{"id":"OSV-2026-504","summary":"Heap-use-after-free in ObjectStream::getObject","details":"OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=498251261\n\n```\nCrash type: Heap-use-after-free READ 4\nCrash state:\nObjectStream::getObject\nXRef::fetch\nXRef::fetch\n```\n","modified":"2026-04-02T00:16:28.229037Z","published":"2026-04-02T00:16:28.228723Z","references":[{"type":"REPORT","url":"https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=498251261"}],"affected":[{"package":{"name":"poppler","ecosystem":"OSS-Fuzz","purl":"pkg:generic/poppler"},"ranges":[{"type":"GIT","repo":"https://gitlab.freedesktop.org/poppler/poppler.git","events":[{"introduced":"1c6e5df94e06c9ad7e5af6aabfe38409532a85de"},{"fixed":"b57d9e84660193b922b3ded49f2ab5579198dc13"}]}],"ecosystem_specific":{"severity":"HIGH"},"database_specific":{"introduced_range":"304290044b5c6b1af62c3b44afa9fd674a9656af:1420107810fc928962c559ebf59cf110c5d3f7de","source":"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/poppler/OSV-2026-504.yaml"}}],"schema_version":"1.7.5"}