CVE-2025-52886

Name
CVE-2025-52886
Description
Poppler is a PDF rendering library. Versions prior to 25.06.0 use `std::atomic_int` for reference counting. Because `std::atomic_int` is only 32 bits, it is possible to overflow the reference count and trigger a use-after-free. Version 25.06.0 patches the issue.
NVD Severity
medium
Other trackers
CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia
Mailing lists
oss-security, full-disclosure, bugtraq
Exploits
Exploit DB, Metasploit
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
MISC https://gitlab.freedesktop.org/poppler/poppler/-/commit/04bd91684ed41d67ae0f10cde0660e4ed74ac203
MISC https://gitlab.freedesktop.org/poppler/poppler/-/commit/ac36affcc8486de38e8905a8d6547a3464ff46e5
MISC https://gitlab.freedesktop.org/poppler/poppler/-/issues/1581
MISC https://gitlab.freedesktop.org/poppler/poppler/-/merge_requests/1828
CONFIRM https://securitylab.github.com/advisories/GHSL-2025-054_poppler/

Match rules

CPE URI Source package Min version Max version
poppler >= 0 < 25.06.0

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
poppler edge-main 24.02.0-r2 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
poppler edge-main 25.01.0-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
poppler edge-main 25.02.0-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
poppler edge-main 25.04.0-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable