vulnerability
Oracle Linux: CVE-2025-6019: ELSA-2025-10796: libblockdev security update (IMPORTANT) (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:M/Au:S/C:C/I:C/A:C) | Jun 17, 2025 | Jun 30, 2025 | Aug 12, 2025 |
Severity
7
CVSS
(AV:L/AC:M/Au:S/C:C/I:C/A:C)
Published
Jun 17, 2025
Added
Jun 30, 2025
Modified
Aug 12, 2025
Description
A Local Privilege Escalation (LPE) vulnerability was found in libblockdev. Generally, the "allow_active" setting in Polkit permits a physically present user to take certain actions based on the session type. Due to the way libblockdev interacts with the udisks daemon, an "allow_active" user on a system may be able escalate to full root privileges on the target host. Normally, udisks mounts user-provided filesystem images with security flags like nosuid and nodev to prevent privilege escalation. However, a local attacker can create a specially crafted XFS image containing a SUID-root shell, then trick udisks into resizing it. This mounts their malicious filesystem with root privileges, allowing them to execute their SUID-root shell and gain complete control of the system.
Solutions
oracle-linux-upgrade-libblockdevoracle-linux-upgrade-libblockdev-btrfsoracle-linux-upgrade-libblockdev-btrfs-develoracle-linux-upgrade-libblockdev-cryptooracle-linux-upgrade-libblockdev-crypto-develoracle-linux-upgrade-libblockdev-develoracle-linux-upgrade-libblockdev-dmoracle-linux-upgrade-libblockdev-dm-develoracle-linux-upgrade-libblockdev-fsoracle-linux-upgrade-libblockdev-fs-develoracle-linux-upgrade-libblockdev-kbdoracle-linux-upgrade-libblockdev-kbd-develoracle-linux-upgrade-libblockdev-looporacle-linux-upgrade-libblockdev-loop-develoracle-linux-upgrade-libblockdev-lvmoracle-linux-upgrade-libblockdev-lvm-dbusoracle-linux-upgrade-libblockdev-lvm-develoracle-linux-upgrade-libblockdev-mdraidoracle-linux-upgrade-libblockdev-mdraid-develoracle-linux-upgrade-libblockdev-mpathoracle-linux-upgrade-libblockdev-mpath-develoracle-linux-upgrade-libblockdev-nvdimmoracle-linux-upgrade-libblockdev-nvdimm-develoracle-linux-upgrade-libblockdev-nvmeoracle-linux-upgrade-libblockdev-partoracle-linux-upgrade-libblockdev-part-develoracle-linux-upgrade-libblockdev-plugins-alloracle-linux-upgrade-libblockdev-smartoracle-linux-upgrade-libblockdev-smartmontoolsoracle-linux-upgrade-libblockdev-swaporacle-linux-upgrade-libblockdev-swap-develoracle-linux-upgrade-libblockdev-toolsoracle-linux-upgrade-libblockdev-utilsoracle-linux-upgrade-libblockdev-utils-develoracle-linux-upgrade-libblockdev-vdooracle-linux-upgrade-libblockdev-vdo-develoracle-linux-upgrade-python2-blockdevoracle-linux-upgrade-python3-blockdev
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.