mirror/hdf5
2
0
Fork 0
mirror of https://github.com/HDFGroup/hdf5.git synced 2025-01-12 15:04:59 +08:00
Code Issues Packages Projects Releases Wiki Activity
99487d9e45
hdf5/hl
History
Egbert Eich 99487d9e45
H5IMget_image_info(): Make sure to not exceed local array size (#2227) 
Malformed hdf5 files may provide more dimensions than the array dim[] in
H5IMget_image_info() is able to hold. Check number of elements first by calling
H5Sget_simple_extent_dims() with NULL for both 'dims' and 'maxdims' arguments.
This will cause the function to return only the number of dimensions.
The fix addresse a stack overflow on write.

This fixes CVE-2018-17439 / HDFFV-10589 / Bug #2226.

Signed-off-by: Egbert Eich <eich@suse.com>

Signed-off-by: Egbert Eich <eich@suse.com>
2022-11-10 23:01:45 -06:00
..
c++ Update copyright headers (#2184) 2022-11-01 16:02:27 -05:00
examples Update copyright headers (#2184) 2022-11-01 16:02:27 -05:00
fortran Update copyright headers (#2184) 2022-11-01 16:02:27 -05:00
src H5IMget_image_info(): Make sure to not exceed local array size (#2227) 2022-11-10 23:01:45 -06:00
test Update copyright headers (#2184) 2022-11-01 16:02:27 -05:00
tools Update copyright headers (#2184) 2022-11-01 16:02:27 -05:00
CMakeLists.txt Update CMake code to 3.18 minimum version (#2080) 2022-09-02 17:31:29 -07:00
Makefile.am Update copyright headers (#2184) 2022-11-01 16:02:27 -05:00