Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
rootio-linux: Unauthorized Access to Configuration Files
ROOT-OS-UBUNTU-2404-CVE-2025-38040
Summary
The rootio-linux package for Root:Ubuntu:24.04 contained a security weakness that allowed an attacker to access configuration files without permission. This could potentially lead to sensitive information being compromised. A patch has been released to address this issue, and users are advised to update their software to the latest fixed version.
What to do
- Update rootio-linux to version 6.8.0-107.107.root.io.60.
- Update rootio-linux to version 6.8.0-110.110.root.io.62.
Affected software
| Ecosystem | Vendor | Product | Affected versions |
|---|---|---|---|
| Root:Ubuntu:24.04 | – | rootio-linux |
< 6.8.0-107.107.root.io.60 < 6.8.0-110.110.root.io.62 Fix: upgrade to 6.8.0-107.107.root.io.60
|
Original title
CVE-2025-38040 in rootio-linux - Patched by Root
Original description
Root has patched CVE-2025-38040 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available.
Published: 16 Apr 2026 · Updated: 16 Apr 2026 · First seen: 9 Apr 2026