CVE-2018-11202

Published: 5/16/2018 Last updated: 9/16/2024 Reserved: 5/16/2018

A NULL pointer dereference was discovered in H5S_hyper_make_spans in H5Shyper.c in the HDF HDF5 1.10.2 library. It could allow a remote denial of service attack.

CNA assigner: mitre (8254265b-2729-46b6-b9e3-3dfca2d5bfca) Requested by: n/a

Opam packages affected (1)

hdf5

Products affected (2)

Product	Vendor	Version
n/a	n/a	4.60 through 4.73 Patch 1
n/a	n/a	< 463aa96fca6209bb205f49f7deea3817d7ddaa3a

References (4)

https://github.com/Twi1ight/fuzzing-pocs/tree/master/hdf5
https://github.com/Twi1ight/fuzzing-pocs/tree/master/hdf5
https://github.com/Twi1ight/fuzzing-pocs/tree/master/hdf5
https://github.com/Twi1ight/fuzzing-pocs/tree/master/hdf5