vulnerability

Debian: CVE-2016-4330: hdf5 -- security update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:L/AC:M/Au:N/C:C/I:C/A:C)	Nov 18, 2016	Dec 1, 2016	Aug 15, 2025

Severity

CVSS

(AV:L/AC:M/Au:N/C:C/I:C/A:C)

Published

Nov 18, 2016

Added

Dec 1, 2016

Modified

Aug 15, 2025

Description

In the HDF5 1.8.16 library's failure to check if the number of dimensions for an array read from the file is within the bounds of the space allocated for it, a heap-based buffer overflow will occur, potentially leading to arbitrary code execution.

Solution

debian-upgrade-hdf5

References

CVE-2016-4330
https://attackerkb.com/topics/CVE-2016-4330
CWE-119
DEBIAN-DLA-771-1
DEBIAN-DSA-3727

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today