Fix invalid memory access in H5O__ginfo_decode (#2663)

author: mattjala <124107509+mattjala@users.noreply.github.com> 2023-04-11 20:22:11 (GMT)
committer: GitHub <noreply@github.com> 2023-04-11 20:22:11 (GMT)
commit: 2eedc8e8f7c4d70829c6afd5a048fb38f50917c6 (patch)
tree: bc7100fe6691d073cb4044efb42ef81ccfc39f29 /release_docs
parent: bc8fa3a477e46d1fd3661666e4de79f455d41e19 (diff)
download: hdf5-2eedc8e8f7c4d70829c6afd5a048fb38f50917c6.zip
hdf5-2eedc8e8f7c4d70829c6afd5a048fb38f50917c6.tar.gz
hdf5-2eedc8e8f7c4d70829c6afd5a048fb38f50917c6.tar.bz2
1 files changed, 8 insertions, 0 deletions
diff --git a/release_docs/RELEASE.txt b/release_docs/RELEASE.txt
index b460141..94f3eb3 100644
--- a/release_docs/RELEASE.txt
+++ b/release_docs/RELEASE.txt
@@ -151,6 +151,14 @@ Bug Fixes since HDF5-1.13.3 release
 ===================================
     Library
     -------
+    - Fixed potential heap buffer overrun in group info header decoding from malformed file
+
+      H5O__ginfo_decode could sometimes read past allocated memory when parsing a group info message from the header of a malformed file.
+  
+      It now checks buffer size before each read to properly throw an error in these cases.
+  
+      (ML - 2023/4/6, #2601)
+      
     - Fixed potential buffer overrun issues in some object header decode routines
 
       Several checks were added to H5O__layout_decode and H5O__sdspace_decode to
author	mattjala <124107509+mattjala@users.noreply.github.com>	2023-04-11 20:22:11 (GMT)
committer	GitHub <noreply@github.com>	2023-04-11 20:22:11 (GMT)
commit	2eedc8e8f7c4d70829c6afd5a048fb38f50917c6 (patch)
tree	bc7100fe6691d073cb4044efb42ef81ccfc39f29 /release_docs
parent	bc8fa3a477e46d1fd3661666e4de79f455d41e19 (diff)
download	hdf5-2eedc8e8f7c4d70829c6afd5a048fb38f50917c6.zip hdf5-2eedc8e8f7c4d70829c6afd5a048fb38f50917c6.tar.gz hdf5-2eedc8e8f7c4d70829c6afd5a048fb38f50917c6.tar.bz2