CNNVD-202512-683 Information

CNNVD ID

CNNVD-202512-683

Related CVE

CVE-2025-13654

• CNNVD Published: 2025-12-05

Description (Chinese)

duc是Ico Doornekamp个人开发者的一个用于检查磁盘使用情况的工具。 duc存在安全漏洞，该漏洞源于buffer_get函数存在栈缓冲区溢出，可能导致越界读取。

Description (English)

Duc is a tool used by Ico Doornekamp’s personal developer to check disk usage. There is a security loophole in the duc, which stems from the spilling of the buffer get function, which could lead to cross-border reading.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-12-05

Last Modified

2026-02-24

References

https://www.kb.cert.org/vuls/id/441887 https://github.com/zevv/duc/releases/tag/1.4.6 https://kb.cert.org/vuls/id/441887 https://hackingbydoing.wixsite.com/hackingbydoing/post/stack-buffer-overflow-in-duc https://access.redhat.com/security/cve/cve-2025-13654