Bugzilla – Bug 1195213
VUL-1: CVE-2021-46243: hdf5: untrusted pointer dereference vulnerability via the function H5O__dtype_decode_helper () at hdf5/src/H5Odtype.c
Last modified: 2022-09-08 11:32:31 UTC
CVE-2021-46243 An untrusted pointer dereference vulnerability exists in HDF5 v1.13.1-1 via the function H5O__dtype_decode_helper () at hdf5/src/H5Odtype.c. This vulnerability can lead to a Denial of Service (DoS). References: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-46243 https://github.com/HDFGroup/hdf5/issues/1326 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46243
I managed to reproduce the bug on the following codestreams: - SUSE:SLE-15-SP1:Update 1.10.4 - SUSE:SLE-15-SP2:Update 1.10.5 - SUSE:SLE-15-SP3:Update 1.10.7 - openSUSE:Factory 1.10.7 - openSUSE:Backports:SLE-15-SP4 1.10.7 - openSUSE:Backports:SLE-15-SP3:Update 1.10.7
This issue has been reported for version 1.13.1 - which is on the 1.13 development branch. We only ship version 1.10. The reproducer triggers no issue on this version. -> INVALID
(In reply to Thomas Leroy from comment #1) > I managed to reproduce the bug on the following codestreams: > - SUSE:SLE-15-SP1:Update 1.10.4 > - SUSE:SLE-15-SP2:Update 1.10.5 > - SUSE:SLE-15-SP3:Update 1.10.7 > - openSUSE:Factory 1.10.7 > - openSUSE:Backports:SLE-15-SP4 1.10.7 > - openSUSE:Backports:SLE-15-SP3:Update 1.10.7 @Thomas: I've tested versions 1.10.3, 1.10.4, 1.10.5 and 1.10.8. I've not been able to reproduce the issue described in https://github.com/HDFGroup/hdf5/issues/1326 Could you explain what you did to reproduce this?