CVE-2025-68243

Severity CVSS v4.0:

Pending analysis

Type:

Unavailable / Other

Publication date:

16/12/2025

Last modified:

16/12/2025

Description

In the Linux kernel, the following vulnerability has been resolved: NFS: Check the TLS certificate fields in nfs_match_client() If the TLS security policy is of type RPC_XPRTSEC_TLS_X509, then the cert_serial and privkey_serial fields need to match as well since they define the client&#39;s identity, as presented to the server.

Impact

References to Advisories, Solutions, and Tools

https://git.kernel.org/stable/c/b8fa37219074811c04d4ecb742c73e2b296da6a8
https://git.kernel.org/stable/c/fb2cba0854a7f315c8100a807a6959b99d72479e