| Title | HDF5 1.14.6 Heap-based Buffer Overflow |
|---|
| Description | A heap-buffer-overflow is reported by AddressSanitizer in the function H5F_addr_decode_len (H5Fint.c).
The overflow occurs when the code reads past the end of a heap-allocated buffer due to insufficient validation of buffer length before pointer increment. This can lead to undefined behavior or potential security issues. |
|---|
| Source | ⚠️ https://github.com/HDFGroup/hdf5/issues/5581 |
|---|
| User | Rulkallos (UID 86201) |
|---|
| Submission | 06/08/2025 06:16 (10 months ago) |
|---|
| Moderation | 06/23/2025 14:18 (15 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 313636 [HDF5 up to 1.14.6 /hdf5/src/H5Fint.c H5F_addr_decode_len heap-based overflow] |
|---|
| Points | 19 |
|---|