summaryrefslogtreecommitdiffstats
path: root/release_docs
diff options
context:
space:
mode:
authorjhendersonHDF <jhenderson@hdfgroup.org>2023-04-11 19:47:51 (GMT)
committerGitHub <noreply@github.com>2023-04-11 19:47:51 (GMT)
commitbc8fa3a477e46d1fd3661666e4de79f455d41e19 (patch)
tree02d5d002ac562c328a112505543c29386775f248 /release_docs
parent2e7d8f7ed52aa58a245e2ce2509a94f5a8162506 (diff)
downloadhdf5-bc8fa3a477e46d1fd3661666e4de79f455d41e19.zip
hdf5-bc8fa3a477e46d1fd3661666e4de79f455d41e19.tar.gz
hdf5-bc8fa3a477e46d1fd3661666e4de79f455d41e19.tar.bz2
Add buffer overrun checks to H5O__layout_decode and H5O__sdspace_decode (#2679)
Co-authored-by: Larry Knox <lrknox@hdfgroup.org>
Diffstat (limited to 'release_docs')
-rw-r--r--release_docs/RELEASE.txt8
1 files changed, 8 insertions, 0 deletions
diff --git a/release_docs/RELEASE.txt b/release_docs/RELEASE.txt
index f00ce32..b460141 100644
--- a/release_docs/RELEASE.txt
+++ b/release_docs/RELEASE.txt
@@ -151,6 +151,14 @@ Bug Fixes since HDF5-1.13.3 release
===================================
Library
-------
+ - Fixed potential buffer overrun issues in some object header decode routines
+
+ Several checks were added to H5O__layout_decode and H5O__sdspace_decode to
+ ensure that memory buffers don't get overrun when decoding buffers read from
+ a (possibly corrupted) HDF5 file.
+
+ (JTH - 2023/04/05)
+
- Fixed a heap buffer overflow that occurs when reading from
a dataset with a compact layout within a malformed HDF5 file