SUSE-SU-2025:02356-1

UNKNOWN

Security update for poppler

Published Jul 17, 2025

Modified 7 months ago

Fix available

Details

This update for poppler fixes the following issues:

CVE-2025-52886: Fixed an integer overflow that can lead to a use-after-free. (bsc#1245625)

Affected Packages

libpoppler-cpp0

SUSE Enterprise Storage 7.1SUSE Linux Enterprise High Performance Computing 15 SP3-LTSSSUSE Linux Enterprise Server 15 SP3-LTSSSUSE Linux Enterprise Server for SAP Applications 15 SP3

Fixed in:

0.79.0-150200.3.41.1

libpoppler-devel

SUSE Enterprise Storage 7.1SUSE Linux Enterprise High Performance Computing 15 SP3-LTSSSUSE Linux Enterprise Server 15 SP3-LTSSSUSE Linux Enterprise Server for SAP Applications 15 SP3

Fixed in:

0.79.0-150200.3.41.1

libpoppler-glib-devel

SUSE Enterprise Storage 7.1SUSE Linux Enterprise High Performance Computing 15 SP3-LTSSSUSE Linux Enterprise Server 15 SP3-LTSSSUSE Linux Enterprise Server for SAP Applications 15 SP3

Fixed in:

0.79.0-150200.3.41.1

libpoppler-glib8

SUSE Enterprise Storage 7.1SUSE Linux Enterprise High Performance Computing 15 SP3-LTSSSUSE Linux Enterprise Server 15 SP3-LTSSSUSE Linux Enterprise Server for SAP Applications 15 SP3

Fixed in:

0.79.0-150200.3.41.1

libpoppler89

SUSE Enterprise Storage 7.1SUSE Linux Enterprise High Performance Computing 15 SP3-LTSSSUSE Linux Enterprise High Performance Computing 15 SP4-ESPOSSUSE Linux Enterprise High Performance Computing 15 SP4-LTSSSUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS

Fixed in:

0.79.0-150200.3.41.1

poppler

Fixed in:

0.79.0-150200.3.41.1

poppler-tools

SUSE Enterprise Storage 7.1SUSE Linux Enterprise High Performance Computing 15 SP3-LTSSSUSE Linux Enterprise Server 15 SP3-LTSSSUSE Linux Enterprise Server for SAP Applications 15 SP3

Fixed in:

0.79.0-150200.3.41.1

typelib-1_0-Poppler-0_18

SUSE Enterprise Storage 7.1SUSE Linux Enterprise High Performance Computing 15 SP3-LTSSSUSE Linux Enterprise Server 15 SP3-LTSSSUSE Linux Enterprise Server for SAP Applications 15 SP3

Fixed in:

0.79.0-150200.3.41.1

References

REPORT

https://bugzilla.suse.com/1245625

WEB

https://www.suse.com/security/cve/CVE-2025-52886

ADVISORY

https://www.suse.com/support/update/announcement/2025/suse-su-202502356-1/

Upstream

CVE-2025-52886

Ecosystems(16)

SUSE Enterprise Storage 7.1 SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS

Timeline

PublishedJul 17, 2025

ModifiedJul 17, 2025

SUSE-SU-2025:02356-1 | Mondoo Vulnerability Intelligence