Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/udisks2@2.1.8-1
purl pkg:deb/debian/udisks2@2.1.8-1
Next non-vulnerable version 2.9.4-4+deb12u2
Latest non-vulnerable version 2.9.4-4+deb12u2
Risk 3.9
Vulnerabilities affecting this package (3)
Vulnerability Summary Fixed by
VCID-8u2a-jkse-s3bv
Aliases:
CVE-2018-17336
UDisks 2.8.0 has a format string vulnerability in udisks_log in udiskslogging.c, allowing attackers to obtain sensitive information (stack contents), cause a denial of service (memory corruption), or possibly have unspecified other impact via a malformed filesystem label, as demonstrated by %d or %n substrings.
2.8.1-4
Affected by 2 other vulnerabilities.
VCID-wpbp-sahz-x7gk
Aliases:
CVE-2025-8067
udisks: Out-of-bounds read in UDisks Daemon
2.9.4-4+deb12u2
Affected by 0 other vulnerabilities.
VCID-z4rg-81ks-j7fr
Aliases:
CVE-2021-3802
A vulnerability found in udisks2. This flaw allows an attacker to input a specially crafted image file/USB leading to kernel panic. The highest threat from this vulnerability is to system availability.
2.9.2-2+deb11u1
Affected by 1 other vulnerability.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-06-06T08:10:07.255931+00:00 Debian Oval Importer Affected by VCID-wpbp-sahz-x7gk https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.6.0
2026-06-06T06:11:54.781290+00:00 Debian Oval Importer Affected by VCID-z4rg-81ks-j7fr https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.6.0
2026-06-06T01:01:03.309889+00:00 Debian Oval Importer Affected by VCID-8u2a-jkse-s3bv https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.6.0