cve 2025 2310

A heap‑overflow in the HDF5 library (H5MM_strndup / metadata attribute decoder), tracked as CVE‑2025‑2310 and tied to HDF5 v1.14.6, has been publicly disclosed and is known to produce reproducible crashes — and Microsoft’s initial public mapping names Azure Linux as a Microsoft product that...