Fedora 42: Duc Critical Buffer Overflow Vulnerability CVE-2025-13654
fedora
December 31, 2025
Update to 1.4.6: fixes CVE-2025-13654
Summary
Duc is a collection of tools for indexing, inspecting and visualizing
disk usage. Duc maintains a database of accumulated sizes of directories
of the file system, and allows you to query this database with some tools,
or create fancy graphs showing you where your bytes are.
Update Information:
Update to 1.4.6: fixes CVE-2025-13654
Topics Covered
Change Log
* Wed Dec 17 2025 Jens Petersen
References
[ 1 ] Bug #2423079 - CVE-2025-13654 duc: duc: Stack Buffer Overflow in buffer_get function [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2423079
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-d73e0a567d' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Name: duc
Product: Fedora 42
Version: 1.4.6
Release: 1.fc42
URL: https://duc.zevv.nl/
Summary: Disk usage tools
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!