rootio-linux: Malicious Code Can Be Injected via Unvalidated Input

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

rootio-linux: Malicious Code Can Be Injected via Unvalidated Input

ROOT-OS-DEBIAN-12-CVE-2025-38062

Summary

The rootio-linux package for Debian 12 has a security issue where malicious code can be injected into the system through unvalidated input. This could potentially allow an attacker to take control of the system. Update to the latest version of rootio-linux to fix this issue.

What to do

Update rootio-linux to version 6.1.159-1.root.io.75.

Affected software

Vendor	Product	Affected versions	Fix available
–	rootio-linux	<= 6.1.159-1.root.io.75	6.1.159-1.root.io.75

Original title

CVE-2025-38062 in rootio-linux - Patched by Root

Original description

Root has patched CVE-2025-38062 in the rootio-linux package for Root:Debian:12. Multiple fixed versions available.

Published: 6 Mar 2026 · Updated: 6 Mar 2026 · First seen: 6 Mar 2026