BZ#2373307 libblockdev allegedly exploitable via the udisks daemon included by default on most Linux distributions, and allows an “allow_active” user to gain full root privileges (CVE-2025-6019)
BZ#2373715 CVE-2025-6019 libblockdev: LPE from allow_active to root in libblockdev via udisks [fedora-all]