[Git][security-tracker-team/security-tracker][master] Track fixed version via unstable for CVE-2025-6019/libblockdev
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Jun 17 21:50:07 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
79f66c41 by Salvatore Bonaccorso at 2025-06-17T22:48:04+02:00
Track fixed version via unstable for CVE-2025-6019/libblockdev
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -237,7 +237,7 @@ CVE-2025-0320 (Local Privilege escalation allows a low-privileged user to gain S
CVE-2024-40570 (SQL Injection vulnerability in SeaCMS v.12.9 allows a remote attacker ...)
TODO: check
CVE-2025-6019 [LPE from allow_active to root in libblockdev via udisks]
- - libblockdev <unfixed>
+ - libblockdev 3.3.0-2.1
NOTE: https://www.openwall.com/lists/oss-security/2025/06/17/4
NOTE: https://www.qualys.com/2025/06/17/suse15-pam-udisks-lpe.txt
NOTE: As hardening measure udisks2 (in unstable since 2.10.1-12.1)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/79f66c41f8c8091261326b12ae4ecc0a5bdfdebe
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/79f66c41f8c8091261326b12ae4ecc0a5bdfdebe
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250617/5687fd45/attachment.htm>
More information about the debian-security-tracker-commits
mailing list