A buffer overflow in H5O__layout_encode in H5Olayout.c in the HDF HDF5 through 1.10.4 library allows attackers to cause a denial of service via a crafted HDF5 file. This issue was triggered while repacking an HDF5 file, aka "Invalid write of size 2."
An issue was discovered in the HDF HDF5 1.10.4 library. There is an out of bounds read in the function H5T_close_real in H5T.c.
An issue was discovered in the HDF HDF5 1.10.4 library. There is an out of bounds read in the function H5T_get_size in H5T.c.
Gentoo Security Padawan
@arches, please stabilize.
The bug has been referenced in the following commit(s):
Author: Tobias Klausmann <firstname.lastname@example.org>
AuthorDate: 2019-06-04 07:52:21 +0000
Commit: Tobias Klausmann <email@example.com>
CommitDate: 2019-06-04 07:52:36 +0000
sci-libs/hdf5-1.10.5-r0: alpha stable
Signed-off-by: Tobias Klausmann <firstname.lastname@example.org>
sci-libs/hdf5/hdf5-1.10.5.ebuild | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
Maintainer(s), please cleanup.
Security, please vote.
Incidental cleanup in commit df2c62a10c80eb73d5c12bf143ae1c2c2321d980.