PT-2026-2535 · Linux+2 · Linux Kernel+2

Published

2025-11-18

·

Updated

2026-05-26

·

CVE-2025-68803

CVSS v2.0

6.0

Medium

VectorAV:L/AC:H/Au:S/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description An issue exists in the Linux kernel’s Network File System daemon (NFSD) related to handling Access Control Lists (ACLs) during NFSv4 file creation. Specifically, when an NFSv4 client attempts to set an ACL with a named principal during file creation, the ACL is not correctly applied to the inode. This occurs because the nfsd create setattr() function skips applying the POSIX ACL when only an ACL is present, violating RFC 8881 section 6.4.1.3. As a result, the server returns a default ACL based on the file’s mode bits instead of the originally specified ACL. The issue is located in the nfsd create setattr() function, which relies on nfsd attrs valid() to determine whether to call nfsd setattr().
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

RCE

Weakness Enumeration

CWE-20

Related Identifiers

AZL-74297
BDU:2026-00711
CVE-2025-68803
ECHO-71F0-480F-6006
OESA-2026-1759
OESA-2026-1760
OESA-2026-1761
OPENSUSE-SU-2026:20287-1
SUSE-SU-2026:0447-1
SUSE-SU-2026:0472-1
SUSE-SU-2026:0587-1
SUSE-SU-2026:20477-1
SUSE-SU-2026:20498-1
SUSE-SU-2026:20555-1
SUSE-SU-2026:20599-1
SUSE-SU-2026:20615-1
SUSE-SU-2026:20845-1
SUSE-SU-2026:20876-1
USN-8096-1
USN-8096-2
USN-8096-3
USN-8096-4
USN-8096-5
USN-8116-1
USN-8141-1
USN-8163-1
USN-8163-2
USN-8177-1
USN-8177-2
USN-8183-1
USN-8183-2
USN-8243-1
USN-8245-1
USN-8257-1
USN-8278-1
USN-8278-2
USN-8289-1
USN-8289-2
USN-8296-1
USN-8296-2

Affected Products

Linuxmint
Linux Kernel
Ubuntu