Moderate: nfs-utils security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:3938", "synopsis": "Moderate: nfs-utils security update", "severity": "SEVERITY_MODERATE", "topic": "An update is available for nfs-utils.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "The nfs-utils packages provide a daemon for the kernel Network File System (NFS) server and related tools, which provides better performance than the traditional Linux NFS server used by most users. These packages also contain the mount.nfs, umount.nfs, and showmount programs. \n\nSecurity Fix(es):\n\n* nfs-utils: rpc.mountd in the nfs-utils privilege escalation (CVE-2025-12801)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2413081", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2413081", "description": ""}], "cves": [{"name": "CVE-2025-12801", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2025-12801", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "cvss3BaseScore": "6.5", "cwe": "CWE-279"}], "references": [], "publishedAt": "2026-03-10T12:00:51.199586Z", "rpms": {"Rocky Linux 8": {"nvras": ["libnfsidmap-1:2.3.3-68.el8_10.aarch64.rpm", "libnfsidmap-1:2.3.3-68.el8_10.i686.rpm", "libnfsidmap-1:2.3.3-68.el8_10.x86_64.rpm", "libnfsidmap-debuginfo-1:2.3.3-68.el8_10.aarch64.rpm", "libnfsidmap-debuginfo-1:2.3.3-68.el8_10.i686.rpm", "libnfsidmap-debuginfo-1:2.3.3-68.el8_10.x86_64.rpm", "libnfsidmap-devel-1:2.3.3-68.el8_10.aarch64.rpm", "libnfsidmap-devel-1:2.3.3-68.el8_10.i686.rpm", "libnfsidmap-devel-1:2.3.3-68.el8_10.x86_64.rpm", "nfs-utils-1:2.3.3-68.el8_10.aarch64.rpm","nfs-utils-1:2.3.3-68.el8_10.src.rpm", "nfs-utils-1:2.3.3-68.el8_10.x86_64.rpm", "nfs-utils-debuginfo-1:2.3.3-68.el8_10.aarch64.rpm", "nfs-utils-debuginfo-1:2.3.3-68.el8_10.i686.rpm", "nfs-utils-debuginfo-1:2.3.3-68.el8_10.x86_64.rpm", "nfs-utils-debugsource-1:2.3.3-68.el8_10.aarch64.rpm", "nfs-utils-debugsource-1:2.3.3-68.el8_10.i686.rpm", "nfs-utils-debugsource-1:2.3.3-68.el8_10.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. A moderate security advisory for nfs-utils update on Rocky Linux addressing a rpc privilege escalation issue.. NFS Utils Update, RPC Privilege Escalation, Rocky Linux Security Advisory. . LinuxSecurity.com Team
Get the latest Linux and open source security news straight to your inbox.