- Vulnerability/
- USN-7426-1
USN-7426-1: poppler vulnerabilities
First published: Tue Apr 08 2025(Updated: )
It was discovered that poppler incorrectly handled memory when opening certain PDF files. An attacker could possibly use this issue to cause poppler to crash, resulting in a denial of service.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| ubuntu/libpoppler140 | <24.08.0-1ubuntu0.2 | 24.08.0-1ubuntu0.2 |
| Ubuntu | =24.10 | |
| All of | ||
| ubuntu/poppler-utils | <24.08.0-1ubuntu0.2 | 24.08.0-1ubuntu0.2 |
| Ubuntu | =24.10 | |
| All of | ||
| ubuntu/libpoppler134 | <24.02.0-1ubuntu9.3 | 24.02.0-1ubuntu9.3 |
| Ubuntu | =24.04 | |
| All of | ||
| ubuntu/poppler-utils | <24.02.0-1ubuntu9.3 | 24.02.0-1ubuntu9.3 |
| Ubuntu | =24.04 | |
| All of | ||
| ubuntu/libpoppler118 | <22.02.0-2ubuntu0.7 | 22.02.0-2ubuntu0.7 |
| Ubuntu | =22.04 | |
| All of | ||
| ubuntu/poppler-utils | <22.02.0-2ubuntu0.7 | 22.02.0-2ubuntu0.7 |
| Ubuntu | =22.04 | |
| All of | ||
| ubuntu/libpoppler97 | <0.86.1-0ubuntu1.6 | 0.86.1-0ubuntu1.6 |
| Ubuntu | =20.04 | |
| All of | ||
| ubuntu/poppler-utils | <0.86.1-0ubuntu1.6 | 0.86.1-0ubuntu1.6 |
| Ubuntu | =20.04 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://ubuntu.com/security/CVE-2025-32365
- https://ubuntu.com/security/CVE-2025-32364
- https://ubuntu.com/security/notices/USN-7426-2
- https://launchpad.net/ubuntu/+source/poppler/24.08.0-1ubuntu0.2
- https://launchpad.net/ubuntu/+source/poppler/24.02.0-1ubuntu9.3
- https://launchpad.net/ubuntu/+source/poppler/22.02.0-2ubuntu0.7
- https://launchpad.net/ubuntu/+source/poppler/0.86.1-0ubuntu1.6
- https://ubuntu.com/security/notices/USN-7426-1 (Advisory)
Frequently Asked Questions
What is the severity of USN-7426-1?
USN-7426-1 has been classified as a denial of service vulnerability.
How do I fix USN-7426-1?
To fix USN-7426-1, update to the latest version of the affected packages as specified in the advisory.
What software is affected by USN-7426-1?
USN-7426-1 affects the poppler and libpoppler packages on specific versions of Ubuntu.
Can USN-7426-1 be exploited remotely?
Yes, an attacker could exploit USN-7426-1 by sending a specially crafted PDF file.
What does USN-7426-1 impact specifically?
USN-7426-1 impacts the memory handling of poppler when processing certain PDF files.
- agent/references
- agent/source
- agent/title
- agent/last-modified-date
- agent/first-publish-date
- agent/type
- agent/description
- agent/softwarecombine
- agent/event
- agent/tags
- collector/usn
- source/Ubuntu
- agent/software-canonical-lookup
- package-manager/ubuntu
- vendor/ubuntu
- canonical/ubuntu
- version/ubuntu/24.10
- version/ubuntu/24.04
- version/ubuntu/22.04
- version/ubuntu/20.04