CVE-2025-52886

CVE-2025-52886

Name

CVE-2025-52886

Description

Poppler is a PDF rendering library. Versions prior to 25.06.0 use `std::atomic_int` for reference counting. Because `std::atomic_int` is only 32 bits, it is possible to overflow the reference count and trigger a use-after-free. Version 25.06.0 patches the issue.

NVD Severity

medium

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
MISC	https://gitlab.freedesktop.org/poppler/poppler/-/commit/04bd91684ed41d67ae0f10cde0660e4ed74ac203
MISC	https://gitlab.freedesktop.org/poppler/poppler/-/commit/ac36affcc8486de38e8905a8d6547a3464ff46e5
MISC	https://gitlab.freedesktop.org/poppler/poppler/-/issues/1581
MISC	https://gitlab.freedesktop.org/poppler/poppler/-/merge_requests/1828
CONFIRM	https://securitylab.github.com/advisories/GHSL-2025-054_poppler/
af854a3a-2127-422b-91ae-364da2661108	http://www.openwall.com/lists/oss-security/2025/07/11/5
af854a3a-2127-422b-91ae-364da2661108	http://www.openwall.com/lists/oss-security/2025/07/12/1

Type

URI

MISC

https://gitlab.freedesktop.org/poppler/poppler/-/commit/04bd91684ed41d67ae0f10cde0660e4ed74ac203

MISC

https://gitlab.freedesktop.org/poppler/poppler/-/commit/ac36affcc8486de38e8905a8d6547a3464ff46e5

MISC

https://gitlab.freedesktop.org/poppler/poppler/-/issues/1581

MISC

https://gitlab.freedesktop.org/poppler/poppler/-/merge_requests/1828

CONFIRM

https://securitylab.github.com/advisories/GHSL-2025-054_poppler/

af854a3a-2127-422b-91ae-364da2661108

http://www.openwall.com/lists/oss-security/2025/07/11/5

af854a3a-2127-422b-91ae-364da2661108

http://www.openwall.com/lists/oss-security/2025/07/12/1

CPE URI	Source package	Min version	Max version
	poppler	>= 0	< 25.06.0

CPE URI

Source package

Min version

Max version

poppler

>= 0

< 25.06.0

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
poppler	edge-main	25.04.0-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
poppler	edge-main	25.02.0-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
poppler	edge-main	25.01.0-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
poppler	edge-main	24.02.0-r2	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
poppler	edge-main	0.80.0-r0	None	possibly vulnerable
poppler	edge-main	0.76.0-r0	None	possibly vulnerable
poppler	edge-main	0	None	possibly vulnerable
poppler	3.22-main	25.04.0-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
poppler	3.22-main	24.02.0-r2	None	possibly vulnerable
poppler	3.22-main	0.80.0-r0	None	possibly vulnerable
poppler	3.22-main	0.76.0-r0	None	possibly vulnerable
poppler	3.22-main	0	None	possibly vulnerable
poppler	3.21-main	24.02.0-r2	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
poppler	3.21-main	0.80.0-r0	None	possibly vulnerable
poppler	3.21-main	0.76.0-r0	None	possibly vulnerable
poppler	3.21-main	0	None	possibly vulnerable
poppler	3.20-main	24.02.0-r2	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
poppler	3.20-main	0.80.0-r0	None	possibly vulnerable
poppler	3.20-main	0.76.0-r0	None	possibly vulnerable
poppler	3.20-main	0	None	possibly vulnerable
poppler	3.19-main	23.10.0-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
poppler	3.19-main	0.80.0-r0	None	possibly vulnerable
poppler	3.19-main	0.76.0-r0	None	possibly vulnerable
poppler	3.19-main	0	None	possibly vulnerable

Source package

Branch

Version

Maintainer

Status

References

Match rules

Vulnerable and fixed packages