CVE-2025-11896

Vulnerability Description

In Xpdf 4.05 (and earlier), a PDF object loop in a CMap, via the "UseCMap" entry, leads to infinite recursion and a stack overflow.

Related Weaknesses (CWE)

CWE-674

References

https://www.xpdfreader.com/security-bug/object-loops.html

FAQ

What is CVE-2025-11896?

CVE-2025-11896 is a documented vulnerability. In Xpdf 4.05 (and earlier), a PDF object loop in a CMap, via the "UseCMap" entry, leads to infinite recursion and a stack overflow.

How severe is CVE-2025-11896?

CVSS scoring is not yet available for CVE-2025-11896. Check NVD for updates.

Is there a patch for CVE-2025-11896?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.