CVE-2025-2926
HDF5 H5Ocache.c H5O__cache_chk_serialize null pointer dereference
We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.
Please see our statement on Data Privacy.
HDF5 H5Ocache.c H5O__cache_chk_serialize null pointer dereference
A vulnerability was found in HDF5 up to 1.14.6 and classified as problematic. This issue affects the function H5O__cache_chk_serialize of the file src/H5Ocache.c. The manipulation leads to null pointer dereference. An attack has to be approached locally. The exploit has been disclosed to the public and may be used.
Eine problematische Schwachstelle wurde in HDF5 bis 1.14.6 gefunden. Es geht hierbei um die Funktion H5O__cache_chk_serialize der Datei src/H5Ocache.c. Mittels Manipulieren mit unbekannten Daten kann eine null pointer dereference-Schwachstelle ausgenutzt werden. Umgesetzt werden muss der Angriff lokal. Der Exploit steht zur öffentlichen Verfügung.
| 2025-03-28: | Advisory disclosed |
| 2025-03-28: | VulDB entry created |
| 2025-03-28: | VulDB entry last update |
vuldb.com/?id.301901 (VDB-301901 | HDF5 H5Ocache.c H5O__cache_chk_serialize null pointer dereference)
vuldb.com/?ctiid.301901 (VDB-301901 | CTI Indicators (IOB, IOC, IOA))
vuldb.com/?submit.521246 (Submit #521246 | https://github.com/HDFGroup/hdf5 HDF5 1.14.6 NULL Pointer Dereference)
github.com/HDFGroup/hdf5/issues/5384
Support options
