CVE-2025-68764

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2025-68764

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-68764.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2025-68764

Downstream

BELL-CVE-2025-68764

DEBIAN-CVE-2025-68764

DLA-4475-1

DLA-4476-1

DSA-6127-1

ECHO-3bb7-89f3-084e

OESA-2026-1303

OESA-2026-1304

OESA-2026-1305

ROOT-OS-DEBIAN-11-CVE-2025-68764

ROOT-OS-DEBIAN-12-CVE-2025-68764

ROOT-OS-DEBIAN-13-CVE-2025-68764

ROOT-OS-UBUNTU-2204-CVE-2025-68764

ROOT-OS-UBUNTU-2404-CVE-2025-68764

SUSE-SU-2026:0447-1

SUSE-SU-2026:0472-1

SUSE-SU-2026:0587-1

SUSE-SU-2026:20477-1

SUSE-SU-2026:20498-1

SUSE-SU-2026:20555-1

SUSE-SU-2026:20599-1

SUSE-SU-2026:20615-1

SUSE-SU-2026:20845-1

UBUNTU-CVE-2025-68764

USN-8094-1

USN-8094-2

USN-8094-3

USN-8094-4

USN-8096-1

USN-8096-2

USN-8096-3

USN-8096-4

USN-8096-5

USN-8116-1

openSUSE-SU-2026:10039-1

openSUSE-SU-2026:10301-1

openSUSE-SU-2026:20287-1

Related

Published

2026-01-05T09:44:12.518Z

Modified

2026-03-28T17:44:43.116124927Z

Summary

NFS: Automounted filesystems should inherit ro,noexec,nodev,sync flags

Details

In the Linux kernel, the following vulnerability has been resolved:

NFS: Automounted filesystems should inherit ro,noexec,nodev,sync flags

When a filesystem is being automounted, it needs to preserve the user-set superblock mount options, such as the "ro" flag.

Database specific

{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/68xxx/CVE-2025-68764.json",
    "cna_assigner": "Linux"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

f2aedb713c284429987dc66c7aaf38decfc8da2a

Fixed

a3dc6c40bcab1a888d5c0d134ccc0746b4c98929

Fixed

ba1495aefd22fcf0746a2a3025c95d766d7cde4d

Fixed

c09070b4def1b34e473a746c6a5331ccb80902c1

Fixed

dce10c59211e5cd763a62ea01e79b82a629811e3

Fixed

612cc98698d667df804792f0c47d4e501e66da29

Fixed

4b296944e632cf4c6a4cc8e2585c6451eae47b1b

Fixed

df9b003a2ecacc7218486fbb31fe008c93097d5f

Fixed

8675c69816e4276b979ff475ee5fac4688f80125

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-68764.json"

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

5.6.0

Fixed

5.10.248

Type: ECOSYSTEM
Events: Introduced

5.11.0

Fixed

5.15.198

Type: ECOSYSTEM
Events: Introduced

5.16.0

Fixed

6.1.160

Type: ECOSYSTEM
Events: Introduced

6.2.0

Fixed

6.6.120

Type: ECOSYSTEM
Events: Introduced

6.7.0

Fixed

6.12.63

Type: ECOSYSTEM
Events: Introduced

6.13.0

Fixed

6.17.13

Type: ECOSYSTEM
Events: Introduced

6.18.0

Fixed

6.18.2

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-68764.json"