Suggested advisory:
========================

The updated packages fix a security vulnerability:

Out-of-bounds read in udisks daemon. (CVE-2025-8067)

References:
https://www.openwall.com/lists/oss-security/2025/08/28/1
https://www.openwall.com/lists/oss-security/2025/08/28/4
========================

Updated packages in core/updates_testing:
========================
lib(64)udisks-gir2.0-2.10.1-1.2.mga9
lib(64)udisks2-devel-2.10.1-1.2.mga9
lib(64)udisks2_0-2.10.1-1.2.mga9
udisks2-2.10.1-1.2.mga9
udisks2-btrfs-2.10.1-1.2.mga9
udisks2-lsm-2.10.1-1.2.mga9
udisks2-lvm2-2.10.1-1.2.mga9

from SRPM:
udisks2-2.10.1-1.2.mga9.src.rpm

Assignee: bugsquad => qa-bugs
Status comment: Fixed upstream in 2.10.2 => (none)
Status: NEW => ASSIGNED
Version: Cauldron => 9
Source RPM: udisks2-2.10.1-2.mga10.src.rpm, udisks2-2.10.1-1.1.mga9.src.rpm => udisks2-2.10.1-1.1.mga9.src.rpm
Whiteboard: MGA9TOO => (none)

RH i586

installing libudisks2_0-2.10.1-1.2.mga9.i586.rpm udisks2-2.10.1-1.2.mga9.i586.rpm from //home/katnatek/qa-testing/i586
Preparing...                     #######################################################################################
      1/2: libudisks2_0          #######################################################################################
      2/2: udisks2               #######################################################################################
      1/2: removing udisks2-2.10.1-1.1.mga9.i586
                                 #######################################################################################
      2/2: removing libudisks2_0-2.10.1-1.1.mga9.i586
                                 #######################################################################################

Reboot
Plug a usb memory without issues, unmount and plug other memory without issue

Looks good to me

MGA9-64 server Plasma Wayland on Compaq H000SB
No installation issues.
At CLI:
$ udisksctl 
Usage:
  udisksctl COMMAND

Commands:
  help            Shows this information
  info            Shows information about an object
  dump            Shows information about all objects
  status          Shows high-level status
  monitor         Monitor changes to objects
  mount           Mount a filesystem
  unmount         Unmount a filesystem
  unlock          Unlock an encrypted device
  lock            Lock an encrypted device
  loop-setup      Set-up a loop device
  loop-delete     Delete a loop device
  power-off       Safely power off a drive
  smart-simulate  Set SMART data for a drive

Use "udisksctl COMMAND --help" to get help on each command.


$ udisksctl info -b /dev/sda1
/org/freedesktop/UDisks2/block_devices/sda1:
  org.freedesktop.UDisks2.Block:
    Configuration:              []
    CryptoBackingDevice:        '/'
    Device:                     /dev/sda1
    DeviceNumber:               2049
    Drive:                      '/org/freedesktop/UDisks2/drives/ST1000LM024_HN_M101MBB_S31LJ9AF210603'
    HintAuto:                   false
    HintIconName:               
    HintIgnore:                 false
    HintName:                   
    HintPartitionable:          true
    HintSymbolicIconName:       
    HintSystem:                 true
    Id:                         by-id-ata-ST1000LM024_HN-M101MBB_S31LJ9AF210603-part1
and a lot more...
Ref bugs 29568 and 12983.
Plug in USB, detected by system, open in dolphin, see files in it. Choose safe removal adn see it disappear from dolphin. Plug out.
Start isodumper, no device available. Plugin USB, appears in isodumper on Refresh. Pull out, disappears from isodumper.
All good to go.

CC: (none) => herman.viaene
Whiteboard: (none) => MGA9-64-OK

Adding the 32-bit OK because of comment 2.

Validating.

Keywords: (none) => validated_update
Whiteboard: MGA9-64-OK => MGA9-64-OK MGA9-32-OK
CC: (none) => andrewsfarm, sysadmin-bugs

An update for this issue has been pushed to the Mageia Updates repository.

https://advisories.mageia.org/MGASA-2025-0231.html

Status: ASSIGNED => RESOLVED
Resolution: (none) => FIXED