CVE-2025-71311

ANALYSIS PENDING

fs/ntfs3: Initialize new folios before use

Title source: cna

Description

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Initialize new folios before use KMSAN reports an uninitialized value in longest_match_std(), invoked from ntfs_compress_write(). When new folios are allocated without being marked uptodate and ni_read_frame() is skipped because the caller expects the frame to be completely overwritten, some reserved folios may remain only partially filled, leaving the rest memory uninitialized.

References (4)

Core 4

Core References

https://git.kernel.org/stable/c/dd6c81527d097b3b0bf5a15c2fdc9657d045144c

https://git.kernel.org/stable/c/5a30cc03bde169ad558695b26da6ea7e55f6194a

https://git.kernel.org/stable/c/41d79f8e2a36622d148719bf7c18b46ac1264284

https://git.kernel.org/stable/c/f223ebffa185cc8da934333c5a31ff2d4f992dc9

Details

Status published

Products (10)

Linux/Linux < 6.11

Linux/Linux 584f60ba22f79c89e6708ab82a5b5d9b8fa21fb2 - 41d79f8e2a36622d148719bf7c18b46ac1264284

Linux/Linux 584f60ba22f79c89e6708ab82a5b5d9b8fa21fb2 - 5a30cc03bde169ad558695b26da6ea7e55f6194a

Linux/Linux 584f60ba22f79c89e6708ab82a5b5d9b8fa21fb2 - dd6c81527d097b3b0bf5a15c2fdc9657d045144c

Linux/Linux 584f60ba22f79c89e6708ab82a5b5d9b8fa21fb2 - f223ebffa185cc8da934333c5a31ff2d4f992dc9

Linux/Linux 6.11

Linux/Linux 6.12.75 - 6.12.*

Linux/Linux 6.18.14 - 6.18.*

Linux/Linux 6.19.4 - 6.19.*

Linux/Linux 7.0

Published May 27, 2026

Tracked Since May 27, 2026