rootio-linux: Unauthorized code execution via malicious configuration file

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

rootio-linux: Unauthorized code execution via malicious configuration file

ROOT-OS-DEBIAN-11-CVE-2025-68794

Summary

A vulnerability in the rootio-linux package for Root:Debian:11 allows an attacker to execute unauthorized code. This could happen if an attacker modifies a configuration file in a way that tricks the system into running malicious code. Root has released a patch to fix this issue, so it's essential to update the package to a fixed version to prevent potential security risks.

What to do

Update rootio-linux to version 5.10.249-1.root.io.52.

Affected software

Vendor	Product	Affected versions	Fix available
–	rootio-linux	<= 5.10.249-1.root.io.52	5.10.249-1.root.io.52

Original title

CVE-2025-68794 in rootio-linux - Patched by Root

Original description

Root has patched CVE-2025-68794 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available.

Published: 6 Mar 2026 · Updated: 6 Mar 2026 · First seen: 6 Mar 2026