{"id":"RHSA-2025:23731","summary":"Red Hat Security Advisory: RHEL AI 3.0 hdf5 security update","modified":"2026-03-18T10:59:54Z","published":"2025-12-22T10:02:50Z","upstream":["CVE-2025-2310","CVE-2025-6269","CVE-2025-6516"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2025:23731"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#low"},{"type":"ARTICLE","url":"https://issues.redhat.com/browse/AIPCC-8004"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_23731.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2025-2310"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2352651"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2025-2310"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-2310"},{"type":"ARTICLE","url":"https://github.com/madao123123/crash_report/blob/main/hdf5_poc/hdf5_poc4.md"},{"type":"ARTICLE","url":"https://vuldb.com/?ctiid.299723"},{"type":"ARTICLE","url":"https://vuldb.com/?id.299723"},{"type":"ARTICLE","url":"https://vuldb.com/?submit.514533"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2025-6269"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2373903"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2025-6269"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-6269"},{"type":"ARTICLE","url":"https://github.com/HDFGroup/hdf5/commit/7f27ba8c3a8483c3d7e5e2cb21fefb2c7563422d"},{"type":"ARTICLE","url":"https://github.com/HDFGroup/hdf5/issues/5579"},{"type":"ARTICLE","url":"https://github.com/user-attachments/files/20626503/reproduce.tar.gz"},{"type":"ARTICLE","url":"https://vuldb.com/?ctiid.313273"},{"type":"ARTICLE","url":"https://vuldb.com/?id.313273"},{"type":"ARTICLE","url":"https://vuldb.com/?submit.592587"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2025-6516"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2374364"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2025-6516"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-6516"},{"type":"ARTICLE","url":"https://github.com/HDFGroup/hdf5/issues/5581"},{"type":"ARTICLE","url":"https://github.com/user-attachments/files/20626851/reproduce.tar.gz"},{"type":"ARTICLE","url":"https://vuldb.com/?ctiid.313636"},{"type":"ARTICLE","url":"https://vuldb.com/?id.313636"},{"type":"ARTICLE","url":"https://vuldb.com/?submit.592589"}],"affected":[{"package":{"name":"hdf5","ecosystem":"Red Hat:enterprise_linux_ai:3.0::el9","purl":"pkg:rpm/redhat/hdf5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.14.6-6.el9ai"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:23731.json"}},{"package":{"name":"hdf5-debuginfo","ecosystem":"Red Hat:enterprise_linux_ai:3.0::el9","purl":"pkg:rpm/redhat/hdf5-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.14.6-6.el9ai"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:23731.json"}},{"package":{"name":"hdf5-debugsource","ecosystem":"Red Hat:enterprise_linux_ai:3.0::el9","purl":"pkg:rpm/redhat/hdf5-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.14.6-6.el9ai"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:23731.json"}},{"package":{"name":"hdf5-devel","ecosystem":"Red Hat:enterprise_linux_ai:3.0::el9","purl":"pkg:rpm/redhat/hdf5-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.14.6-6.el9ai"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:23731.json"}},{"package":{"name":"hdf5-openmpi","ecosystem":"Red Hat:enterprise_linux_ai:3.0::el9","purl":"pkg:rpm/redhat/hdf5-openmpi"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.14.6-6.el9ai"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:23731.json"}},{"package":{"name":"hdf5-openmpi-debuginfo","ecosystem":"Red Hat:enterprise_linux_ai:3.0::el9","purl":"pkg:rpm/redhat/hdf5-openmpi-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.14.6-6.el9ai"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:23731.json"}},{"package":{"name":"hdf5-openmpi-devel","ecosystem":"Red Hat:enterprise_linux_ai:3.0::el9","purl":"pkg:rpm/redhat/hdf5-openmpi-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.14.6-6.el9ai"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:23731.json"}},{"package":{"name":"hdf5-openmpi-static","ecosystem":"Red Hat:enterprise_linux_ai:3.0::el9","purl":"pkg:rpm/redhat/hdf5-openmpi-static"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.14.6-6.el9ai"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:23731.json"}},{"package":{"name":"hdf5-static","ecosystem":"Red Hat:enterprise_linux_ai:3.0::el9","purl":"pkg:rpm/redhat/hdf5-static"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.14.6-6.el9ai"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:23731.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"}]}