CVE-2025-68803
- Source
- https://cve.org/CVERecord?id=CVE-2025-68803
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-68803.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2025-68803
- Downstream
- Related
- Published
- 2026-01-13T15:29:11.732Z
- Modified
- 2026-03-28T17:43:41.962697Z
- Summary
- NFSD: NFSv4 file creation neglects setting ACL
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
NFSD: NFSv4 file creation neglects setting ACL
An NFSv4 client that sets an ACL with a named principal during file creation retrieves the ACL afterwards, and finds that it is only a default ACL (based on the mode bits) and not the ACL that was requested during file creation. This violates RFC 8881 section 6.4.1.3: "the ACL attribute is set as given".
The issue occurs in nfsdcreatesetattr(), which calls nfsdattrsvalid() to determine whether to call nfsdsetattr(). However, nfsdattrsvalid() checks only for iattr changes and security labels, but not POSIX ACLs. When only an ACL is present, the function returns false, nfsdsetattr() is skipped, and the POSIX ACL is never applied to the inode.
Subsequently, when the client retrieves the ACL, the server finds no POSIX ACL on the inode and returns one generated from the file's mode bits rather than returning the originally-specified ACL.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/68xxx/CVE-2025-68803.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/214b396480061cbc8b16f2c518b2add7fbfa5192
- https://git.kernel.org/stable/c/381261f24f4e4b41521c0e5ef5cc0b9a786a9862
- https://git.kernel.org/stable/c/60dbdef2ebc2317266a385e4debdb1bb0e57afe1
- https://git.kernel.org/stable/c/75f91534f9acdfef77f8fa094313b7806f801725
- https://git.kernel.org/stable/c/913f7cf77bf14c13cfea70e89bcb6d0b22239562
- https://git.kernel.org/stable/c/bf4e671c651534a307ab2fabba4926116beef8c3
- https://git.kernel.org/stable/c/c182e1e0b7640f6bcc0c5ca8d473f7c57199ea3d
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/68xxx/CVE-2025-68803.json
- https://nvd.nist.gov/vuln/detail/CVE-2025-68803
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedc5409ce523af40d5c3019717bc5b4f72038d48beFixedc182e1e0b7640f6bcc0c5ca8d473f7c57199ea3d
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedd52acd23a327cada5fb597591267cfc09f08bb1dFixed75f91534f9acdfef77f8fa094313b7806f801725
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedc0cbe70742f4a70893cd6e5f6b10b6e89b6db95bFixed60dbdef2ebc2317266a385e4debdb1bb0e57afe1Fixed381261f24f4e4b41521c0e5ef5cc0b9a786a9862Fixedbf4e671c651534a307ab2fabba4926116beef8c3Fixed214b396480061cbc8b16f2c518b2add7fbfa5192Fixed913f7cf77bf14c13cfea70e89bcb6d0b22239562
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed5.10.248
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.198
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed6.1.160
- Type
- ECOSYSTEM
- Events
-
Introduced6.0.0Fixed6.6.121
- Type
- ECOSYSTEM
- Events
-
Introduced6.2.0Fixed6.12.64
- Type
- ECOSYSTEM
- Events
-
Introduced6.7.0Fixed6.18.3