Yesterday, Qualys published details about a vulnerability discovered in the libblockdev package. Two vulnerabilities were announced, CVE-2025-6018 and CVE-2025-6019. AlmaLinux is not impacted by CVE-2025-6018, but we are impacted by CVE-2025-6019. Without the impact of CVE-2025-6018 the vulnerability in libblockdev (CVE-2025-6019) is arguably less critical, but it is impactful nonetheless. The second (CVE-2025-6019) affects libblockdev, is exploitable via the udisks daemon included by default...
