Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 556
Alerts This Week
Warning Icon 1 556

Debian: udisks2 Important DoS Local Privilege Escalation DLA-4284-1

debian lts
Calendar Grey August 28, 2025
Dist Debian Esm H88
A buffer overflow flaw in synaptic can result in service disruption and potential elevation of local privileges.
Michael Imfeld discovered an out-of-bounds read vulnerability in udisks2, which may result in denial of service (daemon process crash), or in mapping an internal file descriptor fr...

Summary

Michael Imfeld discovered an out-of-bounds read vulnerability in udisks2,
which may result in denial of service (daemon process crash), or in
mapping an internal file descriptor from the daemon process onto a loop
device, resulting in local privilege escalation.


For Debian 11 bullseye, this problem has been fixed in version
2.9.2-2+deb11u3.

We recommend that you upgrade your udisks2 packages.

For the detailed security status of udisks2 please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/source-package/udisks2

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS



Severity
important
Lowest
Low
Medium
High
Critical

Package: udisks2
Version: 2.9.2-2+deb11u3
CVE ID: CVE-2025-8067

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.