Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-jeu6-8nb9-d3ep
SummaryA buffer overflow in H5O__layout_encode in H5Olayout.c in the HDF HDF5 through 1.10.4 library allows attackers to cause a denial of service via a crafted HDF5 file. This issue was triggered while repacking an HDF5 file, aka "Invalid write of size 2."
Aliases
0
alias CVE-2019-8396
Fixed_packages
0
url pkg:alpm/archlinux/hdf5@1.10.5-1
purl pkg:alpm/archlinux/hdf5@1.10.5-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/hdf5@1.10.5-1
1
url pkg:deb/debian/hdf5@1.14.5%2Brepack-1?distro=trixie
purl pkg:deb/debian/hdf5@1.14.5%2Brepack-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/hdf5@1.14.5%252Brepack-1%3Fdistro=trixie
2
url pkg:deb/debian/hdf5@1.14.5%2Brepack-3
purl pkg:deb/debian/hdf5@1.14.5%2Brepack-3
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/hdf5@1.14.5%252Brepack-3
3
url pkg:deb/debian/hdf5@1.14.5%2Brepack-3?distro=trixie
purl pkg:deb/debian/hdf5@1.14.5%2Brepack-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/hdf5@1.14.5%252Brepack-3%3Fdistro=trixie
4
url pkg:deb/debian/hdf5@1.14.6%2Brepack-2?distro=trixie
purl pkg:deb/debian/hdf5@1.14.6%2Brepack-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/hdf5@1.14.6%252Brepack-2%3Fdistro=trixie
Affected_packages
0
url pkg:alpm/archlinux/hdf5@1.10.4-1
purl pkg:alpm/archlinux/hdf5@1.10.4-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-d775-vkyv-nybf
1
vulnerability VCID-jeu6-8nb9-d3ep
2
vulnerability VCID-vf9h-vkm4-afgk
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/hdf5@1.10.4-1
1
url pkg:deb/debian/hdf5@1.10.6%2Brepack-4%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/hdf5@1.10.6%2Brepack-4%2Bdeb11u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1qt2-92gt-f3fk
1
vulnerability VCID-2r6p-322p-37dm
2
vulnerability VCID-4kz9-zrss-83bx
3
vulnerability VCID-5v4u-uu83-sqc8
4
vulnerability VCID-7xfq-w24m-yugw
5
vulnerability VCID-89j8-dfkx-2bhs
6
vulnerability VCID-8aac-7mgq-h7a4
7
vulnerability VCID-8df1-wt32-pqa6
8
vulnerability VCID-8dhg-t7wf-v3ah
9
vulnerability VCID-8jym-e7p3-7qgg
10
vulnerability VCID-adzd-m4tm-v3f8
11
vulnerability VCID-ajuw-pqtu-mygw
12
vulnerability VCID-bhy6-usxm-h7a4
13
vulnerability VCID-c2d5-k2pu-m3ba
14
vulnerability VCID-c54w-b13w-uke7
15
vulnerability VCID-caba-jf2d-yubt
16
vulnerability VCID-d9fr-59ax-vya4
17
vulnerability VCID-dmz7-rekk-1bax
18
vulnerability VCID-e4aq-y2zm-tybp
19
vulnerability VCID-euh2-g5tb-kyc7
20
vulnerability VCID-evc7-d6mz-dqh7
21
vulnerability VCID-g4wu-fszp-sbcp
22
vulnerability VCID-h2q3-ub28-9ygd
23
vulnerability VCID-hguc-e36x-kkfj
24
vulnerability VCID-j2ck-xmvp-h7f7
25
vulnerability VCID-jeu6-8nb9-d3ep
26
vulnerability VCID-jgjd-n5m8-cbbk
27
vulnerability VCID-kpny-jvxd-h7df
28
vulnerability VCID-kx1u-3t7h-tyhb
29
vulnerability VCID-mgev-h4d6-g3c9
30
vulnerability VCID-mkrz-w4u4-tuaj
31
vulnerability VCID-n1ag-bkf2-uyd8
32
vulnerability VCID-n3sz-bxsj-dfbw
33
vulnerability VCID-p3f9-9fu6-cbff
34
vulnerability VCID-p78p-43n3-yqgg
35
vulnerability VCID-pmtb-wxmw-2yh2
36
vulnerability VCID-ppqc-1vsd-1qg6
37
vulnerability VCID-qr98-8n65-eue6
38
vulnerability VCID-qttu-atch-hkcq
39
vulnerability VCID-qzz2-61s2-bkca
40
vulnerability VCID-rr9y-73f6-ybab
41
vulnerability VCID-rwu5-z6rj-uye7
42
vulnerability VCID-s161-wyhp-e3hw
43
vulnerability VCID-tba6-aqxs-nqgm
44
vulnerability VCID-td2e-qeam-fucf
45
vulnerability VCID-ua6h-y2bc-jqdy
46
vulnerability VCID-uhhu-7sbk-gqaf
47
vulnerability VCID-untx-ks69-4yc3
48
vulnerability VCID-usd5-mpjq-fkgm
49
vulnerability VCID-vaam-cd2s-pkh3
50
vulnerability VCID-vf8n-vse9-4qh3
51
vulnerability VCID-vf9h-vkm4-afgk
52
vulnerability VCID-vn8s-gm5x-eqbd
53
vulnerability VCID-wez5-unzz-kudq
54
vulnerability VCID-wt1r-6349-v7at
55
vulnerability VCID-x85j-52ep-z7a4
56
vulnerability VCID-xnb3-ch5w-d3bt
57
vulnerability VCID-ze1t-z525-n3e2
58
vulnerability VCID-zeyd-2fwn-87bh
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/hdf5@1.10.6%252Brepack-4%252Bdeb11u1%3Fdistro=trixie
2
url pkg:deb/debian/hdf5@1.10.6%2Brepack-4%2Bdeb11u1
purl pkg:deb/debian/hdf5@1.10.6%2Brepack-4%2Bdeb11u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1qt2-92gt-f3fk
1
vulnerability VCID-2r6p-322p-37dm
2
vulnerability VCID-4kz9-zrss-83bx
3
vulnerability VCID-5v4u-uu83-sqc8
4
vulnerability VCID-7xfq-w24m-yugw
5
vulnerability VCID-89j8-dfkx-2bhs
6
vulnerability VCID-8aac-7mgq-h7a4
7
vulnerability VCID-8df1-wt32-pqa6
8
vulnerability VCID-8dhg-t7wf-v3ah
9
vulnerability VCID-8jym-e7p3-7qgg
10
vulnerability VCID-adzd-m4tm-v3f8
11
vulnerability VCID-ajuw-pqtu-mygw
12
vulnerability VCID-bhy6-usxm-h7a4
13
vulnerability VCID-c2d5-k2pu-m3ba
14
vulnerability VCID-c54w-b13w-uke7
15
vulnerability VCID-caba-jf2d-yubt
16
vulnerability VCID-d9fr-59ax-vya4
17
vulnerability VCID-dmz7-rekk-1bax
18
vulnerability VCID-e4aq-y2zm-tybp
19
vulnerability VCID-euh2-g5tb-kyc7
20
vulnerability VCID-evc7-d6mz-dqh7
21
vulnerability VCID-g4wu-fszp-sbcp
22
vulnerability VCID-h2q3-ub28-9ygd
23
vulnerability VCID-hguc-e36x-kkfj
24
vulnerability VCID-j2ck-xmvp-h7f7
25
vulnerability VCID-jeu6-8nb9-d3ep
26
vulnerability VCID-jgjd-n5m8-cbbk
27
vulnerability VCID-kpny-jvxd-h7df
28
vulnerability VCID-kx1u-3t7h-tyhb
29
vulnerability VCID-mgev-h4d6-g3c9
30
vulnerability VCID-mkrz-w4u4-tuaj
31
vulnerability VCID-n1ag-bkf2-uyd8
32
vulnerability VCID-n3sz-bxsj-dfbw
33
vulnerability VCID-p3f9-9fu6-cbff
34
vulnerability VCID-p78p-43n3-yqgg
35
vulnerability VCID-pmtb-wxmw-2yh2
36
vulnerability VCID-ppqc-1vsd-1qg6
37
vulnerability VCID-qr98-8n65-eue6
38
vulnerability VCID-qttu-atch-hkcq
39
vulnerability VCID-qzz2-61s2-bkca
40
vulnerability VCID-rr9y-73f6-ybab
41
vulnerability VCID-rwu5-z6rj-uye7
42
vulnerability VCID-s161-wyhp-e3hw
43
vulnerability VCID-tba6-aqxs-nqgm
44
vulnerability VCID-td2e-qeam-fucf
45
vulnerability VCID-ua6h-y2bc-jqdy
46
vulnerability VCID-uhhu-7sbk-gqaf
47
vulnerability VCID-untx-ks69-4yc3
48
vulnerability VCID-usd5-mpjq-fkgm
49
vulnerability VCID-vaam-cd2s-pkh3
50
vulnerability VCID-vf8n-vse9-4qh3
51
vulnerability VCID-vf9h-vkm4-afgk
52
vulnerability VCID-vn8s-gm5x-eqbd
53
vulnerability VCID-wez5-unzz-kudq
54
vulnerability VCID-wt1r-6349-v7at
55
vulnerability VCID-x85j-52ep-z7a4
56
vulnerability VCID-xnb3-ch5w-d3bt
57
vulnerability VCID-ze1t-z525-n3e2
58
vulnerability VCID-zeyd-2fwn-87bh
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/hdf5@1.10.6%252Brepack-4%252Bdeb11u1
3
url pkg:deb/debian/hdf5@1.10.8%2Brepack1-1?distro=trixie
purl pkg:deb/debian/hdf5@1.10.8%2Brepack1-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1qt2-92gt-f3fk
1
vulnerability VCID-2r6p-322p-37dm
2
vulnerability VCID-5v4u-uu83-sqc8
3
vulnerability VCID-7xfq-w24m-yugw
4
vulnerability VCID-89j8-dfkx-2bhs
5
vulnerability VCID-8aac-7mgq-h7a4
6
vulnerability VCID-8df1-wt32-pqa6
7
vulnerability VCID-8dhg-t7wf-v3ah
8
vulnerability VCID-8jym-e7p3-7qgg
9
vulnerability VCID-adzd-m4tm-v3f8
10
vulnerability VCID-ajuw-pqtu-mygw
11
vulnerability VCID-bhy6-usxm-h7a4
12
vulnerability VCID-c2d5-k2pu-m3ba
13
vulnerability VCID-c54w-b13w-uke7
14
vulnerability VCID-caba-jf2d-yubt
15
vulnerability VCID-d9fr-59ax-vya4
16
vulnerability VCID-e4aq-y2zm-tybp
17
vulnerability VCID-euh2-g5tb-kyc7
18
vulnerability VCID-evc7-d6mz-dqh7
19
vulnerability VCID-g4wu-fszp-sbcp
20
vulnerability VCID-h2q3-ub28-9ygd
21
vulnerability VCID-hguc-e36x-kkfj
22
vulnerability VCID-j2ck-xmvp-h7f7
23
vulnerability VCID-jeu6-8nb9-d3ep
24
vulnerability VCID-jgjd-n5m8-cbbk
25
vulnerability VCID-kx1u-3t7h-tyhb
26
vulnerability VCID-mgev-h4d6-g3c9
27
vulnerability VCID-mkrz-w4u4-tuaj
28
vulnerability VCID-n1ag-bkf2-uyd8
29
vulnerability VCID-n3sz-bxsj-dfbw
30
vulnerability VCID-p3f9-9fu6-cbff
31
vulnerability VCID-ppqc-1vsd-1qg6
32
vulnerability VCID-qr98-8n65-eue6
33
vulnerability VCID-qzz2-61s2-bkca
34
vulnerability VCID-rr9y-73f6-ybab
35
vulnerability VCID-rwu5-z6rj-uye7
36
vulnerability VCID-s161-wyhp-e3hw
37
vulnerability VCID-tba6-aqxs-nqgm
38
vulnerability VCID-td2e-qeam-fucf
39
vulnerability VCID-uhhu-7sbk-gqaf
40
vulnerability VCID-usd5-mpjq-fkgm
41
vulnerability VCID-vaam-cd2s-pkh3
42
vulnerability VCID-vf8n-vse9-4qh3
43
vulnerability VCID-vf9h-vkm4-afgk
44
vulnerability VCID-vn8s-gm5x-eqbd
45
vulnerability VCID-wez5-unzz-kudq
46
vulnerability VCID-wt1r-6349-v7at
47
vulnerability VCID-x85j-52ep-z7a4
48
vulnerability VCID-xnb3-ch5w-d3bt
49
vulnerability VCID-ze1t-z525-n3e2
50
vulnerability VCID-zeyd-2fwn-87bh
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/hdf5@1.10.8%252Brepack1-1%3Fdistro=trixie
4
url pkg:deb/debian/hdf5@1.10.8%2Brepack1-1
purl pkg:deb/debian/hdf5@1.10.8%2Brepack1-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1qt2-92gt-f3fk
1
vulnerability VCID-2r6p-322p-37dm
2
vulnerability VCID-5v4u-uu83-sqc8
3
vulnerability VCID-7xfq-w24m-yugw
4
vulnerability VCID-89j8-dfkx-2bhs
5
vulnerability VCID-8aac-7mgq-h7a4
6
vulnerability VCID-8df1-wt32-pqa6
7
vulnerability VCID-8dhg-t7wf-v3ah
8
vulnerability VCID-8jym-e7p3-7qgg
9
vulnerability VCID-adzd-m4tm-v3f8
10
vulnerability VCID-ajuw-pqtu-mygw
11
vulnerability VCID-bhy6-usxm-h7a4
12
vulnerability VCID-c2d5-k2pu-m3ba
13
vulnerability VCID-c54w-b13w-uke7
14
vulnerability VCID-caba-jf2d-yubt
15
vulnerability VCID-d9fr-59ax-vya4
16
vulnerability VCID-e4aq-y2zm-tybp
17
vulnerability VCID-euh2-g5tb-kyc7
18
vulnerability VCID-evc7-d6mz-dqh7
19
vulnerability VCID-g4wu-fszp-sbcp
20
vulnerability VCID-h2q3-ub28-9ygd
21
vulnerability VCID-hguc-e36x-kkfj
22
vulnerability VCID-j2ck-xmvp-h7f7
23
vulnerability VCID-jeu6-8nb9-d3ep
24
vulnerability VCID-jgjd-n5m8-cbbk
25
vulnerability VCID-kx1u-3t7h-tyhb
26
vulnerability VCID-mgev-h4d6-g3c9
27
vulnerability VCID-mkrz-w4u4-tuaj
28
vulnerability VCID-n1ag-bkf2-uyd8
29
vulnerability VCID-n3sz-bxsj-dfbw
30
vulnerability VCID-p3f9-9fu6-cbff
31
vulnerability VCID-ppqc-1vsd-1qg6
32
vulnerability VCID-qr98-8n65-eue6
33
vulnerability VCID-qzz2-61s2-bkca
34
vulnerability VCID-rr9y-73f6-ybab
35
vulnerability VCID-rwu5-z6rj-uye7
36
vulnerability VCID-s161-wyhp-e3hw
37
vulnerability VCID-tba6-aqxs-nqgm
38
vulnerability VCID-td2e-qeam-fucf
39
vulnerability VCID-uhhu-7sbk-gqaf
40
vulnerability VCID-usd5-mpjq-fkgm
41
vulnerability VCID-vaam-cd2s-pkh3
42
vulnerability VCID-vf8n-vse9-4qh3
43
vulnerability VCID-vf9h-vkm4-afgk
44
vulnerability VCID-vn8s-gm5x-eqbd
45
vulnerability VCID-wez5-unzz-kudq
46
vulnerability VCID-wt1r-6349-v7at
47
vulnerability VCID-x85j-52ep-z7a4
48
vulnerability VCID-xnb3-ch5w-d3bt
49
vulnerability VCID-ze1t-z525-n3e2
50
vulnerability VCID-zeyd-2fwn-87bh
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/hdf5@1.10.8%252Brepack1-1
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-8396.json
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-8396.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-8396
reference_id
reference_type
scores
0
value 0.00482
scoring_system epss
scoring_elements 0.65557
published_at 2026-06-06T12:55:00Z
1
value 0.00482
scoring_system epss
scoring_elements 0.65534
published_at 2026-06-08T12:55:00Z
2
value 0.00482
scoring_system epss
scoring_elements 0.65494
published_at 2026-06-04T12:55:00Z
3
value 0.00482
scoring_system epss
scoring_elements 0.65546
published_at 2026-06-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-8396
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8396
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8396
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1034838
reference_id 1034838
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1034838
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1678254
reference_id 1678254
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1678254
6
reference_url https://security.archlinux.org/AVG-901
reference_id AVG-901
reference_type
scores
0
value Medium
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-901
Weaknesses
0
cwe_id 120
name Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
description The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.
Exploits
Severity_range_score3.3 - 6.9
Exploitability0.5
Weighted_severity6.2
Risk_score3.1
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-jeu6-8nb9-d3ep