CVE-2025-68243

Published: Dec 16, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: NFS: Check the TLS certificate fields in nfs_match_client() If the TLS security policy is of type RPC_XPRTSEC_TLS_X509, then the cert_serial and privkey_serial fields need to match as well since they define the client's identity, as presented to the server.

Vendor	Product	Versions
Linux	Linux	affected `90c9550a8d65fb9b1bf87baf97a04ed91bf61b33 - < b8fa37219074811c04d4ecb742c73e2b296da6a8` affected `90c9550a8d65fb9b1bf87baf97a04ed91bf61b33 - < fb2cba0854a7f315c8100a807a6959b99d72479e`
Linux	Linux	affected `6.17` unaffected `0 - < 6.17` unaffected `6.17.9 - <= 6.17.` unaffected `6.18 - <= `

References

https://git.kernel.org/stable/c/b8fa37219074811c04d4ecb742c73e2b296da6a8

https://git.kernel.org/stable/c/fb2cba0854a7f315c8100a807a6959b99d72479e

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-68243

Description

Affected Products

References