Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Fedora 42: abrt Critical Command Injection Vulnerability CVE-2025-12744

fedora
Calendar Grey December 6, 2025
Dist Fedora Esm H88
This advisory informs about the critical fix for command injection leading to local privilege escalation in abrt on Fedora 42.
Fix CVE-2025-12744

Summary

abrt is a tool to help users to detect defects in applications and

to create a bug report with all information needed by maintainer to fix it.

It uses plugin system to extend its functionality.

Update Information:

Fix CVE-2025-12744

Topics%20covered

Topics Covered

security advisory fedora critical local privilege escalation command injection abrt

Change Log

* Thu Dec 4 2025 Michal Srb - 2.17.8-1 - a-a-save-container-data: validate input - Resolves: CVE-2025-12744

References


[ 1 ] Bug #2418568 - CVE-2025-12744 abrt: Command-injection in ABRT leading to local privilege escalation [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2418568

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-64091db7e0' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: abrt
Product: Fedora 42
Version: 2.17.8
Release: 1.fc42
URL: https://abrt.readthedocs.io/en/latest/
Summary: Automatic bug detection and reporting tool

Topics%20covered

Topics Covered

security advisory fedora critical local privilege escalation command injection abrt

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here