CVE-2018-11202

A NULL pointer dereference was discovered in H5Shypermake_spans in H5Shyper.c in the HDF HDF5 1.10.2 library. It could allow a remote denial of service attack.

References

Affected packages

Debian:11 / hdf5

Package

Name: hdf5
Purl: pkg:deb/debian/hdf5?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.10.4+repack-1

Ecosystem specific

{
    "urgency": "low"
}

Debian:12 / hdf5

Package

Name: hdf5
Purl: pkg:deb/debian/hdf5?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.10.4+repack-1

Ecosystem specific

{
    "urgency": "low"
}

Debian:13 / hdf5

Package

Name: hdf5
Purl: pkg:deb/debian/hdf5?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.10.4+repack-1

Ecosystem specific

{
    "urgency": "low"
}

Git / github.com/hdfgroup/hdf5

Affected ranges

Type: GIT
Repo: https://github.com/hdfgroup/hdf5
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

2ad049a6411923653365962c826cf59cf801d0d7