Not a user yet?
Log in Register for free Suggest a product
Update

USN-7687-1: poppler vulnerabilities

Ubuntu ServerUbuntu Server
Canonical

USN-7687-1: poppler vulnerabilities

Publication date: 6 August 2025
Overview: Several security issues were fixed in poppler.
Releases: 20.04 LTS , 18.04 LTS , 16.04 LTS

Packages

  • poppler - PDF rendering library

Details
Jieyong Ma discovered that poppler incorrectly handled certain malformed
PDF files. A remote attacker could possibly use this issue to cause poppler
to crash, resulting in a denial of service. This issue only affected Ubuntu
16.04 LTS and Ubuntu 18.04 LTS. (CVE-2022-27337)

Kevin Backhouse discovered that poppler incorrectly handled documents with
a large number of annotations. If a user or automated system were tricked
into opening a specially crafted document, a remote attacker could use
this issue to cause poppler to consume resources, leading to a denial of
service, or possibly execute arbitrary code. (CVE-2025-52886)

Update instructions
The problem can be corrected by updating your system to the following package versions:

20.04 focal :

  • libpoppler97 – 0.86.1-0ubuntu1.7+esm1
  • poppler-utils – 0.86.1-0ubuntu1.7+esm1

18.04 bionic:

  • libpoppler73 – 0.62.0-2ubuntu2.14+esm7
  • poppler-utils – 0.62.0-2ubuntu2.14+esm7

16.04 xenial:

  • libpoppler58 – 0.41.0-0ubuntu1.16+esm7
  • poppler-utils – 0.41.0-0ubuntu1.16+esm7
More updatesTo the product
The manufacturer Canonical has not yet set up its devicebase profile. Content such as updates, compatibilities and support may only be maintained with a delay.
Receive Important Update Messages Stay tuned for upcoming Canonical updates

More from the Operating Systems section

Was the content helpful to you?

Advertisement Advertise here?
Udemy IT certification ad