Rootio Linux: Unauthenticated Code Execution via Specially Crafted Request

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

Rootio Linux: Unauthenticated Code Execution via Specially Crafted Request

ROOT-OS-DEBIAN-12-CVE-2025-68349

Summary

A security patch has been made available for the rootio-linux package in Debian 12, which fixes a vulnerability that could allow an attacker to execute arbitrary code without needing a password. This issue affects the rootio-linux package and requires immediate attention to prevent potential security breaches. Users are advised to update to the latest version of rootio-linux to ensure their system is secure.

What to do

Update rootio-linux to version 6.1.159-1.root.io.75.

Affected software

Vendor	Product	Affected versions	Fix available
–	rootio-linux	<= 6.1.159-1.root.io.75	6.1.159-1.root.io.75

Original title

CVE-2025-68349 in rootio-linux - Patched by Root

Original description

Root has patched CVE-2025-68349 in the rootio-linux package for Root:Debian:12. Multiple fixed versions available.

Published: 6 Mar 2026 · Updated: 6 Mar 2026 · First seen: 6 Mar 2026