{"document":{"aggregate_severity":{"namespace":"https://www.suse.com/support/security/rating/","text":"moderate"},"category":"csaf_vex","csaf_version":"2.0","distribution":{"text":"Copyright 2024 SUSE LLC. All rights reserved.","tlp":{"label":"WHITE","url":"https://www.first.org/tlp/"}},"lang":"en","notes":[{"category":"summary","text":"SUSE CVE-2025-11568","title":"Title"},{"category":"description","text":"A data corruption vulnerability has been identified in the luksmeta utility when used with the LUKS1 disk encryption format. An attacker with the necessary permissions can exploit this flaw by writing a large amount of metadata to an encrypted device. The utility fails to correctly validate the available space, causing the metadata to overwrite and corrupt the user's encrypted data. This action leads to a permanent loss of the stored information. Devices using the LUKS formats other than LUKS1 are not affected by this issue.","title":"Description of the CVE"},{"category":"legal_disclaimer","text":"CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).","title":"Terms of use"}],"publisher":{"category":"vendor","contact_details":"https://www.suse.com/support/security/contact/","name":"SUSE Product Security Team","namespace":"https://www.suse.com/"},"references":[{"category":"external","summary":"CVE-2025-11568","url":"https://www.suse.com/security/cve/CVE-2025-11568"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 1252112 for CVE-2025-11568","url":"https://bugzilla.suse.com/1252112"},{"category":"external","summary":"Advisory link for RHSA-2025:23086","url":"https://lists.suse.com/pipermail/suse-liberty-linux-updates/2025-December/002285.html"}],"title":"SUSE CVE CVE-2025-11568","tracking":{"current_release_date":"2025-12-12T00:50:45Z","generator":{"date":"2025-10-16T23:38:29Z","engine":{"name":"cve-database.git:bin/generate-csaf-vex.pl","version":"1"}},"id":"CVE-2025-11568","initial_release_date":"2025-10-16T23:38:29Z","revision_history":[{"date":"2025-10-16T23:38:29Z","number":"2","summary":"Current version"},{"date":"2025-12-12T00:50:45Z","number":"3","summary":"vulnerabilities added,references added"}],"status":"interim","version":"3"}},"product_tree":{"branches":[{"branches":[{"branches":[{"category":"product_name","name":"SUSE Liberty Linux 8","product":{"name":"SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8","product_identification_helper":{"cpe":"cpe:/o:suse:sll:8"}}},{"category":"product_version","name":"libluksmeta-9-4.el8_10.1","product":{"name":"libluksmeta-9-4.el8_10.1","product_id":"libluksmeta-9-4.el8_10.1","product_identification_helper":{"purl":"pkg:rpm/suse/libluksmeta@9-4.el8_10.1"}}},{"category":"product_version","name":"libluksmeta-devel-9-4.el8_10.1","product":{"name":"libluksmeta-devel-9-4.el8_10.1","product_id":"libluksmeta-devel-9-4.el8_10.1","product_identification_helper":{"purl":"pkg:rpm/suse/libluksmeta-devel@9-4.el8_10.1"}}},{"category":"product_version","name":"luksmeta-9-4.el8_10.1","product":{"name":"luksmeta-9-4.el8_10.1","product_id":"luksmeta-9-4.el8_10.1","product_identification_helper":{"purl":"pkg:rpm/suse/luksmeta@9-4.el8_10.1"}}}],"category":"product_family","name":"SUSE Linux Enterprise"}],"category":"vendor","name":"SUSE"}],"relationships":[{"category":"default_component_of","full_product_name":{"name":"libluksmeta-9-4.el8_10.1 as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:libluksmeta-9-4.el8_10.1"},"product_reference":"libluksmeta-9-4.el8_10.1","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"libluksmeta-devel-9-4.el8_10.1 as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:libluksmeta-devel-9-4.el8_10.1"},"product_reference":"libluksmeta-devel-9-4.el8_10.1","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"luksmeta-9-4.el8_10.1 as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:luksmeta-9-4.el8_10.1"},"product_reference":"luksmeta-9-4.el8_10.1","relates_to_product_reference":"SUSE Liberty Linux 8"}]},"vulnerabilities":[{"cve":"CVE-2025-11568","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2025-11568"}],"notes":[{"category":"general","text":"A data corruption vulnerability has been identified in the luksmeta utility when used with the LUKS1 disk encryption format. An attacker with the necessary permissions can exploit this flaw by writing a large amount of metadata to an encrypted device. The utility fails to correctly validate the available space, causing the metadata to overwrite and corrupt the user's encrypted data. This action leads to a permanent loss of the stored information. Devices using the LUKS formats other than LUKS1 are not affected by this issue.","title":"CVE description"}],"product_status":{"recommended":["SUSE Liberty Linux 8:libluksmeta-9-4.el8_10.1","SUSE Liberty Linux 8:libluksmeta-devel-9-4.el8_10.1","SUSE Liberty Linux 8:luksmeta-9-4.el8_10.1"]},"references":[{"category":"external","summary":"CVE-2025-11568","url":"https://www.suse.com/security/cve/CVE-2025-11568"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 1252112 for CVE-2025-11568","url":"https://bugzilla.suse.com/1252112"},{"category":"external","summary":"Advisory link for RHSA-2025:23086","url":"https://lists.suse.com/pipermail/suse-liberty-linux-updates/2025-December/002285.html"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Liberty Linux 8:libluksmeta-9-4.el8_10.1","SUSE Liberty Linux 8:libluksmeta-devel-9-4.el8_10.1","SUSE Liberty Linux 8:luksmeta-9-4.el8_10.1"]}],"threats":[{"category":"impact","date":"2025-10-15T20:00:15Z","details":"moderate"}],"title":"CVE-2025-11568"}]}