HDF5 users and maintainers should treat a newly disclosed flaw — CVE-2025-7068 — as a real but limited operational risk: a memory‑leak in the HDF5 metadata/cache code that affects HDF5 1.14.6 and can be triggered by local operations that exercise the library’s metadata discard paths. Background...
