CNNVD-202506-3683 Information

CNNVD ID

CNNVD-202506-3683

Related CVE

CVE-2025-6856

• CNNVD Published: 2025-06-29

Description (Chinese)

HDF5是HDF开源的一个库。 HDF5 1.14.6版本存在资源管理错误漏洞，该漏洞源于对文件src/H5FL.c中函数H5FL__reg_gc_list的错误操作导致释放后重用。

Description (English)

HDF5 is a repository of open sources of HDF. Version 1.14.6 of the HDF5 1.14.6 contains a resource management error loophole that results from an error in the document src/H5FL.c, function H5FL reg gc list, resulting in a release reuse.

Hazard Level

Critical

Vulnerability Type

资源管理错误

Affected Vendor

HDF

Published

2025-06-29

Last Modified

2026-02-24

References

https://github.com/HDFGroup/hdf5/issues/5574 https://github.com/user-attachments/files/20623417/hdf5_crash_6.txt https://vuldb.com/?ctiid.314328 https://vuldb.com/?id.314328 https://vuldb.com/?submit.602528