CVE-2025-50422

EUVD-2025-23528
Cairo through 1.18.4, as used in Poppler through 25.08.0, has an "unscaled->face == NULL" assertion failure for _cairo_ft_unscaled_font_fini in cairo-ft-font.c.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
mitreCNA
2.9 LOW
LOCAL
HIGH
NONE
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
Base Score
CVSS 3.x
EPSS Score
Percentile: 11%
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
VendorProductVersionSource
cairographicscairo
𝑥
≤ 1.18.4
CNA
Debian logo
Debian Releases
Debian Product
Codename
cairo
bookworm
no-dsa
bullseye
postponed
forky
vulnerable
sid
vulnerable
trixie
postponed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
cairo
bionic
needs-triage
focal
needs-triage
jammy
needs-triage
noble
needs-triage
plucky
ignored
questing
needs-triage
resolute
needs-triage
xenial
needs-triage
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
cairo-devel
suse enterprise desktop 15 SP6
1.18.4-150600.3.3.1
fixed
suse enterprise desktop 15 SP7
1.18.4-150600.3.3.1
fixed
suse enterprise sap 15 SP6
1.18.4-150600.3.3.1
fixed
suse enterprise sap 15 SP7
1.18.4-150600.3.3.1
fixed
suse enterprise server 15 SP4
1.16.0-150400.11.9.1
fixed
suse enterprise server 15 SP6
1.18.4-150600.3.3.1
fixed
suse enterprise server 15 SP7
1.18.4-150600.3.3.1
fixed
libcairo-gobject2
suse enterprise desktop 15 SP6
1.18.4-150600.3.3.1
fixed
suse enterprise desktop 15 SP7
1.18.4-150600.3.3.1
fixed
suse enterprise sap 15 SP6
1.18.4-150600.3.3.1
fixed
suse enterprise sap 15 SP7
1.18.4-150600.3.3.1
fixed
suse enterprise server 12 SP3
1.15.2-25.11.1
fixed
suse enterprise server 15 SP4
1.16.0-150400.11.9.1
fixed
suse enterprise server 15 SP6
1.18.4-150600.3.3.1
fixed
suse enterprise server 15 SP7
1.18.4-150600.3.3.1
fixed
libcairo-gobject2-32bit
suse enterprise server 12 SP3
1.15.2-25.11.1
fixed
libcairo-script-interpreter2
suse enterprise desktop 15 SP6
1.18.4-150600.3.3.1
fixed
suse enterprise desktop 15 SP7
1.18.4-150600.3.3.1
fixed
suse enterprise sap 15 SP6
1.18.4-150600.3.3.1
fixed
suse enterprise sap 15 SP7
1.18.4-150600.3.3.1
fixed
suse enterprise server 12 SP3
1.15.2-25.11.1
fixed
suse enterprise server 15 SP4
1.16.0-150400.11.9.1
fixed
suse enterprise server 15 SP6
1.18.4-150600.3.3.1
fixed
suse enterprise server 15 SP7
1.18.4-150600.3.3.1
fixed
libcairo2
suse enterprise desktop 15 SP6
1.18.4-150600.3.3.1
fixed
suse enterprise desktop 15 SP7
1.18.4-150600.3.3.1
fixed
suse enterprise sap 15 SP6
1.18.4-150600.3.3.1
fixed
suse enterprise sap 15 SP7
1.18.4-150600.3.3.1
fixed
suse enterprise server 12 SP3
1.15.2-25.11.1
fixed
suse enterprise server 15 SP4
1.16.0-150400.11.9.1
fixed
suse enterprise server 15 SP6
1.18.4-150600.3.3.1
fixed
suse enterprise server 15 SP7
1.18.4-150600.3.3.1
fixed
libcairo2-32bit
suse enterprise server 12 SP3
1.15.2-25.11.1
fixed
suse enterprise server 15 SP4
1.16.0-150400.11.9.1
fixed
Amazon Linux logo
Amazon Linux Releases
Amazon Package
Release
cairo
Amazon Linux 2
0:1.15.12-4.amzn2.0.1
fixed
Amazon Linux 2023
0:1.18.0-4.amzn2023.0.3
fixed
cairo-debuginfo
Amazon Linux 2
0:1.15.12-4.amzn2.0.1
fixed
Amazon Linux 2023
0:1.18.0-4.amzn2023.0.3
fixed
cairo-debugsource
Amazon Linux 2023
0:1.18.0-4.amzn2023.0.3
fixed
cairo-devel
Amazon Linux 2
0:1.15.12-4.amzn2.0.1
fixed
Amazon Linux 2023
0:1.18.0-4.amzn2023.0.3
fixed
cairo-gobject
Amazon Linux 2
0:1.15.12-4.amzn2.0.1
fixed
Amazon Linux 2023
0:1.18.0-4.amzn2023.0.3
fixed
cairo-gobject-debuginfo
Amazon Linux 2023
0:1.18.0-4.amzn2023.0.3
fixed
cairo-gobject-devel
Amazon Linux 2
0:1.15.12-4.amzn2.0.1
fixed
Amazon Linux 2023
0:1.18.0-4.amzn2023.0.3
fixed
cairo-tools
Amazon Linux 2
0:1.15.12-4.amzn2.0.1
fixed
Amazon Linux 2023
0:1.18.0-4.amzn2023.0.3
fixed
cairo-tools-debuginfo
Amazon Linux 2023
0:1.18.0-4.amzn2023.0.3
fixed