HDF5 - Multiple Memory Corruption Vulnerabilities
Pulse Security briefly assessed the HDF5
library (hdf5-1.14.1-2
) for memory corruption vulnerabilities as part of a client engagement where the HDF5
library was used to parse potentially untrusted data. Multiple memory corruption issues were found in the HDF5
library by fuzz testing the h5stat
and h5dump
helper utilities.