{"id":"CVE-2019-8396","details":"A buffer overflow in H5O__layout_encode in H5Olayout.c in the HDF HDF5 through 1.10.4 library allows attackers to cause a denial of service via a crafted HDF5 file. This issue was triggered while repacking an HDF5 file, aka \"Invalid write of size 2.\"","modified":"2026-03-12T23:29:48.357301Z","published":"2019-02-17T06:29:00.237Z","related":["SUSE-SU-2022:3824-1","SUSE-SU-2022:3825-1","SUSE-SU-2022:3826-1","SUSE-SU-2022:3827-1","SUSE-SU-2022:3828-1","SUSE-SU-2022:3829-1","SUSE-SU-2024:0538-1","SUSE-SU-2024:0882-1","SUSE-SU-2024:3144-1"],"references":[{"type":"EVIDENCE","url":"https://github.com/magicSwordsMan/PAAFS/tree/master/vul4"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/hdfgroup/hdf5","events":[{"introduced":"0"},{"last_affected":"f3f29dc7df5f3cc41a5e9462d8c415e540cda3d6"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"1.10.4"}]}}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-8396.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}]}