CNNVD-202510-031 Information
Oct 01, 2025
cve
CNNVD ID
CNNVD-202510-031
Related CVE
- CNNVD Published: 2025-10-01
Description (Chinese)
Poppler是Poppler开源的一个PDF渲染库。 Poppler 24.06.1版本至25.04.0之前版本存在安全漏洞,该漏洞源于处理PDF文档中深度嵌套结构时存在栈消耗,可能导致段错误。
Description (English)
Poppler is a PDF Rendering Library at Popper Source. 24.06.1 to 25.04.0 contains a security loophole, which arises from the ink consumption of deep embedded structures in PDF files, which may lead to paragraph errors.
Hazard Level
Critical
Vulnerability Type
其他
Affected Vendor
Poppler
Published
2025-10-01
Last Modified
2026-02-24
References
https://github.com/ShadowByte1/CVE-Reports/blob/main/CVE-2025-43718.md https://gitlab.freedesktop.org/poppler/poppler/-/commit/f54b815672117c250420787c8c006de98e8c7408 https://vigilance.fr/vulnerability/Poppler-denial-of-service-via-Deeply-Nested-Structures-48399
Patch
https://poppler.freedesktop.org/
Share on: