Summary: | <sci-libs/hdf5-1.8.18: H5Z_NBIT heap buffer overflow (CVE-2016-4331) | ||||||
---|---|---|---|---|---|---|---|
Product: | Gentoo Security | Reporter: | Ian Zimmerman <nobrowser> | ||||
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> | ||||
Status: | RESOLVED FIXED | ||||||
Severity: | normal | CC: | cwprogram, sci | ||||
Priority: | Normal | ||||||
Version: | unspecified | ||||||
Hardware: | All | ||||||
OS: | Linux | ||||||
Whiteboard: | B2 [glsa cve] | ||||||
Package list: | Runtime testing required: | --- | |||||
Bug Depends on: | 601404 | ||||||
Bug Blocks: | |||||||
Attachments: |
|
Description
Ian Zimmerman
2016-12-01 23:59:38 UTC
CVE-2016-4331 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-4331): When decoding data out of a dataset encoded with the H5Z_NBIT decoding, the HDF5 1.8.16 library will fail to ensure that the precision is within the bounds of the size leading to arbitrary code execution. Created attachment 454952 [details, diff] hdf5-1.8.17-CVE-2016-4331.patch * This bug affects 1.8.17 as well, and is release fixed with 1.8.18 which is not in the tree * The commits in the URL are incomplete fixes as they reference functions not defined in the patch * Attached is a patch generated by a diff of the file in question between 1.8.17 and 1.8.18. * The code differences between 1.8.17 and 1.8.14 (current stable) are enough to where I can't reliably backport * With that in mind this fix should be combined with bug #601420 and 1.8.17 stablereq'ed This issue was resolved and addressed in GLSA 201701-13 at https://security.gentoo.org/glsa/201701-13 by GLSA coordinator Thomas Deutschmann (whissi). |