cve 2025 2914

CVE-2025-2914 is a heap-based buffer overflow vulnerability in the HDF5 library's free-space serialization code. It affects HDF5 v1.14.6 and earlier versions. The bug can be triggered when processing crafted free-space section entries, leading to an out-of-bounds write that may crash applications or potentially enable code execution under favorable conditions. Public disclosure and proof-of-concept material are available. This tag covers discussions on WindowsForum.com about the vulnerability, its impact, and mitigation strategies for systems using HDF5.