Fix out of bounds in `hdf5/src/H5Fint.c:2859` (#2691)

author: Kobrin Eli <kobrineli@ispras.ru> 2023-04-13 21:37:10 (GMT)
committer: GitHub <noreply@github.com> 2023-04-13 21:37:10 (GMT)
commit: 10d4a6d0941240702b5e8d77d57184a88bb69e6c (patch)
tree: a166f5fa73f5d993b4a87c492f745774f912de34 /release_docs
parent: 65eff22348634144cd5a6e77159c27eb895d54b4 (diff)
download: hdf5-10d4a6d0941240702b5e8d77d57184a88bb69e6c.zip
hdf5-10d4a6d0941240702b5e8d77d57184a88bb69e6c.tar.gz
hdf5-10d4a6d0941240702b5e8d77d57184a88bb69e6c.tar.bz2
1 files changed, 12 insertions, 0 deletions
diff --git a/release_docs/RELEASE.txt b/release_docs/RELEASE.txt
index 2dcb057..63f5a36 100644
--- a/release_docs/RELEASE.txt
+++ b/release_docs/RELEASE.txt
@@ -291,6 +291,18 @@ Bug Fixes since HDF5-1.14.0 release
 
       (JTH - 2023/02/16, GH #2433)
 
+    - Fixed buffer overflow error in image decoding function.
+
+      The error occurred in the function for decoding address from the specified
+      buffer, which is called many times from the function responsible for image
+      decoding. The length of the buffer is known in the image decoding function,
+      but no checks are produced, so the buffer overflow can occur in many places,
+      including callee functions for address decoding. 
+
+      The error was fixed by inserting corresponding checks for buffer overflow.
+
+      (KE - 2023/02/07 GH #2432)
+
 
     Java Library
     ------------
author	Kobrin Eli <kobrineli@ispras.ru>	2023-04-13 21:37:10 (GMT)
committer	GitHub <noreply@github.com>	2023-04-13 21:37:10 (GMT)
commit	10d4a6d0941240702b5e8d77d57184a88bb69e6c (patch)
tree	a166f5fa73f5d993b4a87c492f745774f912de34 /release_docs
parent	65eff22348634144cd5a6e77159c27eb895d54b4 (diff)
download	hdf5-10d4a6d0941240702b5e8d77d57184a88bb69e6c.zip hdf5-10d4a6d0941240702b5e8d77d57184a88bb69e6c.tar.gz hdf5-10d4a6d0941240702b5e8d77d57184a88bb69e6c.tar.bz2