Submit #521246: https://github.com/HDFGroup/hdf5 HDF5 1.14.6 NULL Pointer Dereferenceinfo

Titelhttps://github.com/HDFGroup/hdf5 HDF5 1.14.6 NULL Pointer Dereference
BeschreibungA null pointer read vulnerability was discovered in the H5O__cache_chk_serialize function within the HDF5 Library. This issue occurs when processing certain files, leading to a potential application crash. The vulnerability arises in the H5O__cache_chk_serialize function defined in src/H5Ocache.c at line 788. The reason is that the function H5O__cache_chk_serialize did not check the validity of chk_proxy->oh->chunk[chk_proxy->chunkno].image before calling H5MM_memcpy, resulting in a null pointer dereference read.
Quelle⚠️ https://github.com/HDFGroup/hdf5/issues/5384
Benutzer
 Anonymous User
Einreichung16.03.2025 13:58 (vor 1 Jahr)
Moderieren28.03.2025 12:56 (12 days later)
StatusAkzeptiert
VulDB Eintrag301901 [HDF5 bis 1.14.6 src/H5Ocache.c H5O__cache_chk_serialize Denial of Service]
Punkte20

ZurückÜbersichtWeiter

Want to stay up to date on a daily basis?

Enable the mail alert feature now!