CVE-2025-52886
published 2025-07-02CVE-2025-52886: Poppler is a PDF rendering library. Versions prior to 25.06.0 use `std::atomic_int` for reference counting. Because `std::atomic_int` is only 32 bits, it is…
PriorityP429medium5.9CVSS 3.1
AVNACHPRNUINSUCNINAH
EPSS
0.37%
28.9th percentile
Poppler is a PDF rendering library. Versions prior to 25.06.0 use `std::atomic_int` for reference counting. Because `std::atomic_int` is only 32 bits, it is possible to overflow the reference count and trigger a use-after-free. Version 25.06.0 patches the issue.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | poppler | < poppler 25.03.0-5 (forky) | poppler 25.03.0-5 (forky) |
| freedesktop | poppler | < 25.06.0 | 25.06.0 |
| freedesktop | poppler | >= 0 < 25.03.0-5 | 25.03.0-5 |
| freedesktop | poppler | >= 0 < 25.03.0-5 | 25.03.0-5 |
| freedesktop | poppler | >= 0 < 0.41.0-0ubuntu1.16+esm7 | 0.41.0-0ubuntu1.16+esm7 |
| freedesktop | poppler | >= 0 < 0.62.0-2ubuntu2.14+esm7 | 0.62.0-2ubuntu2.14+esm7 |
| freedesktop | poppler | >= 0 < 0.86.1-0ubuntu1.7+esm1 | 0.86.1-0ubuntu1.7+esm1 |
| poppler | poppler | < 25.06.0 | 25.06.0 |
CVSS provenance
nvdv3.15.9MEDIUMCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
nvdv4.05.5MEDIUMCVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
osv6.5MEDIUM
vendor_ubuntu6.5MEDIUM
vendor_debian5.5MEDIUM
vendor_redhat5.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
poppler vulnerabilities
vendor_ubuntu·2025-08-06·CVSS 6.5
CVE-2025-52886 [MEDIUM] poppler vulnerabilities
Title: poppler vulnerabilities
Summary: Several security issues were fixed in poppler.
Jieyong Ma discovered that poppler incorrectly handled certain malformed
PDF files. A remote attacker could possibly use this issue to cause poppler
to crash, resulting in a denial of service. This issue only affected Ubuntu
16.04 LTS and Ubuntu 18.04 LTS. (CVE-2022-27337)
Kevin Backhouse discovered that poppler incorrectly handled documents with
a large number of annotations. If a user or automated system were tricked
into opening a specially crafted document, a remote attacker could use
this issue to cause poppler to consume resources, leading to a denial of
service, or possibly execute arbitrary code. (CVE-2025-52886)
Instructions: In general, a standard system update will make all the necessary c
Ubuntu
poppler vulnerability
vendor_ubuntu·2025-07-28
CVE-2025-52886 poppler vulnerability
Title: poppler vulnerability
Summary: poppler could be made to crash or run programs if it opened a specially
crafted file.
Kevin Backhouse discovered that poppler incorrectly handled documents with
a large number of annotations. If a user or automated system were tricked
into opening a specially crafted document, a remote attacker could use
this issue to cause poppler to consume resources, leading to a denial of
service, or possibly execute arbitrary code.
Instructions: In general, a standard system update will make all the necessary changes.
Red Hat
poppler: Poppler Use After Free Vulnerability
vendor_redhat·2025-07-02·CVSS 5.5
CVE-2025-52886 [MEDIUM] CWE-416 poppler: Poppler Use After Free Vulnerability
poppler: Poppler Use After Free Vulnerability
Poppler is a PDF rendering library. Versions prior to 25.06.0 use `std::atomic_int` for reference counting. Because `std::atomic_int` is only 32 bits, it is possible to overflow the reference count and trigger a use-after-free. Version 25.06.0 patches the issue.
A use-after-free vulnerability has been discovered in the PDF rendering library, stemming from a reference counting flaw. This issue allows an attacker, by providing specially crafted malicious input, to overflow a reference counter which subsequently leads to a use-after-free condition. While the exploitation of this vulnerability in practice requires a significant amount of time to achieve, it nonetheless presents a risk of memory corruption, potentially leading to unpredictable pro
Debian
CVE-2025-52886: poppler - Poppler is a PDF rendering library. Versions prior to 25.06.0 use `std::atomic_i...
vendor_debian·2025·CVSS 5.5
CVE-2025-52886 [MEDIUM] CVE-2025-52886: poppler - Poppler is a PDF rendering library. Versions prior to 25.06.0 use `std::atomic_i...
Poppler is a PDF rendering library. Versions prior to 25.06.0 use `std::atomic_int` for reference counting. Because `std::atomic_int` is only 32 bits, it is possible to overflow the reference count and trigger a use-after-free. Version 25.06.0 patches the issue.
Scope: local
bookworm: open
bullseye: open
forky: resolved (fixed in 25.03.0-5)
sid: resolved (fixed in 25.03.0-5)
trixie: resolved (fixed in 25.03.0-5)
OSV
poppler vulnerabilities
osv·2025-08-06·CVSS 6.5
CVE-2022-27337 [MEDIUM] poppler vulnerabilities
poppler vulnerabilities
Jieyong Ma discovered that poppler incorrectly handled certain malformed
PDF files. A remote attacker could possibly use this issue to cause poppler
to crash, resulting in a denial of service. This issue only affected Ubuntu
16.04 LTS and Ubuntu 18.04 LTS. (CVE-2022-27337)
Kevin Backhouse discovered that poppler incorrectly handled documents with
a large number of annotations. If a user or automated system were tricked
into opening a specially crafted document, a remote attacker could use
this issue to cause poppler to consume resources, leading to a denial of
service, or possibly execute arbitrary code. (CVE-2025-52886)
OSV
CVE-2025-52886: Poppler is a PDF rendering library
osv·2025-07-02·CVSS 5.5
CVE-2025-52886 [MEDIUM] CVE-2025-52886: Poppler is a PDF rendering library
Poppler is a PDF rendering library. Versions prior to 25.06.0 use `std::atomic_int` for reference counting. Because `std::atomic_int` is only 32 bits, it is possible to overflow the reference count and trigger a use-after-free. Version 25.06.0 patches the issue.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://gitlab.freedesktop.org/poppler/poppler/-/commit/04bd91684ed41d67ae0f10cde0660e4ed74ac203https://gitlab.freedesktop.org/poppler/poppler/-/commit/ac36affcc8486de38e8905a8d6547a3464ff46e5https://gitlab.freedesktop.org/poppler/poppler/-/issues/1581https://gitlab.freedesktop.org/poppler/poppler/-/merge_requests/1828https://securitylab.github.com/advisories/GHSL-2025-054_poppler/http://www.openwall.com/lists/oss-security/2025/07/11/5http://www.openwall.com/lists/oss-security/2025/07/12/1
2025-07-02
Published