Freedesktop: >> Poppler >> 25.04.0 Security Vulnerabilities
An issue in the pdfseparate utility of freedesktop poppler v25.04.0 allows attackers to cause an infinite recursion via supplying a crafted PDF file. This can lead to a Denial of Service (DoS).
CVSS Score
6.5
EPSS Score
0.002
Published
2025-08-04
Poppler is a PDF rendering library. Versions prior to 25.06.0 use `std::atomic_int` for reference counting. Because `std::atomic_int` is only 32 bits, it is possible to overflow the reference count and trigger a use-after-free. Version 25.06.0 patches the issue.
CVSS Score
5.9
EPSS Score
0.001
Published
2025-07-02