CNNVD-202508-233 Information
CNNVD ID
CNNVD-202508-233
Related CVE
- CNNVD Published: 2025-08-04
Description (Chinese)
Freedesktop Poppler是Freedesktop社区的一个用于生成PDF的C++类库,该库是从Xpdf(PDF阅读器)继承而来。 Freedesktop Poppler v25.04.0版本存在安全漏洞,该漏洞源于pdfseparate工具处理特制PDF文件时出现无限递归,可能导致拒绝服务。
Description (English)
Freedesktop Poppler is a C++ library for the production of PDF in the Freedesktop community, inherited from Xpdf (PDF reader). There is a security loophole in version Freedesktop Popper v25.04.0, which stems from the unlimited regression of the pdfseparate tool when it handles customized PDF files and may lead to the denial of services.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Freedesktop
Published
2025-08-04
Last Modified
2026-02-24
References
http://poppler.com http://freedesktop.com https://github.com/Landw-hub/CVE-2025-50420 https://access.redhat.com/security/cve/cve-2025-50420 https://vigilance.fr/vulnerability/Poppler-overload-via-pdfseparate-47974
Patch
https://poppler.freedesktop.org/
Share on: