Mageia: Poppler Important Use-After-Free Issue MGASA-2025-0214

mageia

July 25, 2025

poppler uses std::atomic_int for reference counting

Summary

poppler uses std::atomic_int for reference counting. Because it is only 32 bits, it is possible to overflow the reference count and trigger a use-after-free.

References

- https://bugs.mageia.org/show_bug.cgi?id=34485

- https://www.openwall.com/lists/oss-security/2025/07/11/5

- https://www.cve.org/CVERecord?id=CVE-2025-52886

Topics Covered

security advisory important poppler use-after-free Mageia reference overflow

Resolution

SRPMS

- 9/core/poppler-23.02.0-1.7.mga9

Severity

important

Lowest

Low

Medium

High

Critical

Publication date: 25 Jul 2025

URL: https://advisories.mageia.org/MGASA-2025-0214.html

Type: security

CVE: CVE-2025-52886

Topics Covered

security advisory important poppler use-after-free Mageia reference overflow

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Mageia: Poppler Important Use-After-Free Issue MGASA-2025-0214

Summary

References

Topics Covered

Resolution

SRPMS

Topics Covered

Get the latest News and Insights

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Mageia: Poppler Important Use-After-Free Issue MGASA-2025-0214

Summary

References

Topics Covered

Resolution

SRPMS

Topics Covered

Get the latest News and Insights

Related Articles

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!