vulnerability

SUSE: CVE-2025-6019: SUSE Linux Security Advisory

Try Surface Command
Back to search
Severity
7
CVSS
(AV:L/AC:M/Au:S/C:C/I:C/A:C)
Published
Jun 19, 2025
Added
Jun 23, 2025
Modified
Nov 5, 2025

Description

A Local Privilege Escalation (LPE) vulnerability was found in libblockdev. Generally, the "allow_active" setting in Polkit permits a physically present user to take certain actions based on the session type. Due to the way libblockdev interacts with the udisks daemon, an "allow_active" user on a system may be able escalate to full root privileges on the target host. Normally, udisks mounts user-provided filesystem images with security flags like nosuid and nodev to prevent privilege escalation. However, a local attacker can create a specially crafted XFS image containing a SUID-root shell, then trick udisks into resizing it. This mounts their malicious filesystem with root privileges, allowing them to execute their SUID-root shell and gain complete control of the system.

Solutions

suse-upgrade-libbd_btrfs-develsuse-upgrade-libbd_btrfs2suse-upgrade-libbd_btrfs3suse-upgrade-libbd_crypto-develsuse-upgrade-libbd_crypto2suse-upgrade-libbd_crypto3suse-upgrade-libbd_dm-develsuse-upgrade-libbd_dm2suse-upgrade-libbd_dm3suse-upgrade-libbd_fs-develsuse-upgrade-libbd_fs2suse-upgrade-libbd_fs3suse-upgrade-libbd_kbd-develsuse-upgrade-libbd_kbd2suse-upgrade-libbd_loop-develsuse-upgrade-libbd_loop2suse-upgrade-libbd_loop3suse-upgrade-libbd_lvm-dbus-develsuse-upgrade-libbd_lvm-dbus2suse-upgrade-libbd_lvm-dbus3suse-upgrade-libbd_lvm-develsuse-upgrade-libbd_lvm2suse-upgrade-libbd_lvm3suse-upgrade-libbd_mdraid-develsuse-upgrade-libbd_mdraid2suse-upgrade-libbd_mdraid3suse-upgrade-libbd_mpath-develsuse-upgrade-libbd_mpath2suse-upgrade-libbd_mpath3suse-upgrade-libbd_nvme3suse-upgrade-libbd_part-develsuse-upgrade-libbd_part2suse-upgrade-libbd_part3suse-upgrade-libbd_swap-develsuse-upgrade-libbd_swap2suse-upgrade-libbd_swap3suse-upgrade-libbd_utils-develsuse-upgrade-libbd_utils2suse-upgrade-libbd_utils3suse-upgrade-libbd_vdo-develsuse-upgrade-libbd_vdo2suse-upgrade-libblockdevsuse-upgrade-libblockdev-develsuse-upgrade-libblockdev2suse-upgrade-libblockdev3suse-upgrade-python3-libblockdevsuse-upgrade-typelib-1_0-blockdev-2_0suse-upgrade-typelib-1_0-blockdev-3_0

References

Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today