SUSE Package Hub - SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2025-2791

Update Info

SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2025-2791

Security update for poppler

Type: security

Severity: important

Issued: 2025-08-13

Description:

This update for poppler fixes the following issues:

- CVE-2025-50420: Fixed Denial of Service in pdfseparate utility (bsc#1247590)

References

CVE: CVE-2025-50420
Bugzilla: 1247590 VUL-0: CVE-2025-50420: poppler,poppler-qt: An issue in the pdfseparate utility of freedesktop poppler v25.04.0 allows attackers to cause an infinite recursion via supplying a crafted PDF file. This can lead to a Denial of Service (DoS).

Packages

poppler-24.03.0-150600.3.19.1

poppler-qt5-24.03.0-150600.3.19.1

poppler-qt6-24.03.0-150600.3.19.1