diff options
author | Binh-Minh Ribler <bmribler@hdfgroup.org> | 2020-07-22 21:13:26 (GMT) |
---|---|---|
committer | Binh-Minh Ribler <bmribler@hdfgroup.org> | 2020-07-22 21:13:26 (GMT) |
commit | 88e458ac435340f327f252b82ad9b6c1c1f4f618 (patch) | |
tree | 814e9c406e62246e0117602083eeb091f382078a /src/H5Dpkg.h | |
parent | 9d3ea366d4bf3278e8260f4d5cdcc88cb4b61c56 (diff) | |
download | hdf5-88e458ac435340f327f252b82ad9b6c1c1f4f618.zip hdf5-88e458ac435340f327f252b82ad9b6c1c1f4f618.tar.gz hdf5-88e458ac435340f327f252b82ad9b6c1c1f4f618.tar.bz2 |
Fix HDFFV-11120 and HDFFV-11121 (CVE-2018-13870 and CVE-2018-13869)
Description:
When a buffer overflow occurred because a name length was corrupted
and became very large, h5dump produced a segfault on one file and a
memcpy parameter overlap on another file. This commit added checks
that detect a read pass the end of the buffer to prevent these error
conditions.
Platforms tested:
Linux/64 (jelly)
SunOS 5.11 (emu)
Diffstat (limited to 'src/H5Dpkg.h')
0 files changed, 0 insertions, 0 deletions