[Git][security-tracker-team/security-tracker][master] CVE-2018-17237/hdf5: add commit link

Fri Apr 12 08:28:49 BST 2019


Hugo Lefeuvre pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b21c0345 by Hugo Lefeuvre at 2019-04-12T07:26:58Z
CVE-2018-17237/hdf5: add commit link

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -35278,8 +35278,11 @@ CVE-2018-17239
 CVE-2018-17238
 	RESERVED
 CVE-2018-17237 (A SIGFPE signal is raised in the function H5D__chunk_set_info_real() o ...)
-	- hdf5 <undetermined>
+	- hdf5 <unfixed>
 	NOTE: https://github.com/SegfaultMasters/covering360/blob/master/HDF5/README.md#divided-by-zero---h5d__chunk_set_info_real_div_by_zero
+	NOTE: https://jira.hdfgroup.org/browse/HDFFV-10571 (not public)
+	NOTE: does not appear in 1.10.5 release notes, but fixed in
+	NOTE: https://bitbucket.hdfgroup.org/projects/HDFFV/repos/hdf5/commits/4e31361dad4add06792b652dbe5b97e501f9031d
 CVE-2018-17236 (The function MP4Free() in mp4property.cpp in libmp4v2 2.1.0 internally ...)
 	- mp4v2 <removed> (bug #909277)
 	[stretch] - mp4v2 <no-dsa> (Minor issue)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b21c03453ceb7e44bb3c7319a4239e04c682bc0b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b21c03453ceb7e44bb3c7319a4239e04c682bc0b
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190412/3bba9202/attachment.html>
