Huawei EulerOS: Security Advisory for udisks2 (EulerOS-SA-2025-2374)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP12 : udisks2 (EulerOS-SA-2025-2374)

According to the versions of the udisks2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in the Udisks daemon, where it allows unprivileged users to create loop devices using the D-BUS system. This is achieved via the...

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: The loop device’s block size should not be updated under exclusive control of the device owner. Syzbot introduced a scenario where the block size of a loop device was changed within a mounted file system. This caused a mismatch...

TencentOS Server 2: udisks2 (TSSA-2025:0804)

The version of Tencent Linux installed on the remote TencentOS Server 2 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0804 advisory. Package updates are available for TencentOS Server 2 that fix the following vulnerabilities:...

Out-of-Bounds Read

libudisks2.so is vulnerable to Out-of-Bounds Read. The vulnerability is due to the loop device handler failing to validate the lower bound of the index parameter received via D-BUS allowing negative index values, which allows an attacker to crash the daemon or perform local privilege escalation b...

EUVD-2002-0565

Malware in sbrugna...

EUVD-2025-26760

Malicious code in bioql PyPI...

EUVD-2025-13074

Malicious code in bioql PyPI...

FreeBSD : libudisks -- Udisks: out-of-bounds read in udisks daemon (3bf134f4-942d-11f0-95de-0800276af896)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 3bf134f4-942d-11f0-95de-0800276af896 advisory. [email protected] reports: A flaw was found in the Udisks daemon, where it allows unprivileged users ...

udisks: Out-of-bounds read in UDisks Daemon

A flaw was found in the Udisks daemon, where it allows unprivileged users to create loop devices using the D-BUS system. This is achieved via the loop device handler, which handles requests sent through the D-BUS interface. As two of the parameters of this handle, it receives the file descriptor...

udisks: Out-of-bounds read in UDisks Daemon

A flaw was found in the Udisks daemon, where it allows unprivileged users to create loop devices using the D-BUS system. This is achieved via the loop device handler, which handles requests sent through the D-BUS interface. As two of the parameters of this handle, it receives the file descriptor...

udisks: Out-of-bounds read in UDisks Daemon

A flaw was found in the Udisks daemon, where it allows unprivileged users to create loop devices using the D-BUS system. This is achieved via the loop device handler, which handles requests sent through the D-BUS interface. As two of the parameters of this handle, it receives the file descriptor...

udisks: Out-of-bounds read in UDisks Daemon

A flaw was found in the Udisks daemon, where it allows unprivileged users to create loop devices using the D-BUS system. This is achieved via the loop device handler, which handles requests sent through the D-BUS interface. As two of the parameters of this handle, it receives the file descriptor...

Important: udisks2

Issue Overview: A flaw was found in the Udisks daemon, where it allows unprivileged users to create loop devices using the D-BUS system. This is achieved via the loop device handler, which handles requests sent through the D-BUS interface. As two of the parameters of this handle, it receives the...

Important: udisks2

Issue Overview: A flaw was found in the Udisks daemon, where it allows unprivileged users to create loop devices using the D-BUS system. This is achieved via the loop device handler, which handles requests sent through the D-BUS interface. As two of the parameters of this handle, it receives the...

Linux Distros Unpatched Vulnerability : CVE-2025-38709

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - loop: Avoid updating block size under exclusive owner Syzbot came up with a reproducer where a loop device block size is changed underneath a mounted filesystem...

SUSE CVE-2025-38709

In the Linux kernel, the following vulnerability has been resolved: loop: Avoid updating block size under exclusive owner Syzbot came up with a reproducer where a loop device block size is changed underneath a mounted filesystem. This causes a mismatch between the block device block size and the...

DEBIAN-CVE-2025-38709

In the Linux kernel, the following vulnerability has been resolved: loop: Avoid updating block size under exclusive owner Syzbot came up with a reproducer where a loop device block size is changed underneath a mounted filesystem. This causes a mismatch between the block device block size and the...

AZL-71257 CVE-2025-38709 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: loop: Avoid updating block size under exclusive owner Syzbot came up with a reproducer where a loop device block size is changed underneath a mounted filesystem. This causes a mismatch between the block device block size and the...

AZL-66812 CVE-2025-38709 affecting package kernel for versions less than 6.6.104.2-1

In the Linux kernel, the following vulnerability has been resolved: loop: Avoid updating block size under exclusive owner Syzbot came up with a reproducer where a loop device block size is changed underneath a mounted filesystem. This causes a mismatch between the block device block size and the...