diff options
| author | Binh-Minh Ribler <bmribler@hdfgroup.org> | 2020-07-29 00:08:19 (GMT) |
|---|---|---|
| committer | Binh-Minh Ribler <bmribler@hdfgroup.org> | 2020-07-29 00:08:19 (GMT) |
| commit | cf4e78b3c9d1f1ed6687b24bbd738a63b9812a9e (patch) | |
| tree | f49ec5ebfc617029883542356cdfcc5f571b4485 /release_docs | |
| parent | b201a78b33bd572f401c7d1693d06af0103e1a96 (diff) | |
| parent | 707e30c6be1954c0027374124207e46caae68cbc (diff) | |
| download | hdf5-cf4e78b3c9d1f1ed6687b24bbd738a63b9812a9e.zip hdf5-cf4e78b3c9d1f1ed6687b24bbd738a63b9812a9e.tar.gz hdf5-cf4e78b3c9d1f1ed6687b24bbd738a63b9812a9e.tar.bz2 | |
Merge pull request #2711 in HDFFV/hdf5 from bmr-HDFFV-11120 to develop
Fix HDFFV-11120 and HDFFV-11121 (CVE-2018-13870 and CVE-2018-13869)
* commit '707e30c6be1954c0027374124207e46caae68cbc':
Fixed typos in error messages.
Fix HDFFV-11120 and HDFFV-11121 (CVE-2018-13870 and CVE-2018-13869)
Diffstat (limited to 'release_docs')
| -rw-r--r-- | release_docs/RELEASE.txt | 11 |
1 files changed, 11 insertions, 0 deletions
diff --git a/release_docs/RELEASE.txt b/release_docs/RELEASE.txt index 9972288..b9641d1 100644 --- a/release_docs/RELEASE.txt +++ b/release_docs/RELEASE.txt @@ -656,6 +656,17 @@ Bug Fixes since HDF5-1.10.3 release Library ------- + - Fixed issues CVE-2018-13870 and CVE-2018-13869 + + When a buffer overflow occurred because a name length was corrupted + and became very large, h5dump crashed on memory access violation. + + A check for reading pass the end of the buffer was added to multiple + locations to prevent the crashes and h5dump now simply fails with an + error message when this error condition occurs. + + (BMR - 2020/7/22, HDFFV-11120 and HDFFV-11121) + - Fixed the segmentation fault when reading attributes with multiple threads It was reported that the reading of attributes with variable length string |