vulnerability
Ubuntu: USN-7858-1 (CVE-2025-52885): poppler vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 6 | (AV:L/AC:M/Au:N/C:P/I:P/A:C) | Oct 10, 2025 | Nov 7, 2025 | Dec 17, 2025 |
Severity
6
CVSS
(AV:L/AC:M/Au:N/C:P/I:P/A:C)
Published
Oct 10, 2025
Added
Nov 7, 2025
Modified
Dec 17, 2025
Description
It was discovered that poppler incorrectly handled certain PDF files.
An attacker could possibly use this issue to cause a crash.
Solutions
ubuntu-pro-upgrade-libpoppler118ubuntu-pro-upgrade-libpoppler134ubuntu-pro-upgrade-libpoppler147ubuntu-pro-upgrade-libpoppler97ubuntu-pro-upgrade-poppler-utils
References
- CVE-2025-52885
- https://attackerkb.com/topics/CVE-2025-52885
- CWE-416
- UBUNTU-USN-7858-1
- URL-https://gitlab.freedesktop.org/poppler/poppler/-/merge_requests/1884
- URL-https://gitlab.freedesktop.org/poppler/poppler/-/merge_requests/1884#note_3114334
- URL-https://securitylab.github.com/advisories/GHSL-2025-042_poppler/
- URL-https://ubuntu.com/security/notices/USN-7858-1
- URL-https://www.cve.org/CVERecord?id=CVE-2025-52885
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.