This update for nfs-utils fixes the following issue:
Security fixes:
CVE-2025-12801: rpc.mountd allows a NFSv3 client to escalate their privileges and access subdirectories and subtrees
of an exported directory (bsc#1259204).
Other fixes:
Split from nfs-utils into its own spec and changelog file (bsc#1246505).
Split legacy libnfsidmap0 into a separate spec file (bsc#1246505).
Affected Packages
libnfsidmap0
SUSE Linux Enterprise Module for Basesystem 15 SP7SUSE Linux Enterprise Server 15 SP6-LTSSSUSE Linux Enterprise Server for SAP Applications 15 SP6openSUSE Leap 15.6
Fixed in:
0.26-150600.28.19.1
libnfsidmap1
SUSE Linux Enterprise Module for Basesystem 15 SP7SUSE Linux Enterprise Server 15 SP6-LTSSSUSE Linux Enterprise Server for SAP Applications 15 SP6openSUSE Leap 15.6
Fixed in:
1.0-150600.28.19.1
nfs-client
SUSE Linux Enterprise Module for Basesystem 15 SP7SUSE Linux Enterprise Server 15 SP6-LTSSSUSE Linux Enterprise Server for SAP Applications 15 SP6openSUSE Leap 15.6
Fixed in:
2.6.4-150600.28.19.1
nfs-doc
SUSE Linux Enterprise Module for Basesystem 15 SP7SUSE Linux Enterprise Server 15 SP6-LTSSSUSE Linux Enterprise Server for SAP Applications 15 SP6openSUSE Leap 15.6
Fixed in:
2.6.4-150600.28.19.1
nfs-kernel-server
SUSE Linux Enterprise Module for Basesystem 15 SP7SUSE Linux Enterprise Server 15 SP6-LTSSSUSE Linux Enterprise Server for SAP Applications 15 SP6openSUSE Leap 15.6
Fixed in:
2.6.4-150600.28.19.1
nfs-utils
SUSE Linux Enterprise Module for Basesystem 15 SP7SUSE Linux Enterprise Server 15 SP6-LTSSSUSE Linux Enterprise Server for SAP Applications 15 SP6openSUSE Leap 15.6
Fixed in:
2.6.4-150600.28.19.1
nfsidmap-devel
SUSE Linux Enterprise Module for Basesystem 15 SP7SUSE Linux Enterprise Server 15 SP6-LTSSSUSE Linux Enterprise Server for SAP Applications 15 SP6openSUSE Leap 15.6
Fixed in:
1.0-150600.28.19.1
nfsidmap0-devel
SUSE Linux Enterprise Module for Basesystem 15 SP7SUSE Linux Enterprise Server 15 SP6-LTSSSUSE Linux Enterprise Server for SAP Applications 15 SP6openSUSE Leap 15.6