diff options
| author | bmribler <39579120+bmribler@users.noreply.github.com> | 2021-05-12 19:35:53 (GMT) |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2021-05-12 19:35:53 (GMT) |
| commit | 9fb2c24c2eb2454430701247a984780654ca0544 (patch) | |
| tree | 2927a320a7dcc7800b3470d178aa9dff3682e0f1 /release_docs | |
| parent | 78f0728d1b675e675f4dfb0112fc128535e10071 (diff) | |
| download | hdf5-9fb2c24c2eb2454430701247a984780654ca0544.zip hdf5-9fb2c24c2eb2454430701247a984780654ca0544.tar.gz hdf5-9fb2c24c2eb2454430701247a984780654ca0544.tar.bz2 | |
Bmr dev hdffv 11223 (#640)
* Fixed HDFFV-11223 (CVE-2018-14460)
Description
- Added checks against buffer size to prevent segfault, in case of data
corruption, for sdim->size and sdim->max.
- Renamed data files in an existing test to shorten their length
as agreed with other developers previously.
Platforms tested:
Linux/64 (jelly)
* Committing clang-format changes
* Updated for test files
* Updated for HDFFV-11223
Co-authored-by: github-actions <41898282+github-actions[bot]@users.noreply.github.com>
Diffstat (limited to 'release_docs')
| -rw-r--r-- | release_docs/RELEASE.txt | 13 |
1 files changed, 12 insertions, 1 deletions
diff --git a/release_docs/RELEASE.txt b/release_docs/RELEASE.txt index be8440f..9e99e66 100644 --- a/release_docs/RELEASE.txt +++ b/release_docs/RELEASE.txt @@ -823,7 +823,18 @@ Bug Fixes since HDF5-1.12.0 release =================================== Library ------- - - Fixed CVE-2018-17435 + - Fixed CVE-2018-14460 + + The tool h5repack produced a segfault when the rank in dataspace + message was corrupted, causing invalid read while decoding the + dimension sizes. + + The problem was fixed by ensuring that decoding the dimension sizes + and max values will not go beyong the end of the buffer. + + (BMR - 2021/05/12, HDFFV-11223) + + - Fixed CVE-2018-11206 The tool h5dump produced a segfault when the size of a fill value message was corrupted and caused a buffer overflow. |