| Titel | https://github.com/HDFGroup/hdf5 HDF5 1.14.6 Double Free |
|---|
| Beschreibung | A double-free vulnerability was discovered in the H5MM_xfree function within the HDF5 Library. This issue occurs when processing certain files, leading to a potential application crash.
The vulnerability arises in the H5MM_xfree function defined in src/H5MM.c at line 201.
The reason is that the function H5MM_realloc defined at line 87 in file src/H5MM.c uses realloc to release the memory pointed to by pointer mem when handling size as 0, but does not set pointer mem to NULL afterwards. Causing subsequent operations to result in double free when calling the H5MM_xfree function. Similarly, the function H5MM_xfree does not set the corresponding pointer to NULL after using free. |
|---|
| Quelle | ⚠️ https://github.com/HDFGroup/hdf5/issues/5383 |
|---|
| Benutzer | Anonymous User |
|---|
| Einreichung | 16.03.2025 09:24 (vor 1 Jahr) |
|---|
| Moderieren | 28.03.2025 12:56 (12 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 301900 [HDF5 bis 1.14.6 src/H5MM.c H5MM_realloc mem Pufferüberlauf] |
|---|
| Punkte | 20 |
|---|