USN-7577-1
- Source
- https://ubuntu.com/security/notices/USN-7577-1
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-7577-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/USN-7577-1
- Upstream
- Related
- Published
- 2025-06-18T11:15:19Z
- Modified
- 2026-04-22T10:59:35.695096Z
- Summary
- libblockdev vulnerability
- Details
-
It was discovered that libblockdev incorrectly handled mount options when resizing certain filesystems. A local attacker with an active session on the console can use this issue to escalate their privileges to root.
- References
Affected packages
Ubuntu:22.04:LTS / libblockdev
Package
- Name
- libblockdev
- Purl
- pkg:deb/ubuntu/libblockdev@2.26-1ubuntu0.1?arch=source&distro=jammy
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.26-1ubuntu0.1
Ecosystem specific
{
"availability": "No subscription required",
"binaries": [
{
"binary_version": "2.26-1ubuntu0.1",
"binary_name": "gir1.2-blockdev-2.0"
},
{
"binary_version": "2.26-1ubuntu0.1",
"binary_name": "libblockdev-btrfs2"
},
{
"binary_version": "2.26-1ubuntu0.1",
"binary_name": "libblockdev-crypto2"
},
{
"binary_version": "2.26-1ubuntu0.1",
"binary_name": "libblockdev-dm2"
},
{
"binary_version": "2.26-1ubuntu0.1",
"binary_name": "libblockdev-fs2"
},
{
"binary_version": "2.26-1ubuntu0.1",
"binary_name": "libblockdev-kbd2"
},
{
"binary_version": "2.26-1ubuntu0.1",
"binary_name": "libblockdev-loop2"
},
{
"binary_version": "2.26-1ubuntu0.1",
"binary_name": "libblockdev-lvm-dbus2"
},
{
"binary_version": "2.26-1ubuntu0.1",
"binary_name": "libblockdev-lvm2"
},
{
"binary_version": "2.26-1ubuntu0.1",
"binary_name": "libblockdev-mdraid2"
},
{
"binary_version": "2.26-1ubuntu0.1",
"binary_name": "libblockdev-mpath2"
},
{
"binary_version": "2.26-1ubuntu0.1",
"binary_name": "libblockdev-nvdimm2"
},
{
"binary_version": "2.26-1ubuntu0.1",
"binary_name": "libblockdev-part-err2"
},
{
"binary_version": "2.26-1ubuntu0.1",
"binary_name": "libblockdev-part2"
},
{
"binary_version": "2.26-1ubuntu0.1",
"binary_name": "libblockdev-plugins-all"
},
{
"binary_version": "2.26-1ubuntu0.1",
"binary_name": "libblockdev-swap2"
},
{
"binary_version": "2.26-1ubuntu0.1",
"binary_name": "libblockdev-utils2"
},
{
"binary_version": "2.26-1ubuntu0.1",
"binary_name": "libblockdev2"
},
{
"binary_version": "2.26-1ubuntu0.1",
"binary_name": "python3-blockdev"
}
]
}
Database specific
source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-7577-1.json"
cves_map
{
"ecosystem": "Ubuntu:22.04:LTS",
"cves": [
{
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "high",
"type": "Ubuntu"
}
],
"id": "CVE-2025-6019"
}
]
}
Ubuntu:24.04:LTS / libblockdev
Package
- Name
- libblockdev
- Purl
- pkg:deb/ubuntu/libblockdev@3.1.1-1ubuntu0.1?arch=source&distro=noble
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.1.1-1ubuntu0.1
Ecosystem specific
{
"availability": "No subscription required",
"binaries": [
{
"binary_version": "3.1.1-1ubuntu0.1",
"binary_name": "gir1.2-blockdev-3.0"
},
{
"binary_version": "3.1.1-1ubuntu0.1",
"binary_name": "libblockdev-btrfs3"
},
{
"binary_version": "3.1.1-1ubuntu0.1",
"binary_name": "libblockdev-crypto3"
},
{
"binary_version": "3.1.1-1ubuntu0.1",
"binary_name": "libblockdev-dm3"
},
{
"binary_version": "3.1.1-1ubuntu0.1",
"binary_name": "libblockdev-fs3"
},
{
"binary_version": "3.1.1-1ubuntu0.1",
"binary_name": "libblockdev-loop3"
},
{
"binary_version": "3.1.1-1ubuntu0.1",
"binary_name": "libblockdev-lvm-dbus3"
},
{
"binary_version": "3.1.1-1ubuntu0.1",
"binary_name": "libblockdev-lvm3"
},
{
"binary_version": "3.1.1-1ubuntu0.1",
"binary_name": "libblockdev-mdraid3"
},
{
"binary_version": "3.1.1-1ubuntu0.1",
"binary_name": "libblockdev-mpath3"
},
{
"binary_version": "3.1.1-1ubuntu0.1",
"binary_name": "libblockdev-nvdimm3"
},
{
"binary_version": "3.1.1-1ubuntu0.1",
"binary_name": "libblockdev-nvme3"
},
{
"binary_version": "3.1.1-1ubuntu0.1",
"binary_name": "libblockdev-part3"
},
{
"binary_version": "3.1.1-1ubuntu0.1",
"binary_name": "libblockdev-plugins-all"
},
{
"binary_version": "3.1.1-1ubuntu0.1",
"binary_name": "libblockdev-swap3"
},
{
"binary_version": "3.1.1-1ubuntu0.1",
"binary_name": "libblockdev-tools"
},
{
"binary_version": "3.1.1-1ubuntu0.1",
"binary_name": "libblockdev-utils3"
},
{
"binary_version": "3.1.1-1ubuntu0.1",
"binary_name": "libblockdev3"
},
{
"binary_version": "3.1.1-1ubuntu0.1",
"binary_name": "python3-blockdev"
}
]
}
Database specific
source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-7577-1.json"
cves_map
{
"ecosystem": "Ubuntu:24.04:LTS",
"cves": [
{
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "high",
"type": "Ubuntu"
}
],
"id": "CVE-2025-6019"
}
]
}