In HDF5 1.10.1, there is an out of bounds read vulnerability in the function H5Oplineplinedecode in H5Opline.c in libhdf5.a. For example, h5dump would crash when someone opens a crafted hdf5 file.
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "1.8.11-5ubuntu7.1+esm1", "binary_name": "hdf5-helpers" }, { "binary_version": "1.8.11-5ubuntu7.1+esm1", "binary_name": "hdf5-helpers-dbgsym" }, { "binary_version": "1.8.11-5ubuntu7.1+esm1", "binary_name": "hdf5-tools" }, { "binary_version": "1.8.11-5ubuntu7.1+esm1", "binary_name": "hdf5-tools-dbgsym" }, { "binary_version": "1.8.11-5ubuntu7.1+esm1", "binary_name": "libhdf5-7" }, { "binary_version": "1.8.11-5ubuntu7.1+esm1", "binary_name": "libhdf5-7-dbg" }, { "binary_version": "1.8.11-5ubuntu7.1+esm1", "binary_name": "libhdf5-7-dbgsym" }, { "binary_version": "1.8.11-5ubuntu7.1+esm1", "binary_name": "libhdf5-dev" }, { "binary_version": "1.8.11-5ubuntu7.1+esm1", "binary_name": "libhdf5-doc" }, { "binary_version": "1.8.11-5ubuntu7.1+esm1", "binary_name": "libhdf5-mpi-dev" }, { "binary_version": "1.8.11-5ubuntu7.1+esm1", "binary_name": "libhdf5-mpich2-7" }, { "binary_version": "1.8.11-5ubuntu7.1+esm1", "binary_name": "libhdf5-mpich2-7-dbg" }, { "binary_version": "1.8.11-5ubuntu7.1+esm1", "binary_name": "libhdf5-mpich2-7-dbgsym" }, { "binary_version": "1.8.11-5ubuntu7.1+esm1", "binary_name": "libhdf5-mpich2-dev" }, { "binary_version": "1.8.11-5ubuntu7.1+esm1", "binary_name": "libhdf5-openmpi-7" }, { "binary_version": "1.8.11-5ubuntu7.1+esm1", "binary_name": "libhdf5-openmpi-7-dbg" }, { "binary_version": "1.8.11-5ubuntu7.1+esm1", "binary_name": "libhdf5-openmpi-7-dbgsym" }, { "binary_version": "1.8.11-5ubuntu7.1+esm1", "binary_name": "libhdf5-openmpi-dev" }, { "binary_version": "1.8.11-5ubuntu7.1+esm1", "binary_name": "libhdf5-serial-dev" } ] }
{ "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "1.8.16+docs-4ubuntu1.1+esm1", "binary_name": "hdf5-helpers" }, { "binary_version": "1.8.16+docs-4ubuntu1.1+esm1", "binary_name": "hdf5-tools" }, { "binary_version": "1.8.16+docs-4ubuntu1.1+esm1", "binary_name": "hdf5-tools-dbgsym" }, { "binary_version": "1.8.16+docs-4ubuntu1.1+esm1", "binary_name": "libhdf5-10" }, { "binary_version": "1.8.16+docs-4ubuntu1.1+esm1", "binary_name": "libhdf5-10-dbg" }, { "binary_version": "1.8.16+docs-4ubuntu1.1+esm1", "binary_name": "libhdf5-10-dbgsym" }, { "binary_version": "1.8.16+docs-4ubuntu1.1+esm1", "binary_name": "libhdf5-cpp-11" }, { "binary_version": "1.8.16+docs-4ubuntu1.1+esm1", "binary_name": "libhdf5-cpp-11-dbg" }, { "binary_version": "1.8.16+docs-4ubuntu1.1+esm1", "binary_name": "libhdf5-cpp-11-dbgsym" }, { "binary_version": "1.8.16+docs-4ubuntu1.1+esm1", "binary_name": "libhdf5-dev" }, { "binary_version": "1.8.16+docs-4ubuntu1.1+esm1", "binary_name": "libhdf5-doc" }, { "binary_version": "1.8.16+docs-4ubuntu1.1+esm1", "binary_name": "libhdf5-mpi-dev" }, { "binary_version": "1.8.16+docs-4ubuntu1.1+esm1", "binary_name": "libhdf5-mpich-10" }, { "binary_version": "1.8.16+docs-4ubuntu1.1+esm1", "binary_name": "libhdf5-mpich-10-dbg" }, { "binary_version": "1.8.16+docs-4ubuntu1.1+esm1", "binary_name": "libhdf5-mpich-10-dbgsym" }, { "binary_version": "1.8.16+docs-4ubuntu1.1+esm1", "binary_name": "libhdf5-mpich-dev" }, { "binary_version": "1.8.16+docs-4ubuntu1.1+esm1", "binary_name": "libhdf5-openmpi-10" }, { "binary_version": "1.8.16+docs-4ubuntu1.1+esm1", "binary_name": "libhdf5-openmpi-10-dbg" }, { "binary_version": "1.8.16+docs-4ubuntu1.1+esm1", "binary_name": "libhdf5-openmpi-10-dbgsym" }, { "binary_version": "1.8.16+docs-4ubuntu1.1+esm1", "binary_name": "libhdf5-openmpi-dev" }, { "binary_version": "1.8.16+docs-4ubuntu1.1+esm1", "binary_name": "libhdf5-serial-dev" } ] }
{ "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "1.10.0-patch1+docs-4ubuntu0.1~esm1", "binary_name": "hdf5-helpers" }, { "binary_version": "1.10.0-patch1+docs-4ubuntu0.1~esm1", "binary_name": "hdf5-tools" }, { "binary_version": "1.10.0-patch1+docs-4ubuntu0.1~esm1", "binary_name": "hdf5-tools-dbgsym" }, { "binary_version": "1.10.0-patch1+docs-4ubuntu0.1~esm1", "binary_name": "libhdf5-100" }, { "binary_version": "1.10.0-patch1+docs-4ubuntu0.1~esm1", "binary_name": "libhdf5-100-dbgsym" }, { "binary_version": "1.10.0-patch1+docs-4ubuntu0.1~esm1", "binary_name": "libhdf5-cpp-100" }, { "binary_version": "1.10.0-patch1+docs-4ubuntu0.1~esm1", "binary_name": "libhdf5-cpp-100-dbgsym" }, { "binary_version": "1.10.0-patch1+docs-4ubuntu0.1~esm1", "binary_name": "libhdf5-dev" }, { "binary_version": "1.10.0-patch1+docs-4ubuntu0.1~esm1", "binary_name": "libhdf5-doc" }, { "binary_version": "1.10.0-patch1+docs-4ubuntu0.1~esm1", "binary_name": "libhdf5-java" }, { "binary_version": "1.10.0-patch1+docs-4ubuntu0.1~esm1", "binary_name": "libhdf5-jni" }, { "binary_version": "1.10.0-patch1+docs-4ubuntu0.1~esm1", "binary_name": "libhdf5-jni-dbgsym" }, { "binary_version": "1.10.0-patch1+docs-4ubuntu0.1~esm1", "binary_name": "libhdf5-mpi-dev" }, { "binary_version": "1.10.0-patch1+docs-4ubuntu0.1~esm1", "binary_name": "libhdf5-mpich-100" }, { "binary_version": "1.10.0-patch1+docs-4ubuntu0.1~esm1", "binary_name": "libhdf5-mpich-100-dbgsym" }, { "binary_version": "1.10.0-patch1+docs-4ubuntu0.1~esm1", "binary_name": "libhdf5-mpich-dev" }, { "binary_version": "1.10.0-patch1+docs-4ubuntu0.1~esm1", "binary_name": "libhdf5-openmpi-100" }, { "binary_version": "1.10.0-patch1+docs-4ubuntu0.1~esm1", "binary_name": "libhdf5-openmpi-100-dbgsym" }, { "binary_version": "1.10.0-patch1+docs-4ubuntu0.1~esm1", "binary_name": "libhdf5-openmpi-dev" }, { "binary_version": "1.10.0-patch1+docs-4ubuntu0.1~esm1", "binary_name": "libhdf5-serial-dev" } ] }