CVE-2025-52886

Poppler is a PDF rendering library. Versions prior to 25.06.0 use `std::atomic_int` for reference counting. Because `std::atomic_int` is only 32 bits, it is possible to overflow the reference count and trigger a use-after-free. Version 25.06.0 patches the issue.
CVSS

No CVSS.

Configurations

No configuration.

History

03 Jul 2025, 15:13

Type Values Removed Values Added
Summary
  • (es) Poppler es una librería de renderizado de PDF. Las versiones anteriores a la 25.06.0 utilizan `std::atomic_int` para el recuento de referencias. Dado que `std::atomic_int` solo tiene 32 bits, es posible que se sobrepase el recuento de referencias y se active un proceso de use-after-free. La versión 25.06.0 corrige este problema.

02 Jul 2025, 16:15

Type Values Removed Values Added
New CVE

Information

Published : 2025-07-02 16:15

Updated : 2025-07-03 15:13


NVD link : CVE-2025-52886

Mitre link : CVE-2025-52886

CVE.ORG link : CVE-2025-52886


JSON object : View

Products Affected

No product.

CWE
CWE-416

Use After Free