Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
rootio-linux: Unvalidated Input in RootFS Mounting
ROOT-OS-DEBIAN-12-CVE-2025-40139
Summary
The rootio-linux package had a security issue where an attacker could potentially manipulate the mounting of the RootFS, leading to unintended file system access. This has been fixed in an update by the maintainers of rootio-linux. Users should check for and apply the latest version of the package.
What to do
- Update rootio-linux to version 6.1.159-1.root.io.75.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| – | rootio-linux | <= 6.1.159-1.root.io.75 | 6.1.159-1.root.io.75 |
Original title
CVE-2025-40139 in rootio-linux - Patched by Root
Original description
Root has patched CVE-2025-40139 in the rootio-linux package for Root:Debian:12. Multiple fixed versions available.
Published: 7 Mar 2026 · Updated: 13 Mar 2026 · First seen: 7 Mar 2026