Red Hat Bugzilla – Bug 1633860
CVE-2018-17237 hdf5: SIGFPE signal in H5D__chunk_set_info_real() of H5Dchunk.c
Last modified: 2018-10-18 20:13:32 EDT
A flaw was found in in the HDF HDF5 1.10.3 library. A SIGFPE signal is raised in the function H5D__chunk_set_info_real() of H5Dchunk.c during an attempted parse of a crafted HDF file, because of incorrect protection against division by zero. This issue is different from CVE-2018-11207. References: https://github.com/SegfaultMasters/covering360/blob/master/HDF5/README.md#divided-by-zero---h5d__chunk_set_info_real_div_by_zero
Created hdf5 tracking bugs for this issue: Affects: epel-all [bug 1633862] Affects: fedora-all [bug 1633861]