Fix CVE-2025-2308

[christian-wojek]

A malformed file can cause the scale-offset filter to have too little input data causing a heap buffer overflow. Additional checks on the maximum buffer length are required during the decompression.

This PR fixes CVE-2025-2308.

Closes #5868.

---

Important

Fixes CVE-2025-2308 by adding buffer size checks in decompression functions to prevent heap buffer overflow in H5Zscaleoffset.c.

• Security Fix:
  • Fixes CVE-2025-2308 by adding buffer size checks in H5Z__scaleoffset_decompress_one_byte() and H5Z__scaleoffset_decompress_one_atomic() to prevent heap buffer overflow.
• Function Changes:
  • H5Z__scaleoffset_decompress_one_byte() now returns herr_t and checks if *j exceeds buf_size.
  • H5Z__scaleoffset_decompress_one_atomic() and H5Z__scaleoffset_decompress() updated to pass buf_size and handle buffer overflow.
• Misc:
  • Minor adjustments in H5Z__filter_scaleoffset() to accommodate new buffer size checks.

^{This description was created by for 0894715. You can customize this summary. It will automatically update as commits are pushed.}

[fortnern]

With this change trying to make the distinction between buf_size and buf_len is confusing. Could you rename buf_len to something more descriptive? Perhaps bits_to_fill? Unfortunately this whole file tends to use "len" to mean bits

[christian-wojek]

I renamed buf_len to bits_to_fill and dat_len to bits_to_copy to improve readability.