A flaw was found in the HDF HDF5 1.10.2 library. A division by zero was discovered in H5D__chunk_init in H5Dchunk.c. It could allow a remote denial of service attack. References: https://github.com/Twi1ight/fuzzing-pocs/tree/master/hdf5
Created hdf5 tracking bugs for this issue: Affects: epel-all [bug 1579947] Affects: fedora-all [bug 1579949]
Created attachment 1439607 [details] a plausible fix