ALSA-2026:18421
See a problem?- Import Source
- https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux10/ALSA-2026:18421.json
- JSON Data
- https://api.osv.dev/v1/vulns/ALSA-2026:18421
- Related
- Published
- 2026-05-19T00:00:00Z
- Modified
- 2026-05-26T16:45:04.297666259Z
- Summary
- Moderate: luksmeta security update
- Details
-
LUKSMeta is a simple library for storing metadata in the LUKSv1 header. The luksmeta package is a dependency of the clevis and tang packages, together providing the Network Bound Disk Encryption (NBDE) in AlmaLinux.
Security Fix(es):
- luksmeta: Data corruption when handling LUKS1 partitions with luksmeta (CVE-2025-11568)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.
- References
Affected packages
AlmaLinux:10 / libluksmeta
Package
- Name
- libluksmeta
- Purl
- pkg:rpm/almalinux/libluksmeta
AlmaLinux:10 / libluksmeta-devel
Package
- Name
- libluksmeta-devel
- Purl
- pkg:rpm/almalinux/libluksmeta-devel