CNNVD-202508-3470 Information
CNNVD ID
CNNVD-202508-3470
Related CVE
- CNNVD Published: 2025-08-28
Description (Chinese)
udisks是一款用于查询和管理存储设备的守护程序。 udisks存在缓冲区错误漏洞,该漏洞源于未验证索引下限,可能导致本地权限提升。
Description (English)
Disks are a dæmon for searching and managing storage equipment. There is an error loophole in the buffer zone that originates from the unverified index floor and may lead to an increase in local privileges.
Hazard Level
Medium
Vulnerability Type
缓冲区错误
Affected Vendor
个人开发者
Published
2025-08-28
Last Modified
2026-02-24
References
https://bugzilla.redhat.com/show_bug.cgi?id=2388623 https://access.redhat.com/security/cve/CVE-2025-8067 https://access.redhat.com/errata/RHSA-2025:15020 https://access.redhat.com/errata/RHSA-2025:15018 https://access.redhat.com/errata/RHSA-2025:15017 https://nvd.nist.gov/vuln/detail/CVE-2025-8067 https://vigilance.fr/vulnerability/UDisks-out-of-bounds-memory-reading-via-Loop-Device-Handler-48086
Patch
https://access.redhat.com/security/cve/CVE-2025-8067
Share on: