Astra Linux - уязвимость в poppler

Poppler is a library for rendering PDF files and examining or modifying their structure. A use-after-free vulnerability has been detected in versions of Poppler prior to 25.10.0 within the StructTreeRoot class. The issue arises from the use of raw pointers to elements of a std::vector; this can...

CVE-2025-64098 FastDDS has Out-of-memory in readOctetVector via Manipulated DATA Submessage when DDS Security is enabled

Fast DDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group . Prior to versions 3.4.1, 3.3.1, and 2.6.11, when the security mode is enabled, modifying the DATA Submessage within an SPDP packet sent by a publisher causes an Out-Of-Memory OOM...

CVE-2025-64098 FastDDS has Out-of-memory in readOctetVector via Manipulated DATA Submessage when DDS Security is enabled

Fast DDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group . Prior to versions 3.4.1, 3.3.1, and 2.6.11, when the security mode is enabled, modifying the DATA Submessage within an SPDP packet sent by a publisher causes an Out-Of-Memory OOM...

openSUSE 16 Security Update : poppler (openSUSE-SU-2025-20068-1)

The remote openSUSE 16 host has packages installed that are affected by a vulnerability as referenced in the openSUSE- SU-2025-20068-1 advisory. - CVE-2025-52885: Fixed raw pointers leading to dangling pointers when the vector is resized bsc1251940 Tenable has extracted the preceding description...

Security update for poppler (important)

openSUSE security update: security update for poppler ------------------------------------------------------------- Announcement ID: openSUSE-SU-2025-20068-1 Rating: important References: bsc1251940 Cross-References: CVE-2025-52885 CVSS scores: CVE-2025-52885 SUSE : 7.3...

SUSE-SU-2025:21132-1 Security update for poppler

This update for poppler fixes the following issues: - CVE-2025-52885: Fixed raw pointers leading to dangling pointers when the vector is resized bsc1251940...

OPENSUSE-SU-2025:20068-1 Security update for poppler

This update for poppler fixes the following issues: - CVE-2025-52885: Fixed raw pointers leading to dangling pointers when the vector is resized bsc1251940...

SUSE-SU-2025:3900-1 Security update for poppler

This update for poppler fixes the following issues: - CVE-2025-43718: Fixed uncontrolled recursion in the regex-based metadata parser when processing specially crafted PDF files allows for stack exhaustion and denial of service bsc1250908. - CVE-2025-52885: Fixed raw pointers can lead to dangling...

Security update for poppler

This update for poppler fixes the following issues: CVE-2025-43718: fixed uncontrolled recursion in the regex-based metadata parser when processing specially crafted PDF files bsc1250908 CVE-2025-52885: improved pointer handling that could have led to dangling pointers when the vector is resized...

SUSE-SU-2025:3779-1 Security update for poppler

This update for poppler fixes the following issues: - CVE-2025-43718: fixed uncontrolled recursion in the regex-based metadata parser when processing specially crafted PDF files bsc1250908 - CVE-2025-52885: improved pointer handling that could have led to dangling pointers when the vector is...

Use After Free

Overview Affected versions of this package are vulnerable to Use After Free in the StructTreeRoot class due to the use of raw pointers to elements of a std::vector, which can result in dangling pointers when the vector is resized. An attacker can potentially execute arbitrary code or cause a deni...

CVE-2025-52885 GHSL-2025-042: Poppler has Use-After-Free

Poppler ia a library for rendering PDF files, and examining or modifying their structure. A use-after-free write vulnerability has been detected in versions Poppler prior to 25.10.0 within the StructTreeRoot class. The issue arises from the use of raw pointers to elements of a std::vector, which...

EUVD-2025-33795

Poppler ia a library for rendering PDF files, and examining or modifying their structure. A use-after-free write vulnerability has been detected in versions Poppler prior to 25.10.0 within the StructTreeRoot class. The issue arises from the use of raw pointers to elements of a std::vector, which...

PT-2025-41613

Name of the Vulnerable Software and Affected Versions Poppler versions prior to 25.10.0 Description Poppler is a library used for rendering PDF files and modifying their structure. A use-after-free write issue exists due to the use of raw pointers to elements within a std::vector in the...

Race Condition

Overview Affected versions of this package are vulnerable to Race Condition due to unsynchronized calls to newvertex that resize internal std::vectors outside of a mutex, this can result in potential memory corruption or application crashes. Remediation Upgrade libigl/libigl to version 2.5.0 or...

GHSA-27J5-4P9V-PP67 `std::abort` raised from `TensorListReserve`

Impact Providing a negative element to numelements list argument of tf.rawops.TensorListReserve causes the runtime to abort the process due to reallocating a std::vector to have a negative number of elements: python import tensorflow as tf tf.rawops.TensorListReserve elementshape = tf.constant1,...

PYSEC-2021-291

TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause denial of service in applications serving models using tf.rawops.NonMaxSuppressionV5 by triggering a division by 0. The implementation uses a user controlled argument to resize a...

PYSEC-2021-291

TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause denial of service in applications serving models using tf.rawops.NonMaxSuppressionV5 by triggering a division by 0. The implementation uses a user controlled argument to resize a...

CVE-2021-37644

TensorFlow is an end-to-end open source platform for machine learning. In affected versions providing a negative element to numelements list argument of tf.rawops.TensorListReserve causes the runtime to abort the process due to reallocating a std::vector to have a negative number of elements. The...