summaryrefslogtreecommitdiffstats
path: root/release_docs/RELEASE.txt
diff options
context:
space:
mode:
authorBinh-Minh Ribler <bmribler@hdfgroup.org>2020-07-05 21:15:28 (GMT)
committerBinh-Minh Ribler <bmribler@hdfgroup.org>2020-07-05 21:15:28 (GMT)
commitbf3ef96e9d5a28e824d7e89b5af590b61f530944 (patch)
tree4f92d9bd0dc4430e586a1ce7ab937059a0229a8c /release_docs/RELEASE.txt
parent37f6de1b3037a2b7a569c2edb08f58f8ba323af0 (diff)
downloadhdf5-bf3ef96e9d5a28e824d7e89b5af590b61f530944.zip
hdf5-bf3ef96e9d5a28e824d7e89b5af590b61f530944.tar.gz
hdf5-bf3ef96e9d5a28e824d7e89b5af590b61f530944.tar.bz2
Fix HDFFV-10591
Description: h52gif produced a segfault when a buffer overflow occurred because the data size was corrupted and became very large. This commit added a check on the data size against the buffer size to prevent the segfault. It also added error reporting to h52gif to display an error message instead of silently exiting when the failure occurred. Platforms tested: Linux/64 (jelly)
Diffstat (limited to 'release_docs/RELEASE.txt')
-rw-r--r--release_docs/RELEASE.txt12
1 files changed, 12 insertions, 0 deletions
diff --git a/release_docs/RELEASE.txt b/release_docs/RELEASE.txt
index ab601f5..85359cd 100644
--- a/release_docs/RELEASE.txt
+++ b/release_docs/RELEASE.txt
@@ -317,6 +317,18 @@ Bug Fixes since HDF5-1.10.5 release
Library
-------
+ - Fixed CVE-2018-17435
+
+ The tool h52gif produced a segfault when the size of an attribute
+ message was corrupted and caused a buffer overflow.
+
+ The problem was fixed by verifying the attribute message's size
+ against the buffer size before accessing the buffer. h52gif was
+ also fixed to display the failure instead of silently exiting
+ after the segfault was eliminated.
+
+ (BMR - 2020/6/19, HDFFV-10591)
+
- Improved peformance when creating a large number of small datasets by
retrieving default property values from the API context instead of doing
skip list searches.