2 matches found
CVE-2025-68183
In the Linux kernel, the following vulnerability has been resolved: ima: don't clear IMADIGSIG flag when setting or removing non-IMA xattr Currently when both IMA and EVM are in fix mode, the IMA signature will be reset to IMA hash if a program first stores IMA signature in security.ima and then...
CVE-2025-68183
CVE-2025-68183 relates to the Linux kernel IMA logic. The issue occurs when both IMA and EVM are in fix mode: the IMA_DIGSIG flag can be cleared when a file’s security attributes are updated (e.g., setting/removing security.xattrs such as security.selinux or security.evm). This can cause a valida...