CVE-2025-50422 — Reachable Assertion in Cairo
Severity
2.9LOWNVD
EPSS
0.0%
top 92.69%
CISA KEV
Not in KEV
Exploit
No known exploits
Timeline
PublishedAug 4
Latest updateAug 12
Description
Cairo through 1.18.4, as used in Poppler through 25.08.0, has an "unscaled->face == NULL" assertion failure for _cairo_ft_unscaled_font_fini in cairo-ft-font.c.
CVSS vector
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:LExploitability: 1.4 | Impact: 1.4
Affected Packages4 packages
🔴Vulnerability Details
2📋Vendor Advisories
3Microsoft▶
Cairo through 1.18.4, as used in Poppler through 25.08.0, has an "unscaled->face == NULL" assertion failure for _cairo_ft_unscaled_font_fini in cairo-ft-font.c.↗2025-08-12
Debian▶
CVE-2025-50422: cairo - Cairo through 1.18.4, as used in Poppler through 25.08.0, has an "unscaled->face...↗2025