In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applicationsThere is no fixed version for Debian:12
hdf5
.
Note: Versions mentioned in the description apply only to the upstream hdf5
package and not the hdf5
package as distributed by Debian
.
See How to fix?
for Debian:12
relevant fixed versions and status.
HDF5 Library through 1.14.3 contains a heap-based buffer over-read in H5HL__fl_deserialize in H5HLcache.c, resulting in the corruption of the instruction pointer, a different vulnerability than CVE-2024-32613.