CVE-2025-13654

A stack buffer overflow vulnerability exists in the buffer_get function of duc, a disk management tool, where a condition can evaluate to true due to underflow, allowing an out-of-bounds read.

References

Affected packages

Git / github.com/zevv/duc

Affected ranges

Type

GIT

Repo

https://github.com/zevv/duc

Events

Introduced

Fixed

6f9b6c4a3d5b74afb150ddf3e64207f7685f5470

Fixed

8638c4365ffd9e1966bdef8af6339dbee8c17e66

Database specific

{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "fixed": "1.4.6"
        }
    ]
}

Affected versions

1.*

1.0-rc1

1.1

1.2

1.3

1.3.1

1.3.2

1.3.3

1.4.0

1.4.1

1.4.2

1.4.3

1.4.4

1.4.5

Database specific

vanir_signatures

[
    {
        "signature_type": "Line",
        "deprecated": false,
        "digest": {
            "line_hashes": [
                "39289255876773731139160369832676406208",
                "163409178817594712516717372038319009126",
                "233980186272540327680530445336009202524",
                "232792614342879378378783240625819822636"
            ],
            "threshold": 0.9
        },
        "id": "CVE-2025-13654-76742b19",
        "signature_version": "v1",
        "source": "https://github.com/zevv/duc/commit/8638c4365ffd9e1966bdef8af6339dbee8c17e66",
        "target": {
            "file": "src/libduc/buffer.c"
        }
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "digest": {
            "function_hash": "202953349293003004385644582668182201625",
            "length": 243.0
        },
        "id": "CVE-2025-13654-86865cd4",
        "signature_version": "v1",
        "source": "https://github.com/zevv/duc/commit/8638c4365ffd9e1966bdef8af6339dbee8c17e66",
        "target": {
            "file": "src/libduc/buffer.c",
            "function": "buffer_get"
        }
    }
]

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-13654.json"