SUSE-SU-2025:02357-1

UNKNOWN

Security update for poppler

Published Jul 17, 2025

Modified 7 months ago

Fix available

Details

This update for poppler fixes the following issues:

CVE-2025-52886: Fixed an integer overflow that can lead to a use-after-free. (bsc#1245625)

Affected Packages

libpoppler-cpp0

SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOSSUSE Linux Enterprise High Performance Computing 15 SP4-LTSSSUSE Linux Enterprise Server 15 SP4-LTSSSUSE Linux Enterprise Server for SAP Applications 15 SP4SUSE Manager Proxy 4.3

Fixed in:

22.01.0-150400.3.31.1

libpoppler-devel

Fixed in:

22.01.0-150400.3.31.1

libpoppler-glib-devel

Fixed in:

22.01.0-150400.3.31.1

libpoppler-glib8

Fixed in:

22.01.0-150400.3.31.1

libpoppler117

Fixed in:

22.01.0-150400.3.31.1

poppler

Fixed in:

22.01.0-150400.3.31.1

poppler-tools

Fixed in:

22.01.0-150400.3.31.1

typelib-1_0-Poppler-0_18

Fixed in:

22.01.0-150400.3.31.1

References

REPORT

https://bugzilla.suse.com/1245625

WEB

https://www.suse.com/security/cve/CVE-2025-52886

ADVISORY

https://www.suse.com/support/update/announcement/2025/suse-su-202502357-1/

Upstream

CVE-2025-52886

Ecosystems(6)

SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS SUSE Linux Enterprise Server 15 SP4-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SP4 SUSE Manager Proxy 4.3

Timeline

PublishedJul 17, 2025

ModifiedJul 17, 2025

SUSE-SU-2025:02357-1 | Mondoo Vulnerability Intelligence