[Git][security-tracker-team/security-tracker][master] Add CVE-2025-52885/poppler
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Oct 11 09:59:49 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
6da69355 by Salvatore Bonaccorso at 2025-10-11T10:59:21+02:00
Add CVE-2025-52885/poppler
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -51,7 +51,10 @@ CVE-2025-58277 (Permission verification bypass vulnerability in the Camera app.S
CVE-2025-54654 (Permission control vulnerability in the Gallery module. Successful exp ...)
NOT-FOR-US: Huawei
CVE-2025-52885 (Poppler ia a library for rendering PDF files, and examining or modifyi ...)
- TODO: check
+ - poppler <unfixed>
+ NOTE: https://securitylab.github.com/advisories/GHSL-2025-042_poppler/
+ NOTE: https://gitlab.freedesktop.org/poppler/poppler/-/merge_requests/1884
+ NOTE: Fixed by: https://gitlab.freedesktop.org/poppler/poppler/-/commit/4ce27cc826bf90cc8dbbd8a8c87bd913cccd7ec0 (poppler-25.10.0)
CVE-2025-52647 (The BigFix WebUI application responds with HOST information from the H ...)
NOT-FOR-US: HCL
CVE-2025-31718 (In modem, there is a possible system crash due to improper input valid ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6da693558adf6845ea5a56e21d79292356fbdec5
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6da693558adf6845ea5a56e21d79292356fbdec5
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251011/7dd1d29e/attachment.htm>
More information about the debian-security-tracker-commits
mailing list