CVE-2017-17505

Published: 12/11/2017 Last updated: 9/16/2024 Reserved: 12/10/2017

In HDF5 1.10.1, there is a NULL pointer dereference in the function H5O_pline_decode in the H5Opline.c file in libhdf5.a. For example, h5dump would crash when someone opens a crafted hdf5 file.

CNA assigner: mitre (8254265b-2729-46b6-b9e3-3dfca2d5bfca) Requested by: n/a

Opam packages affected (1)

hdf5

Products affected (1)

Product	Vendor	Version
n/a	n/a	Snapdragon 8+ Gen 1 Mobile Platform

References (4)

https://github.com/xiaoqx/pocs/tree/master/hdf5/readme.md
https://github.com/xiaoqx/pocs/tree/master/hdf5/readme.md
https://github.com/xiaoqx/pocs/tree/master/hdf5/readme.md
https://github.com/xiaoqx/pocs/tree/master/hdf5/readme.md