Users login

Create an account »

JOIN XATRIX

Users login

Home » Security Advisories» Debian » hdf5 security update

hdf5 security update

  • Vendor: Debian
  • Vendor ID: DSA 3727-1
  • Date: November 30, 2016


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-3727-1 [email protected]
https://www.debian.org/security/ Sebastien Delafond
November 30, 2016 https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : hdf5
CVE ID : CVE-2016-4330 CVE-2016-4331 CVE-2016-4332 CVE-2016-4333
Debian Bug : 845301

Cisco Talos discovered that hdf5, a file format and library for
storing scientific data, contained several vulnerabilities that could
lead to arbitrary code execution when handling untrusted data.

For the stable distribution (jessie), these problems have been fixed in
version 1.8.13+docs-15+deb8u1.

For the testing distribution (stretch) and unstable distribution
(sid), these problems have been fixed in version 1.10.0-patch1+docs-1.

We recommend that you upgrade your hdf5 packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]
-----BEGIN PGP SIGNATURE-----

iQEcBAEBCgAGBQJYPrXlAAoJEBC+iYPz1Z1kWsYH/0rypGPY2hEChcoC7Qw160yC
VSWYQVMZs/QzYLVqcyoiXW1BWRNXo0QA7uq207QZu6fPXi/vYji1CyUWMWMpmsu3
uJIrikO0HyNI+JBsNMzOdzhcYUZik8haQfe9CXKJt7VHVaFyXRrhp0JtKM1pwFmA
vqM2bJ0XG45xbxI8+B1amc4eHuzqpqeEKLJ1LBd2MUpq4VGCq50drw82pgrbS5mI
YmRzM+0JCjMnNYIyd52ru6EnWXj72FK/BN+j6SW4E2Cbv4tuWJu2LDzsTiUjlSFO
i55izvWyv6H714txIopi+RRhe6c4X4wuTqaqsP+bWRBo7tn9+3mUDktVnv70yqM=
=do9J
-----END PGP SIGNATURE-----

Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »