Description
In the Linux kernel, the following vulnerability has been resolved:

fs/ntfs3: Initialize new folios before use

KMSAN reports an uninitialized value in longest_match_std(), invoked
from ntfs_compress_write(). When new folios are allocated without being
marked uptodate and ni_read_frame() is skipped because the caller expects
the frame to be completely overwritten, some reserved folios may remain
only partially filled, leaving the rest memory uninitialized.
Published: 2026-05-27
Score: n/a
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A flaw in the Linux kernel’s NTFS3 file system code permits the use of memory that has not been fully initialized when new folios are allocated and handled by ntfs_compress_write. This can cause kernel data structures to contain uninitialized values, which may expose sensitive information or lead to kernel crashes, thereby compromising system integrity and availability.

Affected Systems

The vulnerability affects all Linux kernel implementations that include the NTFS3 file system module. The CI identifies the general product family, but no specific kernel version range is listed in the CNA data, so any distribution kernel that has yet to receive the fix is potentially impacted.

Risk and Exploitability

The CVSS score is not provided, and EPSS is unavailable, so the overall exploitation probability cannot be quantified from the available metrics. The vulnerability is not listed in the CISA KEV catalog. Because the flaw is triggered during a local file write operation that expects compression, a local privileged attacker could potentially leverage the kernel crash or memory disclosure by generating or manipulating NTFS3 file system data. The lack of a known remote attack vector suggests a local‑privilege level attack vector, but precise exploitation conditions remain unspecified by the vendor. The risk to confidential data and system stability exists until a kernel patch is applied.

Generated by OpenCVE AI on May 27, 2026 at 15:23 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update the Linux kernel to a release that contains the NTFS3 uninitialized memory fix.
  • Reboot the system to load the updated kernel and ensure the driver is operating under the new code.
  • If an updated kernel is not available, disable the NTFS3 file system module to prevent any operations that could trigger the uninitialized memory condition.

Generated by OpenCVE AI on May 27, 2026 at 15:23 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 27 May 2026 15:45:00 +0000

Type Values Removed Values Added
Weaknesses CWE-222
CWE-788

Wed, 27 May 2026 14:15:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Initialize new folios before use KMSAN reports an uninitialized value in longest_match_std(), invoked from ntfs_compress_write(). When new folios are allocated without being marked uptodate and ni_read_frame() is skipped because the caller expects the frame to be completely overwritten, some reserved folios may remain only partially filled, leaving the rest memory uninitialized.
Title fs/ntfs3: Initialize new folios before use
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Subscriptions

Linux Linux Kernel
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-05-27T12:24:02.532Z

Reserved: 2026-05-27T12:23:27.414Z

Link: CVE-2025-71311

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-05-27T14:16:43.627

Modified: 2026-05-27T14:48:31.480

Link: CVE-2025-71311

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-27T16:15:05Z

Weaknesses