Astra Linux - уязвимость в libblockdev, udisks2

A Local Privilege Escalation LPE vulnerability was discovered in libblockdev. Typically, the “allowactive” setting in Polkit allows a physically present user to perform certain actions based on the session type. Due to the way libblockdev interacts with the udisks daemon, a “allowactive” user on ...

Exploit for Incorrect Authorization in Suse Pam-Config

CVE-2025-6018 & CVE-2025-6019 PoC A Proof of Concept for chai...

MiracleLinux 8 : libblockdev-2.28-7.el8_10 (AXSA:2025-10409:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10409:02 advisory. libblockdev: LPE from allowactive to root in libblockdev via udisks CVE-2025-6019 Tenable has extracted the preceding description block directly from the...

MiracleLinux 7 : libblockdev-2.18-5.0.1.el7.AXS7 (AXSA:2025-10699:04)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10699:04 advisory. CVE-2025-6019: don't allow suid and dev set on fs resize CVEs: CVE-2025-6019 A Local Privilege Escalation LPE vulnerability was found in libblockdev...

MiracleLinux 9 : libblockdev-2.28-14.el9_6 (AXSA:2025-10552:03)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10552:03 advisory. libblockdev: LPE from allowactive to root in libblockdev via udisks CVE-2025-6019 Tenable has extracted the preceding description block directly from the...

Advisory ROSA-SA-2025-3084

Software: libblockdev 2.18 OS: rosa-server79 unaffected versions = libblockdev-2.18-5.0.1.res7 affected versions libblockdev-2.18-5.0.1.1.res7 CVE-ID: CVE-2025-6019 BDU-ID: 2025-07084 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the libblockdev library is related to the ability to mount the file...

CLSA-2025-1764325063 libblockdev: Fix of CVE-2025-6019

CVE-2025-6019: don't allow suid and dev set on fs resize...

TencentOS Server 4: libblockdev (TSSA-2025:0478)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0478 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

TencentOS Server 4: udisks2 (TSSA-2025:0480)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0480 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

TencentOS Server 2: libblockdev (TSSA-2025:0535)

The version of Tencent Linux installed on the remote TencentOS Server 2 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0535 advisory. Package updates are available for TencentOS Server 2 that fix the following vulnerabilities:...

EulerOS 2.0 SP13 : libblockdev (EulerOS-SA-2025-2266)

According to the versions of the libblockdev packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A Local Privilege Escalation LPE vulnerability was found in libblockdev. Generally, the 'allowactive' setting in Polkit permits a physically...

Huawei EulerOS: Security Advisory for udisks2 (EulerOS-SA-2025-2312)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP13 : udisks2 (EulerOS-SA-2025-2280)

According to the versions of the udisks2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A Local Privilege Escalation LPE vulnerability was found in libblockdev. Generally, the 'allowactive' setting in Polkit permits a physically...

EulerOS 2.0 SP13 : udisks2 (EulerOS-SA-2025-2312)

According to the versions of the udisks2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A Local Privilege Escalation LPE vulnerability was found in libblockdev. Generally, the 'allowactive' setting in Polkit permits a physically...

Huawei EulerOS: Security Advisory for libblockdev (EulerOS-SA-2025-2266)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP13 : libblockdev (EulerOS-SA-2025-2298)

According to the versions of the libblockdev packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A Local Privilege Escalation LPE vulnerability was found in libblockdev. Generally, the 'allowactive' setting in Polkit permits a physically...

Huawei EulerOS: Security Advisory for udisks2 (EulerOS-SA-2025-2280)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Rocky Linux Updates in ASCG 3.3.0a (OVA)

Multiple Rocky Linux updates applied to Brocade ASCG 3.3.0a RockyLinux 8:perl RLSA-2025:11805 perl: Perl threads have a working directory race condition where file operations may target unintended paths CVE-2025-40909 RockyLinux 8:libxslt RLSA-2025:3615 libxslt: Use-After-Free in libxslt numbers....

Huawei EulerOS: Security Advisory for udisks2 (EulerOS-SA-2025-2249)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for udisks2 (EulerOS-SA-2025-2217)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...