rootio-python3.11: Unrestricted File Access via Specially Crafted Input

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

rootio-python3.11: Unrestricted File Access via Specially Crafted Input

ROOT-OS-DEBIAN-12-CVE-2025-13462

Summary

The rootio-python3.11 package on Root:Debian:12 has a security issue that could allow an attacker to access files on your system without permission. This could lead to sensitive data being accessed or modified. Update to a fixed version to prevent this issue.

What to do

Update rootio-python3.11 to version 3.11.2-6+deb12u6.root.io.32.

Affected software

Ecosystem	Vendor	Product	Affected versions
Root:Debian:12	–	rootio-python3.11	< 3.11.2-6+deb12u6.root.io.32 Fix: upgrade to 3.11.2-6+deb12u6.root.io.32

Original title

CVE-2025-13462 in rootio-python3.11 - Patched by Root

Original description

Root has patched CVE-2025-13462 in the rootio-python3.11 package for Root:Debian:12. Multiple fixed versions available.

Published: 16 Apr 2026 · Updated: 16 Apr 2026 · First seen: 16 Apr 2026