AZL-40579

See a problem?
Import Source
https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-40579.json
JSON Data
https://api.test.osv.dev/v1/vulns/AZL-40579
Upstream
Published
2024-05-14T15:36:46Z
Modified
2026-04-01T05:14:06.290040Z
Summary
CVE-2024-32616 affecting package hdf5 for versions less than 1.14.4.3-1
Details

HDF5 Library through 1.14.3 contains a heap-based buffer over-read in H5O__dtypeencodehelper in H5Odtype.c.

References

Affected packages

Azure Linux:3 / hdf5

Package

Name
hdf5
Purl
pkg:rpm/azure-linux/hdf5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.14.4.3-1

Database specific

source 
"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-40579.json"