| 제목 | HDFGroup hdf5 v1.14.6 Buffer Overflow |
|---|
| 설명 | The HDF5 library contains a heap-based buffer overflow vulnerability in the strndup function, which is called by H5MM_strndup during the decoding of attribute metadata. This vulnerability occurs when the library attempts to read 5 bytes of data beyond the bounds of an allocated 320-byte heap memory region. This could lead to memory corruption, application crashes, or potential exploitation for arbitrary code execution. |
|---|
| 원천 | ⚠️ https://github.com/madao123123/crash_report/blob/main/hdf5_poc/hdf5_poc4.md |
|---|
| 사용자 | NPU Unmanned Systems Safety Laboratory (UID 80309) |
|---|
| 제출 | 2025. 03. 05. AM 04:21 (1 년도 ago) |
|---|
| 모더레이션 | 2025. 03. 14. PM 01:55 (9 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 299723 [HDF5 1.14.6 Metadata Attribute Decoder H5MM_strndup 메모리 손상] |
|---|
| 포인트들 | 20 |
|---|