SUSE Package Hub - SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2025-2324

Update Info

SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2025-2324

Security update for poppler

Type: security

Severity: important

Issued: 2025-07-16

Description:

This update for poppler fixes the following issues:

- CVE-2025-52886: Fixed an integer overflow that can lead to a use-after-free. (bsc#1245625)

References

CVE: CVE-2025-52886
Bugzilla: 1245625 VUL-0: CVE-2025-52886: poppler: use of 32-bit `std::atomic_int` for reference counting can lead to an integer overflow and trigger a use-after-free

Packages

poppler-24.03.0-150600.3.16.1

poppler-qt5-24.03.0-150600.3.16.1

poppler-qt6-24.03.0-150600.3.16.1