Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/poppler@25.03.0-5%2Bdeb13u2
purl pkg:deb/debian/poppler@25.03.0-5%2Bdeb13u2
Next non-vulnerable version 25.03.0-11.1
Latest non-vulnerable version 25.03.0-11.1
Risk 3.0
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-a8zz-dfdm-1uf7
Aliases:
CVE-2025-43718
poppler: Poppler stack overflow
25.03.0-11.1
Affected by 0 other vulnerabilities.
VCID-yy6j-1h5z-wbgp
Aliases:
CVE-2025-52885
poppler: Use-After-Free in StructTreeRoot class
25.03.0-11.1
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (4)
Vulnerability Summary Aliases
VCID-48d5-zxmm-r3g4 An issue in the pdfseparate utility of freedesktop poppler v25.04.0 allows attackers to cause an infinite recursion via supplying a crafted PDF file. This can lead to a Denial of Service (DoS). CVE-2025-50420
VCID-anb3-1s96-wbaq poppler: SignatureValue not checked within SignerInfo CVE-2025-43903
VCID-ygrf-gq35-fkfd Multiple vulnerabilities have been discovered in Poppler, the worst of which could lead to execution of arbitrary code. CVE-2025-52886
VCID-yyxy-juya-a3f1 poppler: pdfinfo: crash in broken documents when using -dests parameter CVE-2024-6239

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T11:35:21.028185+00:00 Debian Importer Fixing VCID-48d5-zxmm-r3g4 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:45:58.005651+00:00 Debian Importer Affected by VCID-yy6j-1h5z-wbgp https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:26:11.938663+00:00 Debian Importer Fixing VCID-ygrf-gq35-fkfd https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:55:10.899908+00:00 Debian Importer Fixing VCID-yyxy-juya-a3f1 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:38:54.783487+00:00 Debian Importer Fixing VCID-anb3-1s96-wbaq https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:38:32.121705+00:00 Debian Importer Affected by VCID-a8zz-dfdm-1uf7 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-13T07:54:05.284617+00:00 Debian Importer Fixing VCID-48d5-zxmm-r3g4 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:16:57.014159+00:00 Debian Importer Affected by VCID-yy6j-1h5z-wbgp https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:02:22.839310+00:00 Debian Importer Fixing VCID-ygrf-gq35-fkfd https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T06:38:19.778697+00:00 Debian Importer Fixing VCID-yyxy-juya-a3f1 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:25:17.387345+00:00 Debian Importer Fixing VCID-anb3-1s96-wbaq https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:48:39.036975+00:00 Debian Importer Affected by VCID-a8zz-dfdm-1uf7 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-08T19:15:25.366990+00:00 Debian Importer Fixing VCID-48d5-zxmm-r3g4 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-08T18:50:27.544284+00:00 Debian Importer Affected by VCID-yy6j-1h5z-wbgp https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-08T18:40:39.805040+00:00 Debian Importer Fixing VCID-ygrf-gq35-fkfd https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-08T18:24:48.839427+00:00 Debian Importer Fixing VCID-yyxy-juya-a3f1 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-04T18:09:08.601209+00:00 Debian Importer Fixing VCID-anb3-1s96-wbaq https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-04T15:41:11.031841+00:00 Debian Importer Affected by VCID-a8zz-dfdm-1uf7 https://security-tracker.debian.org/tracker/data/json 38.1.0