vulnerability

Rocky Linux: CVE-2025-11568: luksmeta (RLSA-2025-23086)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:L/AC:L/Au:M/C:N/I:C/A:N)	Dec 13, 2025	Feb 5, 2026	Feb 5, 2026

Severity

CVSS

(AV:L/AC:L/Au:M/C:N/I:C/A:N)

Published

Dec 13, 2025

Added

Feb 5, 2026

Modified

Feb 5, 2026

Description

LUKSMeta is a simple library for storing metadata in the LUKSv1 header. The luksmeta package is a dependency of the clevis and tang packages, together providing the Network Bound Disk Encryption (NBDE) in Rocky Linux.

Solutions

rocky-upgrade-libluksmetarocky-upgrade-libluksmeta-debuginforocky-upgrade-libluksmeta-develrocky-upgrade-luksmetarocky-upgrade-luksmeta-debuginforocky-upgrade-luksmeta-debugsource

References

CVE-2025-11568
https://attackerkb.com/topics/CVE-2025-11568
CWE-1284
URL-https://errata.rockylinux.org/RLSA-2025:23086

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today