CVE-2025-52886 — Use After Free in Poppler

CWE-416 — Use After Free8 documents6 sources

Severity

5.5MEDIUMNVD

EPSS

0.1%

top 74.42%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Poppler Freedesktop Poppler

Timeline

PublishedJul 2

Latest updateAug 6

Description

Poppler is a PDF rendering library. Versions prior to 25.06.0 use `std::atomic_int` for reference counting. Because `std::atomic_int` is only 32 bits, it is possible to overflow the reference count and trigger a use-after-free. Version 25.06.0 patches the issue.

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Affected Packages3 packages

▶NVDfreedesktop/poppler< 25.06.0

▶Debianfreedesktop/poppler< 25.03.0-5+1

▶CVEListV5poppler/poppler< 25.06.0

Patches

Patch: gitlab.freedesktop.org ↗Patch: gitlab.freedesktop.org ↗

🔴Vulnerability Details

OSV

poppler vulnerabilities↗2025-08-06

▶

CVEList

Poppler Use After Free Vulnerability↗2025-07-02

▶

OSV

CVE-2025-52886: Poppler is a PDF rendering library↗2025-07-02

▶

📋Vendor Advisories

Ubuntu

poppler vulnerabilities↗2025-08-06

▶

Ubuntu

poppler vulnerability↗2025-07-28

▶

Red Hat

poppler: Poppler Use After Free Vulnerability↗2025-07-02

▶

Debian

CVE-2025-52886: poppler - Poppler is a PDF rendering library. Versions prior to 25.06.0 use `std::atomic_i...↗2025

▶