rootio-linux: Unauthenticated Data Exposure in Configuration Files

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

rootio-linux: Unauthenticated Data Exposure in Configuration Files

ROOT-OS-UBUNTU-2404-CVE-2025-21759

Summary

The rootio-linux package for Ubuntu 24.04 had a security issue that allowed an attacker to access sensitive configuration data without needing a password. This could happen if an attacker gained access to the system. The issue has been fixed by the Root team with a software update, so it's recommended to upgrade to the latest version to protect your system.

What to do

Update rootio-linux to version 6.8.0-106.106.root.io.59.

Affected software

Vendor	Product	Affected versions	Fix available
–	rootio-linux	<= 6.8.0-106.106.root.io.59	6.8.0-106.106.root.io.59

Original title

CVE-2025-21759 in rootio-linux - Patched by Root

Original description

Root has patched CVE-2025-21759 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available.

Published: 1 Apr 2026 · Updated: 1 Apr 2026 · First seen: 1 Apr 2026