← back
CVE-2020-10809

CVE-2020-10809

EPSS 1.5%
An issue was discovered in HDF5 through 1.12.0. A heap-based buffer overflow exists in the function Decompress() located in decompress.c. It can be triggered by sending a crafted file to the gif2h5 binary. It allows an attacker to cause Denial of Service.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://bitbucket.hdfgroup.org/projects/HDFFV/repos/hdf5/browse/release_docs/RELEASE.txthttps://github.com/Loginsoft-Research/hdf5-reports/tree/master/Vuln_1https://research.loginsoft.com/bugs/heap-overflow-in-decompress-c-hdf5-1-13-0/