OESA-2025-2074

See a problem?
Please try reporting it to the source first.
Source
https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2025-2074
Import Source
https://repo.openeuler.org/security/data/osv/OESA-2025-2074.json
JSON Data
https://api.test.osv.dev/v1/vulns/OESA-2025-2074
Upstream
Published
2025-08-22T11:36:56Z
Modified
2025-08-22T12:16:07.578493Z
Summary
poppler security update
Details

is a PDF rendering library.

Security Fix(es):

A vulnerability classified as problematic has been found in Freedesktop Poppler 25.04.0 (Document Reader Software).CWE is classifying the issue as CWE-674. The product does not properly control the amount of recursion that takes place, consuming excessive resources, such as allocated memory or the program stack.This is going to have an impact on availability.There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.(CVE-2025-50420)

Database specific 
{
    "severity": "Medium"
}
References

Affected packages

openEuler:20.03-LTS-SP4 / poppler

Package

Name
poppler
Purl
pkg:rpm/openEuler/poppler&distro=openEuler-20.03-LTS-SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.90.0-13.oe2003sp4

Ecosystem specific 

{
    "x86_64": [
        "poppler-0.90.0-13.oe2003sp4.x86_64.rpm",
        "poppler-cpp-0.90.0-13.oe2003sp4.x86_64.rpm",
        "poppler-cpp-devel-0.90.0-13.oe2003sp4.x86_64.rpm",
        "poppler-debuginfo-0.90.0-13.oe2003sp4.x86_64.rpm",
        "poppler-debugsource-0.90.0-13.oe2003sp4.x86_64.rpm",
        "poppler-devel-0.90.0-13.oe2003sp4.x86_64.rpm",
        "poppler-glib-0.90.0-13.oe2003sp4.x86_64.rpm",
        "poppler-glib-devel-0.90.0-13.oe2003sp4.x86_64.rpm",
        "poppler-qt5-0.90.0-13.oe2003sp4.x86_64.rpm",
        "poppler-qt5-devel-0.90.0-13.oe2003sp4.x86_64.rpm",
        "poppler-utils-0.90.0-13.oe2003sp4.x86_64.rpm"
    ],
    "aarch64": [
        "poppler-0.90.0-13.oe2003sp4.aarch64.rpm",
        "poppler-cpp-0.90.0-13.oe2003sp4.aarch64.rpm",
        "poppler-cpp-devel-0.90.0-13.oe2003sp4.aarch64.rpm",
        "poppler-debuginfo-0.90.0-13.oe2003sp4.aarch64.rpm",
        "poppler-debugsource-0.90.0-13.oe2003sp4.aarch64.rpm",
        "poppler-devel-0.90.0-13.oe2003sp4.aarch64.rpm",
        "poppler-glib-0.90.0-13.oe2003sp4.aarch64.rpm",
        "poppler-glib-devel-0.90.0-13.oe2003sp4.aarch64.rpm",
        "poppler-qt5-0.90.0-13.oe2003sp4.aarch64.rpm",
        "poppler-qt5-devel-0.90.0-13.oe2003sp4.aarch64.rpm",
        "poppler-utils-0.90.0-13.oe2003sp4.aarch64.rpm"
    ],
    "noarch": [
        "poppler-glib-doc-0.90.0-13.oe2003sp4.noarch.rpm",
        "poppler-help-0.90.0-13.oe2003sp4.noarch.rpm"
    ],
    "src": [
        "poppler-0.90.0-13.oe2003sp4.src.rpm"
    ]
}

Database specific

source 
"https://repo.openeuler.org/security/data/osv/OESA-2025-2074.json"