↗2026-04-09

▶

📋Vendor Advisories

Red Hat

hdf5: h5dump: HDF5 h5dump: Arbitrary code execution via a crafted HDF5 file↗2026-04-09

▶

💬Community

Bugzilla

CVE-2026-34734 hdf5: HDF5 h5dump: Arbitrary code execution via a crafted HDF5 file [epel-all]↗2026-04-09

▶

Bugzilla

CVE-2026-34734 hdf5: h5dump: HDF5 h5dump: Arbitrary code execution via a crafted HDF5 file↗2026-04-09

▶

Bugzilla

CVE-2026-34734 hdf5: HDF5 h5dump: Arbitrary code execution via a crafted HDF5 file [fedora-all]↗2026-04-09

▶