CVE-2025-53074

Publication date 30 June 2025

Last updated 27 February 2026

Ubuntu priority

Description

Out-of-bounds Read vulnerability in Samsung Open Source rLottie allows Overflow Buffers.This issue affects rLottie: V0.2.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
rlottie	25.10 questing	Fixed 0.1+dfsg-4.2ubuntu0.1
	25.04 plucky	Ignored end of life, was needs-triage
	24.10 oracular	Ignored end of life, was needs-triage
	24.04 LTS noble	Fixed 0.1+dfsg-4ubuntu1.1
	22.04 LTS jammy	Fixed 0.1+dfsg-2ubuntu0.2
	20.04 LTS focal	Fixed 0~git20200305.a717479+dfsg-1ubuntu0.1~esm2

How can I get the fixes?
What do statuses mean?

Get expanded security coverage with Ubuntu Pro

Reduce your average CVE exposure time from 98 days to 1 day with expanded CVE patching, ten-years security maintenance and optional support for the full stack of open-source applications. Free for personal use.

Get Ubuntu Pro 30-day free trial

References

MITRE
NVD
Launchpad
Debian

Related Ubuntu Security Notices (USN)

USN-8058-1
rlottie vulnerabilities
24 February 2026

Other references

https://www.cve.org/CVERecord?id=CVE-2025-53074
https://github.com/Samsung/rlottie/pull/571
https://github.com/Samsung/rlottie/commit/507ea027e47d3e1dc7ddbd9994621215eae7ebb9