Fedora 42: Resolution for dpkg Critical Disk Usage Issue (CVE-2025-6297)
fedora
July 22, 2025
Update to 1.22.20
Summary
This package provides the low-level infrastructure for handling the
installation and removal of Debian software packages.
This package contains the tools (including dpkg-source) required to unpack,
build and upload Debian source packages.
This package also contains the programs dpkg which used to handle the
installation and removal of packages on a Debian system.
This package also contains dselect, an interface for managing the installation
and removal of packages on the system.
dpkg and dselect will certainly be non-functional on a rpm-based system because
packages dependencies will likely be unmet.
Update Information:
Update to 1.22.20. General cleanup. Fix CVE-2025-6297. Major clean up. Enable all tests. Trim changelog. Adjust Requires and BuildRequires. Update configure options.
Topics Covered
Change Log
* Thu Jun 26 2025 Simone Caronni
References
[ 1 ] Bug #2350593 - dpkg-1.22.20 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2350593
[ 2 ] Bug #2375783 - CVE-2025-6297 dpkg: dpkg excessive disk usage [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2375783
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-585ba94c06' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Name: dpkg
Product: Fedora 42
Version: 1.22.20
Release: 1.fc42
Summary: Package maintenance system for Debian Linux
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!