Linux Kernel NFS Automounting Capability Vulnerability
CVE-2025-39798

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 12 September 2025

What is CVE-2025-39798?

A vulnerability exists in the Linux kernel's Network File System (NFS) related to the handling of capabilities during the automounting of new filesystems. When transitioning into a new filesystem, capabilities should be reset to their minimal defaults to prevent unauthorized privilege escalation. This vulnerability could allow unintentional inheritance of elevated privileges, undermining system integrity and security measures. Users are encouraged to ensure their systems are updated to mitigate potential risks associated with this flaw.

Affected Version(s)

Linux 54ceac4515986030c2502960be620198dd8fe25b < 95eb0d97ab98a10e966125c1f274e7d0fc0992b3

Linux 54ceac4515986030c2502960be620198dd8fe25b < 73fcb101bb3eb2a552d7856a476b2c0bc3b5ef9e

Linux 54ceac4515986030c2502960be620198dd8fe25b < 3924dab90816d0c683a110628ef386f83a9d1e13

References

https://git.kernel.org/stable/c/95eb0d97ab98a10e966125c1f...

https://git.kernel.org/stable/c/73fcb101bb3eb2a552d7856a4...

https://git.kernel.org/stable/c/3924dab90816d0c683a110628...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 12, 2025
Vulnerability Reserved
Apr 16, 2025