diff options
author | Binh-Minh Ribler <bmribler@hdfgroup.org> | 2020-10-26 13:36:27 (GMT) |
---|---|---|
committer | Binh-Minh Ribler <bmribler@hdfgroup.org> | 2020-10-26 13:36:27 (GMT) |
commit | 7bfa10018ecf5efe54b4a699bb684d31468c8b42 (patch) | |
tree | 46ae17c8595a0f1ba500b48ec760eac0e6f78bb5 /src/H5F.c | |
parent | 58d8eae182ac764ef15c3ed040a12a96aa4d16f0 (diff) | |
download | hdf5-7bfa10018ecf5efe54b4a699bb684d31468c8b42.zip hdf5-7bfa10018ecf5efe54b4a699bb684d31468c8b42.tar.gz hdf5-7bfa10018ecf5efe54b4a699bb684d31468c8b42.tar.bz2 |
Fix HDFFV-10590
Description
This is to fix the CVE issue CVE-2018-17432.
h5repack produced a segfault on a corrupted file. This fix modified the
dataspace encode and decode functions per Quincey's suggestion to prevent
the segfault. h5repack only failed for the corrupted file now.
Platforms tested:
Linux/64 (jelly)
Diffstat (limited to 'src/H5F.c')
-rw-r--r-- | src/H5F.c | 6 |
1 files changed, 4 insertions, 2 deletions
@@ -1164,7 +1164,8 @@ H5Fget_mdc_size(hid_t file_id, size_t *max_size_ptr, size_t *min_clean_size_ptr, herr_t ret_value = SUCCEED; /* Return value */ FUNC_ENTER_API(FAIL) - H5TRACE5("e", "i*z*z*z*Is", file_id, max_size_ptr, min_clean_size_ptr, cur_size_ptr, cur_num_entries_ptr); + H5TRACE5("e", "i*z*z*z*Is", file_id, max_size_ptr, min_clean_size_ptr, + cur_size_ptr, cur_num_entries_ptr); /* Check args */ if (NULL == (vol_obj = (H5VL_object_t *)H5I_object_verify(file_id, H5I_FILE))) @@ -1697,7 +1698,8 @@ H5Fget_page_buffering_stats(hid_t file_id, unsigned accesses[2], unsigned hits[2 herr_t ret_value = SUCCEED; /* Return value */ FUNC_ENTER_API(FAIL) - H5TRACE6("e", "i*Iu*Iu*Iu*Iu*Iu", file_id, accesses, hits, misses, evictions, bypasses); + H5TRACE6("e", "i*Iu*Iu*Iu*Iu*Iu", file_id, accesses, hits, misses, evictions, + bypasses); /* Check args */ if (NULL == (vol_obj = (H5VL_object_t *)H5I_object_verify(file_id, H5I_FILE))) |