| Titel | HDFGroup hdf5 v1.14.6 Buffer Overflow |
|---|
| Beschreibung | The HDF5 library contains a heap-based buffer overflow vulnerability in the H5T__bit_copy function. This vulnerability occurs during the bitwise copying of data in the HDF5 type conversion logic, where the library attempts to read 1 byte of data beyond the bounds of an allocated heap memory region. This could lead to memory corruption, application crashes, or potential exploitation for arbitrary code execution. |
|---|
| Quelle | ⚠️ https://github.com/madao123123/crash_report/blob/main/hdf5_poc/hdf5_poc3.md |
|---|
| Benutzer | NPU Unmanned Systems Safety Laboratory (UID 80309) |
|---|
| Einreichung | 05.03.2025 04:20 (vor 1 Jahr) |
|---|
| Moderieren | 14.03.2025 13:55 (9 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 299722 [HDF5 1.14.6 Type Conversion Logic H5T__bit_copy Pufferüberlauf] |
|---|
| Punkte | 20 |
|---|