CVE-2025-8067

Udisks: out-of-bounds read in udisks daemon

Description

A flaw was found in the Udisks daemon, where it allows unprivileged users to create loop devices using the D-BUS system. This is achieved via the loop device handler, which handles requests sent through the D-BUS interface. As two of the parameters of this handle, it receives the file descriptor list and index specifying the file where the loop device should be backed. The function itself validates the index value to ensure it isn't bigger than the maximum value allowed. However, it fails to validate the lower bound, allowing the index parameter to be a negative value. Under these circumstances, an attacker can cause the UDisks daemon to crash or perform a local privilege escalation by gaining access to files owned by privileged users.

Remediation

Workaround:

There's no available mitigation other than installing the updated package as soon as available.

References

Link	Tags
https://access.redhat.com/security/cve/CVE-2025-8067	vdb entry
https://bugzilla.redhat.com/show_bug.cgi?id=2388623	issue tracking

Frequently Asked Questions

What is the severity of CVE-2025-8067?: CVE-2025-8067 has been scored as a high severity vulnerability.
How to fix CVE-2025-8067?: As a workaround for remediating CVE-2025-8067: There's no available mitigation other than installing the updated package as soon as available.
Is CVE-2025-8067 being actively exploited in the wild?: As for now, there are no information to confirm that CVE-2025-8067 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2025-8067?: CVE-2025-8067 affects Red Hat Red Hat Enterprise Linux 10, Red Hat Red Hat Enterprise Linux 6, Red Hat Red Hat Enterprise Linux 7, Red Hat Red Hat Enterprise Linux 8, Red Hat Red Hat Enterprise Linux 9.

Description

Remediation

Category

CWE-125 – Out-of-bounds Read

References

Frequently Asked Questions