diff options
| author | Binh-Minh Ribler <bmribler@hdfgroup.org> | 2019-03-24 19:36:32 (GMT) |
|---|---|---|
| committer | Binh-Minh Ribler <bmribler@hdfgroup.org> | 2019-03-24 19:36:32 (GMT) |
| commit | 6e9b7ced76c921a0d82d1712d58bc5505f8fd811 (patch) | |
| tree | 195f89b5d727f9632af8b60bddee5736c19ebb0c /src | |
| parent | cac673138c94cdbd5faa227fe5a9867941753c93 (diff) | |
| download | hdf5-6e9b7ced76c921a0d82d1712d58bc5505f8fd811.zip hdf5-6e9b7ced76c921a0d82d1712d58bc5505f8fd811.tar.gz hdf5-6e9b7ced76c921a0d82d1712d58bc5505f8fd811.tar.bz2 | |
Fixed HDFFV-10210 and HDFFV-10587
Description:
- Added parameter validation (HDFFV-10210)
- Added detection of division by zero (HDFFV-10587 - CVE-2018-17438)
- Fixed typos in various tests
Platforms tested:
Linux/64 (jelly)
Linux/64 (platypus)
Darwin (osx1011test)
Diffstat (limited to 'src')
| -rw-r--r-- | src/H5Dselect.c | 2 | ||||
| -rw-r--r-- | src/H5I.c | 3 |
2 files changed, 5 insertions, 0 deletions
diff --git a/src/H5Dselect.c b/src/H5Dselect.c index 7e86b9d..7c02c05 100644 --- a/src/H5Dselect.c +++ b/src/H5Dselect.c @@ -220,6 +220,8 @@ H5D__select_io(const H5D_io_info_t *io_info, size_t elmt_size, /* Decrement number of elements left to process */ HDassert(((size_t)tmp_file_len % elmt_size) == 0); + if(elmt_size == 0) + HGOTO_ERROR(H5E_DATASPACE, H5E_BADVALUE, FAIL, "Resulted in division by zero") nelmts -= ((size_t)tmp_file_len / elmt_size); } /* end while */ } /* end else */ @@ -406,6 +406,9 @@ H5Itype_exists(H5I_type_t type) FUNC_ENTER_API(FAIL) H5TRACE1("t", "It", type); + if(H5I_IS_LIB_TYPE(type)) + HGOTO_ERROR(H5E_ATOM, H5E_BADGROUP, FAIL, "cannot call public function on library type") + if(type <= H5I_BADID || type >= H5I_next_type) HGOTO_ERROR(H5E_ARGS, H5E_BADRANGE, FAIL, "invalid type number") |