CVE-2025-68243
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
NFS: Check the TLS certificate fields in nfs_match_client()
If the TLS security policy is of type RPC_XPRTSEC_TLS_X509, then the cert_serial and privkey_serial fields need to match as well since they define the client's identity, as presented to the server.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 90c9550a8d65fb9b1bf87baf97a04ed91bf61b33 < b8fa37219074811c04d4ecb742c73e2b296da6a8 | affected |
| Linux | Linux | 90c9550a8d65fb9b1bf87baf97a04ed91bf61b33 < fb2cba0854a7f315c8100a807a6959b99d72479e | affected |
| Linux | Linux | 6.17 | affected |
| Linux | Linux | 0 < 6.17 | unaffected |
| Linux | Linux | 6.17.9 <= 6.17.* | unaffected |
| Linux | Linux | 6.18 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/b8fa37219074811c04d4ecb742c73e2b296da6a8
- https://git.kernel.org/stable/c/fb2cba0854a7f315c8100a807a6959b99d72479e
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.