{"affected":[{"ecosystem_specific":{"binaries":[{"hdf5-gnu-hpc-devel":"1.10.8-3.15.1","hdf5-gnu-mvapich2-hpc-devel":"1.10.8-3.15.1","hdf5-gnu-openmpi1-hpc-devel":"1.10.8-3.15.1","hdf5_1_10_8-gnu-hpc":"1.10.8-3.15.1","hdf5_1_10_8-gnu-hpc-devel":"1.10.8-3.15.1","hdf5_1_10_8-gnu-hpc-devel-static":"1.10.8-3.15.1","hdf5_1_10_8-gnu-hpc-module":"1.10.8-3.15.1","hdf5_1_10_8-gnu-mvapich2-hpc":"1.10.8-3.15.1","hdf5_1_10_8-gnu-mvapich2-hpc-devel":"1.10.8-3.15.1","hdf5_1_10_8-gnu-mvapich2-hpc-devel-static":"1.10.8-3.15.1","hdf5_1_10_8-gnu-mvapich2-hpc-module":"1.10.8-3.15.1","hdf5_1_10_8-gnu-openmpi1-hpc":"1.10.8-3.15.1","hdf5_1_10_8-gnu-openmpi1-hpc-devel":"1.10.8-3.15.1","hdf5_1_10_8-gnu-openmpi1-hpc-devel-static":"1.10.8-3.15.1","hdf5_1_10_8-gnu-openmpi1-hpc-module":"1.10.8-3.15.1","libhdf5-gnu-hpc":"1.10.8-3.15.1","libhdf5-gnu-mvapich2-hpc":"1.10.8-3.15.1","libhdf5-gnu-openmpi1-hpc":"1.10.8-3.15.1","libhdf5_1_10_8-gnu-hpc":"1.10.8-3.15.1","libhdf5_1_10_8-gnu-mvapich2-hpc":"1.10.8-3.15.1","libhdf5_1_10_8-gnu-openmpi1-hpc":"1.10.8-3.15.1","libhdf5_cpp-gnu-hpc":"1.10.8-3.15.1","libhdf5_cpp_1_10_8-gnu-hpc":"1.10.8-3.15.1","libhdf5_fortran-gnu-hpc":"1.10.8-3.15.1","libhdf5_fortran-gnu-mvapich2-hpc":"1.10.8-3.15.1","libhdf5_fortran-gnu-openmpi1-hpc":"1.10.8-3.15.1","libhdf5_fortran_1_10_8-gnu-hpc":"1.10.8-3.15.1","libhdf5_fortran_1_10_8-gnu-mvapich2-hpc":"1.10.8-3.15.1","libhdf5_fortran_1_10_8-gnu-openmpi1-hpc":"1.10.8-3.15.1","libhdf5_hl-gnu-hpc":"1.10.8-3.15.1","libhdf5_hl-gnu-mvapich2-hpc":"1.10.8-3.15.1","libhdf5_hl-gnu-openmpi1-hpc":"1.10.8-3.15.1","libhdf5_hl_1_10_8-gnu-hpc":"1.10.8-3.15.1","libhdf5_hl_1_10_8-gnu-mvapich2-hpc":"1.10.8-3.15.1","libhdf5_hl_1_10_8-gnu-openmpi1-hpc":"1.10.8-3.15.1","libhdf5_hl_cpp-gnu-hpc":"1.10.8-3.15.1","libhdf5_hl_cpp_1_10_8-gnu-hpc":"1.10.8-3.15.1","libhdf5_hl_fortran-gnu-hpc":"1.10.8-3.15.1","libhdf5_hl_fortran-gnu-mvapich2-hpc":"1.10.8-3.15.1","libhdf5_hl_fortran-gnu-openmpi1-hpc":"1.10.8-3.15.1","libhdf5hl_fortran_1_10_8-gnu-hpc":"1.10.8-3.15.1","libhdf5hl_fortran_1_10_8-gnu-mvapich2-hpc":"1.10.8-3.15.1","libhdf5hl_fortran_1_10_8-gnu-openmpi1-hpc":"1.10.8-3.15.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for HPC 12","name":"hdf5_1_10_8-gnu-hpc","purl":"pkg:rpm/suse/hdf5_1_10_8-gnu-hpc&distro=SUSE%20Linux%20Enterprise%20Module%20for%20HPC%2012"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.10.8-3.15.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"hdf5-gnu-hpc-devel":"1.10.8-3.15.1","hdf5-gnu-mvapich2-hpc-devel":"1.10.8-3.15.1","hdf5-gnu-openmpi1-hpc-devel":"1.10.8-3.15.1","hdf5_1_10_8-gnu-hpc":"1.10.8-3.15.1","hdf5_1_10_8-gnu-hpc-devel":"1.10.8-3.15.1","hdf5_1_10_8-gnu-hpc-devel-static":"1.10.8-3.15.1","hdf5_1_10_8-gnu-hpc-module":"1.10.8-3.15.1","hdf5_1_10_8-gnu-mvapich2-hpc":"1.10.8-3.15.1","hdf5_1_10_8-gnu-mvapich2-hpc-devel":"1.10.8-3.15.1","hdf5_1_10_8-gnu-mvapich2-hpc-devel-static":"1.10.8-3.15.1","hdf5_1_10_8-gnu-mvapich2-hpc-module":"1.10.8-3.15.1","hdf5_1_10_8-gnu-openmpi1-hpc":"1.10.8-3.15.1","hdf5_1_10_8-gnu-openmpi1-hpc-devel":"1.10.8-3.15.1","hdf5_1_10_8-gnu-openmpi1-hpc-devel-static":"1.10.8-3.15.1","hdf5_1_10_8-gnu-openmpi1-hpc-module":"1.10.8-3.15.1","libhdf5-gnu-hpc":"1.10.8-3.15.1","libhdf5-gnu-mvapich2-hpc":"1.10.8-3.15.1","libhdf5-gnu-openmpi1-hpc":"1.10.8-3.15.1","libhdf5_1_10_8-gnu-hpc":"1.10.8-3.15.1","libhdf5_1_10_8-gnu-mvapich2-hpc":"1.10.8-3.15.1","libhdf5_1_10_8-gnu-openmpi1-hpc":"1.10.8-3.15.1","libhdf5_cpp-gnu-hpc":"1.10.8-3.15.1","libhdf5_cpp_1_10_8-gnu-hpc":"1.10.8-3.15.1","libhdf5_fortran-gnu-hpc":"1.10.8-3.15.1","libhdf5_fortran-gnu-mvapich2-hpc":"1.10.8-3.15.1","libhdf5_fortran-gnu-openmpi1-hpc":"1.10.8-3.15.1","libhdf5_fortran_1_10_8-gnu-hpc":"1.10.8-3.15.1","libhdf5_fortran_1_10_8-gnu-mvapich2-hpc":"1.10.8-3.15.1","libhdf5_fortran_1_10_8-gnu-openmpi1-hpc":"1.10.8-3.15.1","libhdf5_hl-gnu-hpc":"1.10.8-3.15.1","libhdf5_hl-gnu-mvapich2-hpc":"1.10.8-3.15.1","libhdf5_hl-gnu-openmpi1-hpc":"1.10.8-3.15.1","libhdf5_hl_1_10_8-gnu-hpc":"1.10.8-3.15.1","libhdf5_hl_1_10_8-gnu-mvapich2-hpc":"1.10.8-3.15.1","libhdf5_hl_1_10_8-gnu-openmpi1-hpc":"1.10.8-3.15.1","libhdf5_hl_cpp-gnu-hpc":"1.10.8-3.15.1","libhdf5_hl_cpp_1_10_8-gnu-hpc":"1.10.8-3.15.1","libhdf5_hl_fortran-gnu-hpc":"1.10.8-3.15.1","libhdf5_hl_fortran-gnu-mvapich2-hpc":"1.10.8-3.15.1","libhdf5_hl_fortran-gnu-openmpi1-hpc":"1.10.8-3.15.1","libhdf5hl_fortran_1_10_8-gnu-hpc":"1.10.8-3.15.1","libhdf5hl_fortran_1_10_8-gnu-mvapich2-hpc":"1.10.8-3.15.1","libhdf5hl_fortran_1_10_8-gnu-openmpi1-hpc":"1.10.8-3.15.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for HPC 12","name":"hdf5_1_10_8-gnu-mvapich2-hpc","purl":"pkg:rpm/suse/hdf5_1_10_8-gnu-mvapich2-hpc&distro=SUSE%20Linux%20Enterprise%20Module%20for%20HPC%2012"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.10.8-3.15.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"hdf5-gnu-hpc-devel":"1.10.8-3.15.1","hdf5-gnu-mvapich2-hpc-devel":"1.10.8-3.15.1","hdf5-gnu-openmpi1-hpc-devel":"1.10.8-3.15.1","hdf5_1_10_8-gnu-hpc":"1.10.8-3.15.1","hdf5_1_10_8-gnu-hpc-devel":"1.10.8-3.15.1","hdf5_1_10_8-gnu-hpc-devel-static":"1.10.8-3.15.1","hdf5_1_10_8-gnu-hpc-module":"1.10.8-3.15.1","hdf5_1_10_8-gnu-mvapich2-hpc":"1.10.8-3.15.1","hdf5_1_10_8-gnu-mvapich2-hpc-devel":"1.10.8-3.15.1","hdf5_1_10_8-gnu-mvapich2-hpc-devel-static":"1.10.8-3.15.1","hdf5_1_10_8-gnu-mvapich2-hpc-module":"1.10.8-3.15.1","hdf5_1_10_8-gnu-openmpi1-hpc":"1.10.8-3.15.1","hdf5_1_10_8-gnu-openmpi1-hpc-devel":"1.10.8-3.15.1","hdf5_1_10_8-gnu-openmpi1-hpc-devel-static":"1.10.8-3.15.1","hdf5_1_10_8-gnu-openmpi1-hpc-module":"1.10.8-3.15.1","libhdf5-gnu-hpc":"1.10.8-3.15.1","libhdf5-gnu-mvapich2-hpc":"1.10.8-3.15.1","libhdf5-gnu-openmpi1-hpc":"1.10.8-3.15.1","libhdf5_1_10_8-gnu-hpc":"1.10.8-3.15.1","libhdf5_1_10_8-gnu-mvapich2-hpc":"1.10.8-3.15.1","libhdf5_1_10_8-gnu-openmpi1-hpc":"1.10.8-3.15.1","libhdf5_cpp-gnu-hpc":"1.10.8-3.15.1","libhdf5_cpp_1_10_8-gnu-hpc":"1.10.8-3.15.1","libhdf5_fortran-gnu-hpc":"1.10.8-3.15.1","libhdf5_fortran-gnu-mvapich2-hpc":"1.10.8-3.15.1","libhdf5_fortran-gnu-openmpi1-hpc":"1.10.8-3.15.1","libhdf5_fortran_1_10_8-gnu-hpc":"1.10.8-3.15.1","libhdf5_fortran_1_10_8-gnu-mvapich2-hpc":"1.10.8-3.15.1","libhdf5_fortran_1_10_8-gnu-openmpi1-hpc":"1.10.8-3.15.1","libhdf5_hl-gnu-hpc":"1.10.8-3.15.1","libhdf5_hl-gnu-mvapich2-hpc":"1.10.8-3.15.1","libhdf5_hl-gnu-openmpi1-hpc":"1.10.8-3.15.1","libhdf5_hl_1_10_8-gnu-hpc":"1.10.8-3.15.1","libhdf5_hl_1_10_8-gnu-mvapich2-hpc":"1.10.8-3.15.1","libhdf5_hl_1_10_8-gnu-openmpi1-hpc":"1.10.8-3.15.1","libhdf5_hl_cpp-gnu-hpc":"1.10.8-3.15.1","libhdf5_hl_cpp_1_10_8-gnu-hpc":"1.10.8-3.15.1","libhdf5_hl_fortran-gnu-hpc":"1.10.8-3.15.1","libhdf5_hl_fortran-gnu-mvapich2-hpc":"1.10.8-3.15.1","libhdf5_hl_fortran-gnu-openmpi1-hpc":"1.10.8-3.15.1","libhdf5hl_fortran_1_10_8-gnu-hpc":"1.10.8-3.15.1","libhdf5hl_fortran_1_10_8-gnu-mvapich2-hpc":"1.10.8-3.15.1","libhdf5hl_fortran_1_10_8-gnu-openmpi1-hpc":"1.10.8-3.15.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for HPC 12","name":"hdf5_1_10_8-gnu-openmpi1-hpc","purl":"pkg:rpm/suse/hdf5_1_10_8-gnu-openmpi1-hpc&distro=SUSE%20Linux%20Enterprise%20Module%20for%20HPC%2012"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.10.8-3.15.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for hdf5 fixes the following issues:\n\n  - CVE-2021-46244: Fixed division by zero leading to DoS (bsc#1195215).\n  - CVE-2018-13867: Fixed out of bounds read in the function H5F__accum_read in H5Faccum.c (bsc#1101906).\n  - CVE-2018-16438: Fixed out of bounds read in H5L_extern_query at H5Lexternal.c (bsc#1107069).\n  - CVE-2020-10812: Fixed NULL pointer dereference (bsc#1167400).\n  - CVE-2021-45830: Fixed heap buffer overflow vulnerability in H5F_addr_decode_len in /hdf5/src/H5Fint.c (bsc#1194375).\n  - CVE-2019-8396:  Fixed buffer overflow in function H5O__layout_encode in H5Olayout.c (bsc#1125882).\n  - CVE-2018-11205: Fixed out of bounds read was discovered in H5VM_memcpyvv in H5VM.c (bsc#1093663).\n  - CVE-2021-46242: Fixed heap-use-after free via the component H5AC_unpin_entry (bsc#1195212).\n  - CVE-2021-45833: Fixed stack buffer overflow vulnerability (bsc#1194366).\n  - CVE-2018-14031: Fixed heap-based buffer over-read in the function H5T_copy in H5T.c (bsc#1101475).\n  - CVE-2018-17439: Fixed out of bounds read in the function H5F__accum_read in H5Faccum.c (bsc#1111598).\n","id":"SUSE-SU-2022:3824-1","modified":"2022-11-01T07:52:33Z","published":"2022-11-01T07:52:33Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2022/suse-su-20223824-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1093663"},{"type":"REPORT","url":"https://bugzilla.suse.com/1101475"},{"type":"REPORT","url":"https://bugzilla.suse.com/1101906"},{"type":"REPORT","url":"https://bugzilla.suse.com/1107069"},{"type":"REPORT","url":"https://bugzilla.suse.com/1111598"},{"type":"REPORT","url":"https://bugzilla.suse.com/1125882"},{"type":"REPORT","url":"https://bugzilla.suse.com/1167400"},{"type":"REPORT","url":"https://bugzilla.suse.com/1194366"},{"type":"REPORT","url":"https://bugzilla.suse.com/1194375"},{"type":"REPORT","url":"https://bugzilla.suse.com/1195212"},{"type":"REPORT","url":"https://bugzilla.suse.com/1195215"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2018-11205"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2018-13867"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2018-14031"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2018-16438"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2018-17439"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-8396"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-10812"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-45830"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-45833"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-46242"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-46244"}],"related":["CVE-2018-11205","CVE-2018-13867","CVE-2018-14031","CVE-2018-16438","CVE-2018-17439","CVE-2019-8396","CVE-2020-10812","CVE-2021-45830","CVE-2021-45833","CVE-2021-46242","CVE-2021-46244"],"summary":"Security update for hdf5","upstream":["CVE-2018-11205","CVE-2018-13867","CVE-2018-14031","CVE-2018-16438","CVE-2018-17439","CVE-2019-8396","CVE-2020-10812","CVE-2021-45830","CVE-2021-45833","CVE-2021-46242","CVE-2021-46244"]}