Details:
The Udisks project provides a daemon, tools, and libraries to access and manipulate disks, storage devices, and technologies.
Security Fix(es):
udisks: Missing Authorization Check Allows Unprivileged Users to Back Up LUKS Headers via udisks D-Bus API (CVE-2026-26104)
udisks: Missing Authorization Check Allows Unprivileged Users to Restore LUKS Headers via udisks D-Bus API (CVE-2026-26103)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
0:2.10.90-5.el10_0.20:2.10.90-5.el10_0.20:2.10.90-5.el10_0.20:2.10.90-5.el10_0.20:2.10.90-5.el10_0.20:2.10.90-5.el10_0.20:2.10.90-5.el10_0.20:2.10.90-5.el10_0.20:2.10.90-5.el10_0.20:2.10.90-5.el10_0.2Exploitability
AV:LAC:LPR:LUI:NScope
S:UImpact
C:NI:HA:H7.1/CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H