[Git][security-tracker-team/security-tracker][master] more hdf updates

[Moritz Muehlenhoff (@jmm)]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6a3f7a41 by Moritz Muehlenhoff at 2026-01-19T20:55:01+01:00
more hdf updates

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -197079,75 +197079,61 @@ CVE-2024-32619 (HDF5 Library through 1.14.3 contains a heap-based buffer overflo
 	NOTE: https://www.hdfgroup.org/2024/05/new-hdf5-cve-issues-fixed-in-1-14-4/
 	NOTE: HDF not covered by security support, see https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1117722
 CVE-2024-32618 (HDF5 Library through 1.14.3 contains a heap-based buffer overflow in H ...)
-	- hdf5 1.14.5+repack-1 (bug #1070861)
-	[bookworm] - hdf5 <no-dsa> (Minor issue)
-	[bullseye] - hdf5 <no-dsa> (Minor issue)
+	- hdf5 1.14.5+repack-1 (bug #1070861; unimportant)
 	NOTE: https://www.hdfgroup.org/2024/05/new-hdf5-cve-issues-fixed-in-1-14-4/
+	NOTE: HDF not covered by security support, see https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1117722
 CVE-2024-32617 (HDF5 Library through 1.14.3 contains a heap-based buffer over-read cau ...)
-	- hdf5 1.14.5+repack-1 (bug #1070861)
-	[bookworm] - hdf5 <no-dsa> (Minor issue)
-	[bullseye] - hdf5 <no-dsa> (Minor issue)
+	- hdf5 1.14.5+repack-1 (bug #1070861; unimportant)
 	NOTE: https://www.hdfgroup.org/2024/05/new-hdf5-cve-issues-fixed-in-1-14-4/
+	NOTE: HDF not covered by security support, see https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1117722
 CVE-2024-32616 (HDF5 Library through 1.14.3 contains a heap-based buffer over-read in  ...)
-	- hdf5 1.14.5+repack-1 (bug #1070861)
-	[bookworm] - hdf5 <no-dsa> (Minor issue)
-	[bullseye] - hdf5 <no-dsa> (Minor issue)
+	- hdf5 1.14.5+repack-1 (bug #1070861; unimportant)
 	NOTE: https://www.hdfgroup.org/2024/05/new-hdf5-cve-issues-fixed-in-1-14-4/
+	NOTE: HDF not covered by security support, see https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1117722
 CVE-2024-32615 (HDF5 Library through 1.14.3 contains a heap-based buffer overflow in H ...)
-	- hdf5 1.14.5+repack-1 (bug #1070861)
-	[bookworm] - hdf5 <no-dsa> (Minor issue)
-	[bullseye] - hdf5 <no-dsa> (Minor issue)
+	- hdf5 1.14.5+repack-1 (bug #1070861; unimportant)
 	NOTE: https://www.hdfgroup.org/2024/05/new-hdf5-cve-issues-fixed-in-1-14-4/
+	NOTE: HDF not covered by security support, see https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1117722
 CVE-2024-32614 (HDF5 Library through 1.14.3 has a SEGV in H5VM_memcpyvv in H5VM.c.)
-	- hdf5 1.14.5+repack-1 (bug #1070861)
-	[bookworm] - hdf5 <no-dsa> (Minor issue)
-	[bullseye] - hdf5 <no-dsa> (Minor issue)
+	- hdf5 1.14.5+repack-1 (bug #1070861; unimportant)
 	NOTE: https://www.hdfgroup.org/2024/05/new-hdf5-cve-issues-fixed-in-1-14-4/
+	NOTE: HDF not covered by security support, see https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1117722
 CVE-2024-32613 (HDF5 Library through 1.14.3 contains a heap-based buffer over-read in  ...)
-	- hdf5 1.14.5+repack-1 (bug #1070861)
-	[bookworm] - hdf5 <no-dsa> (Minor issue)
-	[bullseye] - hdf5 <no-dsa> (Minor issue)
+	- hdf5 1.14.5+repack-1 (bug #1070861; unimportant)
 	NOTE: https://www.hdfgroup.org/2024/05/new-hdf5-cve-issues-fixed-in-1-14-4/
+	NOTE: HDF not covered by security support, see https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1117722
 CVE-2024-32612 (HDF5 Library through 1.14.3 contains a heap-based buffer over-read in  ...)
-	- hdf5 1.14.5+repack-1 (bug #1070861)
-	[bookworm] - hdf5 <no-dsa> (Minor issue)
-	[bullseye] - hdf5 <no-dsa> (Minor issue)
+	- hdf5 1.14.5+repack-1 (bug #1070861; unimportant)
 	NOTE: https://www.hdfgroup.org/2024/05/new-hdf5-cve-issues-fixed-in-1-14-4/
+	NOTE: HDF not covered by security support, see https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1117722
 CVE-2024-32611 (HDF5 Library through 1.14.3 may use an uninitialized value in H5A__att ...)
-	- hdf5 1.14.5+repack-1 (bug #1070861)
-	[bookworm] - hdf5 <no-dsa> (Minor issue)
-	[bullseye] - hdf5 <no-dsa> (Minor issue)
+	- hdf5 1.14.5+repack-1 (bug #1070861; unimportant)
 	NOTE: https://www.hdfgroup.org/2024/05/new-hdf5-cve-issues-fixed-in-1-14-4/
+	NOTE: HDF not covered by security support, see https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1117722
 CVE-2024-32610 (HDF5 Library through 1.14.3 has a SEGV in H5T_close_real in H5T.c, res ...)
-	- hdf5 1.14.5+repack-1 (bug #1070861)
-	[bookworm] - hdf5 <no-dsa> (Minor issue)
-	[bullseye] - hdf5 <no-dsa> (Minor issue)
+	- hdf5 1.14.5+repack-1 (bug #1070861; unimportant)
 	NOTE: https://www.hdfgroup.org/2024/05/new-hdf5-cve-issues-fixed-in-1-14-4/
+	NOTE: HDF not covered by security support, see https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1117722
 CVE-2024-32609 (HDF5 Library through 1.14.3 allows stack consumption in the function H ...)
-	- hdf5 1.14.5+repack-1 (bug #1070861)
-	[bookworm] - hdf5 <no-dsa> (Minor issue)
-	[bullseye] - hdf5 <no-dsa> (Minor issue)
+	- hdf5 1.14.5+repack-1 (bug #1070861; unimportant)
 	NOTE: https://www.hdfgroup.org/2024/05/new-hdf5-cve-issues-fixed-in-1-14-4/
+	NOTE: HDF not covered by security support, see https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1117722
 CVE-2024-32608 (HDF5 library through 1.14.3 has memory corruption in H5A__close result ...)
-	- hdf5 1.14.5+repack-1 (bug #1070861)
-	[bookworm] - hdf5 <no-dsa> (Minor issue)
-	[bullseye] - hdf5 <no-dsa> (Minor issue)
+	- hdf5 1.14.5+repack-1 (bug #1070861; unimportant)
 	NOTE: https://www.hdfgroup.org/2024/05/new-hdf5-cve-issues-fixed-in-1-14-4/
+	NOTE: HDF not covered by security support, see https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1117722
 CVE-2024-32607 (HDF5 Library through 1.14.3 has a SEGV in H5A__close in H5Aint.c, resu ...)
-	- hdf5 1.14.5+repack-1 (bug #1070861)
-	[bookworm] - hdf5 <no-dsa> (Minor issue)
-	[bullseye] - hdf5 <no-dsa> (Minor issue)
+	- hdf5 1.14.5+repack-1 (bug #1070861; unimportant)
 	NOTE: https://www.hdfgroup.org/2024/05/new-hdf5-cve-issues-fixed-in-1-14-4/
+	NOTE: HDF not covered by security support, see https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1117722
 CVE-2024-32606 (HDF5 Library through 1.14.3 may attempt to dereference uninitialized v ...)
-	- hdf5 1.14.5+repack-1 (bug #1070861)
-	[bookworm] - hdf5 <no-dsa> (Minor issue)
-	[bullseye] - hdf5 <no-dsa> (Minor issue)
+	- hdf5 1.14.5+repack-1 (bug #1070861; unimportant)
 	NOTE: https://www.hdfgroup.org/2024/05/new-hdf5-cve-issues-fixed-in-1-14-4/
+	NOTE: HDF not covered by security support, see https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1117722
 CVE-2024-32605 (HDF5 Library through 1.14.3 has a heap-based buffer over-read in H5VM_ ...)
-	- hdf5 1.14.5+repack-1 (bug #1070861)
-	[bookworm] - hdf5 <no-dsa> (Minor issue)
-	[bullseye] - hdf5 <no-dsa> (Minor issue)
+	- hdf5 1.14.5+repack-1 (bug #1070861; unimportant)
 	NOTE: https://www.hdfgroup.org/2024/05/new-hdf5-cve-issues-fixed-in-1-14-4/
+	NOTE: HDF not covered by security support, see https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1117722
 CVE-2024-31954 (An issue was discovered in the installer in Samsung Portable SSD for T ...)
 	NOT-FOR-US: Samsung
 CVE-2024-31953 (An issue was discovered in Samsung Magician 8.0.0 on macOS. Because it ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6a3f7a41d74803d758c3b543a1598293392e3a6b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6a3f7a41d74803d758c3b543a1598293392e3a6b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260119/04065c91/attachment.htm>