| Title | https://github.com/HDFGroup/hdf5 HDF5 1.14.6 Double Free |
|---|
| Description | A double-free vulnerability was discovered in the H5MM_xfree function within the HDF5 Library. This issue occurs when processing certain files, leading to a potential application crash.
The vulnerability arises in the H5MM_xfree function defined in src/H5MM.c at line 201.
The reason is that the function H5MM_realloc defined at line 87 in file src/H5MM.c uses realloc to release the memory pointed to by pointer mem when handling size as 0, but does not set pointer mem to NULL afterwards. Causing subsequent operations to result in double free when calling the H5MM_xfree function. Similarly, the function H5MM_xfree does not set the corresponding pointer to NULL after using free. |
|---|
| Source | ⚠️ https://github.com/HDFGroup/hdf5/issues/5383 |
|---|
| User | Anonymous User |
|---|
| Submission | 03/16/2025 09:24 (1 Year ago) |
|---|
| Moderation | 03/28/2025 12:56 (12 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 301900 [HDF5 up to 1.14.6 src/H5MM.c H5MM_realloc mem double free] |
|---|
| Points | 20 |
|---|