rootio-linux: Unauthenticated access to sensitive configuration files

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

rootio-linux: Unauthenticated access to sensitive configuration files

ROOT-OS-DEBIAN-12-CVE-2025-38191

Summary

The rootio-linux package for Root:Debian:12 has a security issue where an attacker can access sensitive configuration files without authentication. This could allow an unauthorized user to gain access to confidential information. You should update to the latest version of rootio-linux to fix this issue.

What to do

Update rootio-linux to version 6.1.159-1.root.io.75.

Affected software

Vendor	Product	Affected versions	Fix available
–	rootio-linux	<= 6.1.159-1.root.io.75	6.1.159-1.root.io.75

Original title

CVE-2025-38191 in rootio-linux - Patched by Root

Original description

Root has patched CVE-2025-38191 in the rootio-linux package for Root:Debian:12. Multiple fixed versions available.

Published: 6 Mar 2026 · Updated: 6 Mar 2026 · First seen: 6 Mar 2026