CVE-2025-71311

Source
https://cve.org/CVERecord?id=CVE-2025-71311
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-71311.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2025-71311
Downstream
Published
2026-05-27T12:24:02.532Z
Modified
2026-07-15T01:48:59.671799834Z
Summary
fs/ntfs3: Initialize new folios before use
Details

In the Linux kernel, the following vulnerability has been resolved:

fs/ntfs3: Initialize new folios before use

KMSAN reports an uninitialized value in longestmatchstd(), invoked from ntfscompresswrite(). When new folios are allocated without being marked uptodate and nireadframe() is skipped because the caller expects the frame to be completely overwritten, some reserved folios may remain only partially filled, leaving the rest memory uninitialized.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/71xxx/CVE-2025-71311.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
584f60ba22f79c89e6708ab82a5b5d9b8fa21fb2
Fixed
dd6c81527d097b3b0bf5a15c2fdc9657d045144c
Fixed
5a30cc03bde169ad558695b26da6ea7e55f6194a
Fixed
41d79f8e2a36622d148719bf7c18b46ac1264284
Fixed
f223ebffa185cc8da934333c5a31ff2d4f992dc9

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-71311.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.11.0
Fixed
6.12.75
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.18.14
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
6.19.4

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-71311.json"