Vulnerability CVE-2025-11568: Information

Description

A data corruption vulnerability has been identified in the luksmeta utility when used with the LUKS1 disk encryption format. An attacker with the necessary permissions can exploit this flaw by writing a large amount of metadata to an encrypted device. The utility fails to correctly validate the available space, causing the metadata to overwrite and corrupt the user's encrypted data. This action leads to a permanent loss of the stored information. Devices using the LUKS formats other than LUKS1 are not affected by this issue.

Severity: MEDIUM (4.4)
Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
URL: https://nvd.nist.gov/vuln/detail/CVE-2025-11568
Published: Oct. 15, 2025
Modified: Oct. 16, 2025
Error type identifier: CWE-1284

Fixed packages

Package name
Branch
Fixed in version
Version from repository
Errata ID
Task #
State
luksmetasisyphus10-alt110-alt1ALT-PU-2025-13903-2399032Fixed
luksmetasisyphus_e2k10-alt110-alt1ALT-PU-2025-14228-1-Fixed
luksmetasisyphus_riscv6410-alt110-alt1ALT-PU-2025-13932-1-Fixed
luksmetasisyphus_loongarch6410-alt110-alt1ALT-PU-2025-13949-1-Fixed
luksmetap1010-alt19-alt1ALT-PU-2025-14080-2399045Fixed
luksmetap1110-alt110-alt1ALT-PU-2025-13907-2399044Fixed

References to Advisories, Solutions, and Tools

Hyperlink
Resource
https://access.redhat.com/security/cve/CVE-2025-11568
    https://bugzilla.redhat.com/show_bug.cgi?id=2404244
      VKontakte|Telegram|YouTube|Forum|ALT Linux Space|Bugzilla
      Version: v25.10.0
      Back to top