HDF5 Group libhdf5 H5Z_NBIT Code Execution Vulnerability(CVE-2016-4331)

Description HDF5 is a file format that is maintained by a non-profit organization, The HDF Group. HDF5 is designed to be used for storage and organization of large amounts of scientific data and is used to exchange data structures between applications in industries such as the GIS industry via...

CVE-2016-4331

CVE-2016-4331 (HDF5) affects the HDF5 1.8.16 library, specifically the H5Z_NBIT decoding path. A flaw in bounds/precision checks can lead to arbitrary code execution with high impact when decoding untrusted data. This is part of a set of related issues (CVE-2016-4330/4331/4332/4333) tied to HDF5 ...

CVE-2016-4331

When decoding data out of a dataset encoded with the H5ZNBIT decoding, the HDF5 1.8.16 library will fail to ensure that the precision is within the bounds of the size leading to arbitrary code execution...

HDF5 Group libhdf5 H5Z_NBIT Code Execution Vulnerability

Talos Vulnerability Report TALOS-2016-0177 HDF5 Group libhdf5 H5ZNBIT Code Execution Vulnerability November 17, 2016 CVE Number CVE-2016-4331 Description HDF5 is a file format that is maintained by a non-profit organization, The HDF Group. HDF5 is designed to be used for storage and organization ...