From ef582d83b013cc192a7976082b7f0a142ed8ea88 Mon Sep 17 00:00:00 2001
From: Weston Steimel <commits@weston.slmail.me>
Date: Fri, 11 Oct 2024 13:42:41 +0100
Subject: [PATCH] add hdf5 cve

Signed-off-by: Weston Steimel <commits@weston.slmail.me>
---
 data/anchore/2024/CVE-2024-32608.json | 34 +++++++++++++++++++++++++++
 1 file changed, 34 insertions(+)
 create mode 100644 data/anchore/2024/CVE-2024-32608.json

diff --git a/data/anchore/2024/CVE-2024-32608.json b/data/anchore/2024/CVE-2024-32608.json
new file mode 100644
index 00000000..6f09f3a7
--- /dev/null
+++ b/data/anchore/2024/CVE-2024-32608.json
@@ -0,0 +1,34 @@
+{
+  "additionalMetadata": {
+    "cna": "mitre",
+    "cveId": "CVE-2024-32608",
+    "description": "HDF5 library through 1.14.3 has memory corruption in H5A__close resulting in the corruption of the instruction pointer and causing denial of service or potential code execution.",
+    "reason": "Added CPE configurations because not yet analyzed by NVD.",
+    "references": [
+      "https://www.hdfgroup.org/2024/05/new-hdf5-cve-issues-fixed-in-1-14-4/"
+    ]
+  },
+  "adp": {
+    "affected": [
+      {
+        "cpes": [
+          "cpe:2.3:a:hdfgroup:hdf5:*:*:*:*:*:*:*:*"
+        ],
+        "product": "hdf5",
+        "vendor": "hdfgroup",
+        "versions": [
+          {
+            "lessThan": "1.14.4",
+            "status": "affected",
+            "version": "0",
+            "versionType": "custom"
+          }
+        ]
+      }
+    ],
+    "providerMetadata": {
+      "orgId": "00000000-0000-4000-8000-000000000000",
+      "shortName": "anchoreadp"
+    }
+  }
+}
\ No newline at end of file