mirror/hdf5
2
0
Fork 0
mirror of https://github.com/HDFGroup/hdf5.git synced 2025-03-01 16:28:09 +08:00
Code Issues Packages Projects Releases Wiki Activity
bc3d878add
hdf5/tools
History
Binh-Minh Ribler bc3d878add Fixed HDFFV-10586 and HDFFV-10588 
Description:
    HDFFV-10586 CVE-2018-17434  Divide by zero inh5repack_filters
        Added a check for zero value
    HDFFV-10588 CVE-2018-17437  Memory leak in H5O_dtype_decode_helper
        This is actually an Invalid read issue.  It was found that the
        attribute name length in an attribute message was corrupted,
        which caused the buffer pointer to be advanced too far and later
        caused an invalid read.
        Added a check to detect attribute name and its length mismatch.  The
        fix is not perfect, but it'll reduce the chance of this issue when a
        name length is corrupted or the attribute name is corrupted.
Platforms tested:
    Linux/64 (jelly)
    Linux/64 (platypus)
    Darwin (osx1010test)
2019-01-15 11:48:31 -06:00
..
lib Fixed typo 2019-01-07 20:46:55 -06:00
src Fixed HDFFV-10586 and HDFFV-10588 2019-01-15 11:48:31 -06:00
test Fix runtest case for data to stdout in tool 2018-12-31 12:38:09 -06:00
testfiles HDFFV-10632 - split stderr and stdout in cmake 2018-12-03 09:35:59 -06:00
CMakeLists.txt Cleanup and add intermediate dir for java 2018-08-31 13:29:36 -05:00
COPYING Merge pull request #426 in HDFFV/hdf5 from ~LRKNOX/hdf5_lrk:hdf5_1_10 to hdf5_1_10 2017-04-25 16:05:36 -05:00
Makefile.am Merge pull request #426 in HDFFV/hdf5 from ~LRKNOX/hdf5_lrk:hdf5_1_10 to hdf5_1_10 2017-04-25 16:05:36 -05:00